Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: ipforwarding enabled, what can I do

From: GomoR <GomoR () chez com>
Date: Sun, 19 Aug 2001 18:12:44 +0200

On 2001.08.16 20:55 Vladimir Parkhaev wrote:


I am doing a vulnerability assesment for one of our clients. One
of their boxes is a multihomed Solaris server with ipforwarding enabled.
IP addresses are available via snmp with default community string.

I tried to use this box as a gateway to internal network coming
from the Internet without success.  I also looked at source
routing but did not find any tools (Net::RawIP does not seem
to support IP options).

Does anybody know how I can use this box to do routing for me?

Thanks.


  I think you can't use source routing feature by default with a Solaris 8
system. You must enable it via ndd command (don't recall parameters).
On other versions of Solaris, it works fine.

 Netcat is used to perform source routing, and it is limited to 8 hops.
Don't know why :(

 Good luck.

-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    FreeBSD Network - http://www.freebsd-network.fr.st/
    A la recherche d'un emploi en Administration UNIX/Securite
    CV: http://gomor.homeip.net/Informations/cv.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      =-----=> root is the only God I believe in <=-----=

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Previous By Date Next
Previous By Thread Next

Current thread: