General :: Redirection Of Private Network Packets In The Gateway
Jul 25, 2011
I have users using Windows XP, Windows 7, Linux (Fedora) and Mac. They all are in a single private network and all access internet through a Linux (RHEL5) system in which Squid acts as gateway. The same is true with my branch offices too except that private network is different and gateway system uses Fedora 9 instead of RHEL5. All the branch offices are connected through point to point leased lines with the head office for file transfer.
My requirement is this: I have a web server located at head office. Presently I am able to access this server from my branch offices through internet. I would like to access this server from branch offices through leased lines. This too I am able to access if I do routing in users system. The file transfer is taking place through one to one system at two ends by creating static routing in those systems.
View 1 Replies
ADVERTISEMENT
Feb 26, 2010
I have openSUSE 11.2 installed and i need to create a gateway server that allows virtual private network connections. I want to play with my friends some lan games, but we are in different networks, so i want to create this gateway server so we can connect with VPN clients to this server and play freely.
View 7 Replies
View Related
Apr 11, 2010
I have a computer with two interfaces: a fixed connection (eth1) and a modem (ppp0). My goal is to receive UDP packets from both connections concurrently (using the recv() function). The problem is, that the received packets reach the application only when the default gateway is set to that interface's address. For example, if I set the default gw to be in the eth1 subnet, only packets from eth1 reach the application. Other packets are received in the interface (checked using tcpdump), but they seem to be blocked somewhere. The policy defined in iptables is "ACCEPT" for all incoming packets, with no rules at all. I would like to know how to overcome this problem, and anyway how is the default gateway related to incoming UDP?
View 3 Replies
View Related
May 14, 2011
I am new with IP tables stuff and i have a problem....
i have a pc Contain a fedora OS and i want to make a small network (4 PCs Contain XP OS) and using the pc of fedora OS as a firewall
i want to Prevent the ping (i think it called(ICMP)) in the privat network and prevent one of the PCs from Browsing Internet(prevent port 80 and 81 as i think)
and i still don't know how to make the Internet go Through the firewall to the private network...
note: WAN = eth0
LAN = eth1
View 9 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping [URL]... on the gateway machine, it works, while it doesn't work on the private network.
View 7 Replies
View Related
Aug 30, 2010
i need to write a program in c that can sniff packets from Ethernet and distinguish RTP packets from Non-RTP packets, i have no idea what should i do
View 9 Replies
View Related
Feb 8, 2011
Suppose that I am in a private network of computers (say each having ip addresses 192.168.. ). Some of the machines( we have no information regarding their ip, name and no physical access to the servers) in the network are connected to internet and they run an http proxy at some port say 3128. Is there a program which can be run on Windows or Linux which will give me the list of machines(ip addresses and ports if possible) acting as proxy servers?
View 1 Replies
View Related
Feb 8, 2011
how to fix this error: I wanna compile a C program which niffs the network for arp packets and prints them out ,I keep getting this error:
undefined reference to `pcap_parse' I have installed every thing new version of pcap ,..
View 4 Replies
View Related
Aug 9, 2010
I'm looking for an open source/free network emulator tool that I could use on Mac OS X, to simulate a slow network connection, limited bandwidth and other network characteristics such as dropped packets etc for both UDP/TCP connections (or even on the physical layer).
I'm looking for the simplest solution that would allow me to run TCP/UDP servers and have a few clients connect to them on localhost emulating various network connections. I'm mainly wondering if I can use something like Linux's netem on Mac OS X (or even better cross-platform Windows/Linux/Mac). Perhaps I can run VirtualBox and a Linux kernel running netem, has anyone had luck with that?[URL]...
View 2 Replies
View Related
Aug 6, 2011
My LAN has 2 PCs installed, Ubuntu 10.04 and Windows XP. I run the server on Ubuntu, and client on Windows XP. Because I am doing stress test, so the client will keep sending tons of packets to server.
The strange thing is: After few seconds, the client program crash because of insufficient network buffer, the server is still ok. But after that I cant connect Ubuntu PC anymore until I restart it. And I check the router, the led for the Ubuntu PC is always ON (not blinking), look like it is jam already.
View 1 Replies
View Related
Mar 9, 2011
I am using tcp for data transmission between 2pcs running linux.During transmission, I have noticed that if I unplug the network cable and reinsert it quickly,connection is not lost(same as i expect)and the sender start to resend the packet after 5s(what i expect is that network packets sent immediately after quick physical disconnect and reconnect).My question is can i reduce 5s to 0s(resend immediately after network cable reconnect)?Any parameters(tcp rto,txqueuelength,..) can be modified to achieve this condition?
View 10 Replies
View Related
Feb 23, 2010
After editing my network connections gateway setup as 192.168.1.1 I get back 0.0.0.0 after I run nm-tool. I'm using Ubuntu ver 9.04 setup on my VMware server.
View 1 Replies
View Related
Jan 17, 2011
I'm have a base level understand of linux at this point. I have Debian box that I am trying to do some port redirection with.
I have my external NIC as eth0 with an IP of x.x.250.5.
I have my internal NIC as eth1 with an IP of 192.168.1.1.
On the internal network I have a NAS box with a web interface at 192.168.1.100. What I need is to set it up so that a request to x.x.250.5:8080 will some how forward/redirect to the internal network NAS box at 192.168.1.100:80.
View 3 Replies
View Related
Feb 21, 2011
I setup apache server in order to gain access for the smokeping network monitoring system.
I am accessing the system using [URL]
But I want this page access using [URL]
My httpd.conf file looks like :
Alias /smokeping/ "/usr/local/smokeping/htdocs/"
<Directory /usr/local/smokeping/htdocs/>
AllowOverride AuthConfig
DirectoryIndex smokeping.cgi
Options -Indexes ExecCGI
</Directory>
View 1 Replies
View Related
Aug 18, 2010
i noticed that all files can be seen by another computer if the drive is accessed
can I stop this? can i set a private folder?
View 7 Replies
View Related
Jul 17, 2011
I installed openSUSE on one of my work system. The network port wasn't working when I was installing, but works fine now (checked in Windows). But for some reason, I am not able to configure the network. I used both Dynamic and Static IPs (both work fine in Windows) but still no go. I am using Yast Control Center for this purpose. I can't even ping the default gateway when I am using custom settings. When I use dynamic settings, it says Unreachable Network.
View 7 Replies
View Related
Dec 30, 2009
I am setting up a publicly exposed ssh server.uld like to require both password and private key. Does anyone know how to configure this
View 4 Replies
View Related
Jul 15, 2010
Why trying to avoid ranting about my Linksys router, I'll try and keep things short. I have a Linksys router in which the default firmware was terrible and would not correctly renew its DHCP lease. After getting feed up with that I flashed dd-wrt on the router and now it works better but randomly DNS queries would stop being resolved. To rule out the chances that it is my ISPs DNS servers I switched my DNS to openDNS, same problem happens (although I have to admit openDNS is a lot better than what my ISP has).
Anyways I'm about feed up with it and about an inch away from drop kicking the thing out my window. To avoid that I figured I will give it one more change and instead of using my Linksys as my network gateway I'll move all of that to my home server, and make the Linksys just an wireless AP. Besides setting up DHCP, DNS, and iptables on the server is there anything else I will need to know and setup on the server to make this work?
Side note anyone using openSUSE for DHCP know if setting up reserved IPs for certain MAC address is possible?
View 2 Replies
View Related
Jul 6, 2009
My goal is to have users(Unix Users like root on host1) use evolution /sendmail to send and receive emails between users( Unix users either from host1 or any other host on n a private network. The network is a private network with a few servers without any connection to Internet and no DNS. They resolve one another by /etc/hosts. with smtp configured am able to send and receive emails on one machine(host1) from unix user abc on host1 to user xyz on host1 and vice versa. the commad i used to test is host1@abc #echo "this is a test mail" |mailx zyx@host1 But when i tried sending from user abc on host1 to user xyz on host2 its giving error for DNS unable to resolve hostname.
the commad i used to test is host1@abc# echo "this is a test mail" |mailx zyx@host2 create a simple sendmail config so that i can send mails between multiple hosts using unix usernames within one network. I can use one of the server as mail server and rest as clients. I dont want to configure any other softwares for pop or imap access. I want to keep it simple and use evolution on the clients to send emails between one another on the private network without internet.
View 1 Replies
View Related
May 17, 2011
I'm trying to make changes to several computers at once in a private network. I have ssh keys setup so that I can ssh from the main computer to all the other computers without having to enter my password. So I wrote a bash script like for computers in `cat computer list` do ssh $computers #type changes here exit done
but instead of executing the commands on every computer, it opens a shell on every computer for me to type into, just as if I had used ssh myself and not in a script. how to get this to work? I want to be able to add lines at the comment like "echo "test" > /testFile.txt" and be able to see the changes on each machine, in this case see testFile.txt on every machine.
View 6 Replies
View Related
Mar 14, 2010
i am totally new to Opensuse and to filezilla. I formerly used winscp - a windows-client for ssh.now i have a linux box and want to connect to the server via ssh ing filezilla.Can i use the same keys as i used in WinSCP - where should i store them and the third question.I read something about a certain so called certificate-file that has to be created!?
View 1 Replies
View Related
May 24, 2010
Well to make this straight forward as possible I want a program like The Hotspot Shield In Windows and Mac, Its uses's VPN (Virtual Private Network). To view Hulu (And other stuff). A link: [URL]. Or can I use it wine (I don't really think so, by the way I didn't test it out Because its blocked in my country).
View 4 Replies
View Related
Jan 11, 2011
We have to connect one PC in private network (campus) with other PC (mostly a modem in our case)in public network. Connection should be peer to peer like and we have to use C coding for establishing connection between this two systems. Is it possible if we use port forwarding or is there any other way?
View 2 Replies
View Related
May 24, 2011
The facts are as follows:
1. I have at work a regular LAN with many PCs, each with a DNS-registered public IP. Therefore I am able to address each of these PCs by their fully-qualified names and, for instance, initiate ssh sessions to any of these computers just by typing "ssh <name_of_machine>" from a terminal.
2. Within the aforementioned LAN I have just created a private network with some clients, which access the LAN through a router (a D-link DIR-825). We have created this private network for many reasons, but most importantly because we need to guarantee that the hosts in this network will remain networked among them even if the LAN goes down for any reason (which unfortunately happens often). But we still need to have access to the hosts in the private network from the LAN.
3. I am able to define port forwarding rules in the router in order to access certain services on the private network's clients. For example. I am able to access (by ssh) hosts "H1" and "H2" on the private network from a client on the LAN by defining rules for forwarding ports "P1" and "P2" on the router's public IP to TCP port 22 on the private IPs of "H1" and "H2", respectively. Then I would access each of these hosts from the LAN by using:
>ssh -p P1 [ip.address.of.router] (for accessing H1) and >ssh -p P2 [ip.address.of.router] (for accessing H2)
4. The problem with the port forwarding approach is that it is not easily scalable. For instance, If I wanted to enable ssh access to each host in the private network, I would have to define a port forwarding rule for each machine, and then REMEMBER all these port rules when initiating a ssh session from the LAN in order to point to the right host. And the problem gets worse when considering more services in addition to ssh.
5. The ideal solution would be to be have a means for addressing each host in the private network individually, in much the same way in which I address the hosts in the LAN (which have DNS-registered names). For instance, in order to access hosts H1 and H2 as in the previous example, i would like to be able to just type
>ssh [name_of_host_H1] (for accessing H1) and >ssh [name_of_host_H2] (for accessing H2)
The bottom line:
I guess I can say that what I need is some kind of combined DNS-ing and routing that allows me to communicate with the hosts in the private network from outside of it in a transparent way.
The question is: what are any possible solutions for accomplishing this? I have searched the web and found stuff about things like VPNs, reverse-proxies and NAT servers, but I really can't understand if any of these could serve to solve my problem (BTW, isn't my router doing some sort of NAT-ing already? could I just add some DNS-ing in some way?)
View 3 Replies
View Related
Jul 27, 2011
I run a server that is connected to several other boxes in a private network (192.168.0.0). I have had no problems previously, but upon a reinstall of Debian squeeze I have no connectivity to the private network: a ping of other addresses on that network fail. Ping and connection to outside world is fine. This box is configured similarly to another on this private network which connects successfully. I have quadruple-checked all my basic information. I post my ifconfig below of the malfunctioning device, then the ifconfig for equivalent nic on a box connected succesfully to the private network.
Questions:
1.Could it be a cable problem? (I don't see how since the cables have not been changed I do not believe since my reinstallation).
2. What about the difference in the last lines of eth1 below and eth2 of the successful box. Is it significant that the bad eth1 reads Memory:fc3a0000-fc3c0000
View 5 Replies
View Related
Feb 8, 2010
i have a linux server runnig oracle applications. i need to access this server from putty using ssh through internet. i did by registering my static ip with the dnydns.org and i am able to connect to the server. but now there is no security to authenticate any user as any one knowing the password can login to it.
i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously. so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?
View 8 Replies
View Related
Aug 10, 2010
My ISP has for a long time had a broken forward/reverese DNS so that my ADSL connection with static IP address resolves to a completely different IP address on a reverse query. This has not been a problem until I upgraded a remote server from 10.3 to 11.3 last weekend and now ssh connections from my ADSL connection to it using public/private keys are being rejected with the following message in /var/log/messages (IP addresses changed):
Aug 10 12:00:32 penguin1 sshd[1270]: Address 83.175.246.243 maps to 83-175-246-243.static.dsl.aupex.com, but this does not map back to the address - Possible Break in Attempt!
But if I log in interactively with username & password, the connection succeeds. I've changed the StrictModes setting in sshd_config to 'no' but this hasn't resolved the problem. Obviously something in 11.3 is being stricter about this IP mismatch than it was in 10.2 (and no, the server is not using a firewall). There must be something I can change to make sshd more permissive? I've tried before to get my ISP to fix their problem but no luck. This needs to be sorted as a server at my home (which does not run SuSE) retrieves backups from the remote OpenSuSE 11.3 server every night using scp and these are now failing.
View 3 Replies
View Related
Aug 8, 2010
I created a similar thread last week in the networking section but only got one response. I was hoping to get a little more help here as this forum helped me tremendously to partition my hard drive safely. That was over a week ago, and ever since then I have been struggling with setting up my network. Here is what I have done.Basic set up with netconfig. I selected DHCP and followed the directions on the screen.ifconfig -a shows eth0 with no RX or TX packets at all, but at least it showed me information. If it was not detecting my card (which is compatible with linux), it would have said no device found. correct?
dhclient eth0 just hangs there for half a minute until I can add a command again.dhcpcd eth0 times out.I read (in slackbook chaper 5.2.1) that the correct kernel module may not be loaded. So I opened rc.modules with pico and went to the netdevice section. In slackbook it said to find my device and uncomment it.... but I cant find it! (I have an atheros ar9285 in my stock compaq CQ61 laptop) I also opened rc.netdevice and it was empty..It seems like the more I learn about the network, the more lost I get. I keep hearing that configuring a network on slackware is easy, am I just missing some simple step?Also, whenever I startx, akonadi gives me an error. I also get another error saying that it could not parse XMS file. Is that just due to my lack of an internet connection at the moment?
View 14 Replies
View Related
Mar 27, 2011
I have 2 different networks: the first one is gateway machine (eth0), and the second is a private machine (eth1). So, I've configured the iptables and forwarding stuff and when I try to ping google.com on the gateway machine, it works, while it doesn't work on the private network. Note: I am using VmWare 7. I need your quick assistance about this issue.
View 2 Replies
View Related
Dec 10, 2008
I am not a networking expert by any means (in fact I have never taken a networking course), but I have taken several security courses, and generally we wind up discussing replay attacks. For example, the Needham-Schroeder protocol (using symmetric-key cryptography anyway) is flawed because it allows for replay attacks, and I understand why.
I guess my question is actually how someone would perform a replay attack. I know I can sniff network traffic by downloading wireshark. I also have downloaded winpcap and npg on my WinXP virtual machine. I'm trying to use this guide to help me, but I'm quite lost:[URL]What I did was to post a "link" to my facebook profile and I sniffed the traffic using wireshark. What I would ultimately like to accomplish is to copy that packet out of the wireshark output, and then use a tool like npg to transfer the raw packet back to facebook, which should result in a second, redundant post. I just can't figure out how to do that.
I'm pretty sure this should be possible. Facebook only uses an SSL session for authentication during login. After that, the information is just sent in the clear, so I'm pretty sure this should be possible.Can anyone explain how to do such a thing? It would really help my research paper that I'm working on this semester if you can. As of right now the attack we are trying to demonstrate/defend against is using a Windows VM, which is why I'm using winpcap/npg. The attack is actually possible using just about any OS (depending on the exploit used), but our POC is Windows only at the moment
View 4 Replies
View Related
