Penetration Testing mailing list archives
Re: ipforwarding enabled, what can I do
From: Gamble <a629w () unb ca>
Date: Sun, 19 Aug 2001 14:35:33 -0300 (ADT)
Does anybody know how I can use this box to do routing for me? Thanks.I think you can't use source routing feature by default with a Solaris 8 system. You must enable it via ndd command (don't recall parameters). On other versions of Solaris, it works fine. Netcat is used to perform source routing, and it is limited to 8 hops. Don't know why :(
Usually source routeing is limited to nine addresses in the IP header. This isn't a fault with netcat, but part of the design of the IP. You would only need to use all 8 addresses if you wanted to specify each hop you wanted your packets to flow through (strict source routing), but in this case we only need to make sure that we send the packets through the gateway machine into the LAN. How the packets get there dosn't matter. I belive that if you use Loose source routing, specifying the gateway machine as a hop in the connection, you should be able to send packets behind the gateway. The limit of 8 hops really dosn't matter. -- Jamie ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- ipforwarding enabled, what can I do Vladimir Parkhaev (Aug 17)
- Re: ipforwarding enabled, what can I do GomoR (Aug 19)
- Re: ipforwarding enabled, what can I do Gamble (Aug 19)
- Re: ipforwarding enabled, what can I do Forrest Rae (Aug 20)
- <Possible follow-ups>
- RE: ipforwarding enabled, what can I do BOVO Marcelo DICAU (Aug 17)
- RE: ipforwarding enabled, what can I do Yonatan Bokovza (Aug 20)
- RE: ipforwarding enabled, what can I do ansar mohammed (Aug 21)
- Re: ipforwarding enabled, what can I do GomoR (Aug 19)