I have an Asus router and it had IDS/IPS build in with the Asus Firmware, since the router is not all that powerful Asus offloaded to Trend Micro for analysis.
If I setup SNORT on my NAS is there a way to mirror traffic or otherwise offload traffic from OpenWRT to my server?
Or is there a package like Asus AI Protection?
What is the question?
Please post output of
ubus call system board
Some switches have a way to do port mirroring.
Never done it with openwrt but a google yielded this:
https://openwrt.org/packages/pkgdata/port-mirroring
Plus dsa switches can have port mirroring by tc.
https://svanheule.net/switches/testing/mirroring
I'm not aware of an IDS/IPS that runs on openwrt natively. I think there was work for suricata 6. I use inline ips/ids with dedicated hardware.
The approximation of semi cloud ids is crowdsec, but you need reasonably big router to keep one at home.