Honeypots mailing list archives

Re: virtual honeynet, not accessible from outside, only from host

From: Miguel José Hernández y López <me () mike com mx>
Date: Wed, 15 Mar 2006 11:40:50 -0600

El mié, 15-03-2006 a las 16:50 +0000, honey () kleinundgemein de escribió:

Hi,

I have a roo config problem, my setup is like that:
http://www.honeynet.org.es/reports/diagram.png

My host is linux (debian 3.1) with VMware Server, my honeypots are Win2k and RedHat 7.0.

But all virtual machines are not accessible from the outside world, only from the host.
The VMware configuration is fine, so it must be a honeywall config error.

host:~#  nmap -p 443 <honeywall-ip> -P0 

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2006-03-15 16:56 CET
Interesting ports on honeywall.domain.tld (<honeywall-ip>):
PORT    STATE SERVICE
443/tcp open  https
MAC Address: 00:0C:29:CD:71:CD (VMware)

Nmap finished: 1 IP address (1 host up) scanned in 0.308 seconds


outsideserver:~#  nmap -p 443 <honeywall-ip> -P0

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2006-03-15 16:56 CET
Interesting ports on honeywall.domain.tld (<honeywall-ip>):
PORT    STATE    SERVICE
443/tcp filtered https

Nmap finished: 1 IP address (1 host up) scanned in 2.043 seconds


ehmmm  Check your Firewall, i think is blocking the packets from outside
to your host. 


-- 
----
Un cordial saludo...
                  MIKE
http://www.mike.com.mx

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

virtual honeynet, not accessible from outside, only from host honey (Mar 15)
- Re: virtual honeynet, not accessible from outside, only from host Miguel José Hernández y López (Mar 15)
- Re: virtual honeynet, not accessible from outside, only from host george chamales (Mar 15)
- <Possible follow-ups>
- Re: Re: virtual honeynet, not accessible from outside, only from host honey (Mar 15)