PaulDotCom mailing list archives
Re: ICMP tunneling through firewalls
From: Gerardo Iglesias Galvan <iglesiasg () gmail com>
Date: Wed, 22 Dec 2010 17:44:06 -0600
I've successfully used ptunnel and ssh (as a SOCKS server) to tunnel out different kind of traffic (and high loads). The client and server were in different networks and there were no problems at all. What's the problem you're facing? Cheers, Gerardo On Wed, Dec 22, 2010 at 1:43 PM, David Porcello <DPorcello () vermontmutual com> wrote:
Ptunnel & ICMPTX work fine when the client/server are within the same local subnet, but most firewalls permit only one ICMP echo reply per ICMP echo request. Not a problem for exchanging a few chars through netcat, but anything that can't fit within a single ICMP payload (such as shoveling /bin/bash or ssh tunneling) gets dropped. Has anyone found a workaround for this? Are there any extremely lightweight shells that may work under these conditions? Thanks, Dave. NOTICE: The information contained in this e-mail and any attachments is intended solely for the recipient(s) named above, and may be confidential and legally privileged. If you received this e-mail in error, please notify the sender immediately by return e-mail and delete the original message and any copy of it from your computer system. If you are not the intended recipient, you are hereby notified that any review, disclosure, retransmission, dissemination, distribution, copying, or other use of this e-mail, or any of its contents, is strictly prohibited. Although this e-mail and any attachments are believed to be free of any virus or other defects, it is the responsibility of the recipient to ensure that it is virus-free and no responsibility is accepted by the sender for any loss or damage arising if such a virus or defect exists. _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- ICMP tunneling through firewalls David Porcello (Dec 22)
- Re: ICMP tunneling through firewalls Gerardo Iglesias Galvan (Dec 23)