Re: ipforwarding enabled, what can I do

From: GomoR (GomoRat_private)
Date: Sun Aug 19 2001 - 09:12:44 PDT

  • Next message: Gamble: "Re: ipforwarding enabled, what can I do"

    On 2001.08.16 20:55 Vladimir Parkhaev wrote:
    > I am doing a vulnerability assesment for one of our clients. One
    > of their boxes is a multihomed Solaris server with ipforwarding enabled.
    > IP addresses are available via snmp with default community string.
    > I tried to use this box as a gateway to internal network coming
    > from the Internet without success.  I also looked at source
    > routing but did not find any tools (Net::RawIP does not seem
    > to support IP options).
    > Does anybody know how I can use this box to do routing for me?
    > Thanks.
      I think you can't use source routing feature by default with a Solaris 8
    system. You must enable it via ndd command (don't recall parameters).
    On other versions of Solaris, it works fine.
     Netcat is used to perform source routing, and it is limited to 8 hops.
    Don't know why :(
     Good luck.
        FreeBSD Network -
        A la recherche d'un emploi en Administration UNIX/Securite
          =-----=> root is the only God I believe in <=-----=
    This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
    Service. For more information on SecurityFocus' SIA service which
    automatically alerts you to the latest security vulnerabilities please see:

    This archive was generated by hypermail 2b30 : Sun Aug 19 2001 - 09:46:56 PDT