Re: lug-bg: Re: lug-bg: MAC IP?

atlas wrote:
IPTABLES  MAC ?
 

iptables:
  mac
  --mac-source [!] address
 Match   source   MAC   address.It   must   be  of  
the  form
 XX:XX:XX:XX:XX:XX.  Note that this only makes sense for  
packets
 coming from an Ethernet device and entering the 
PREROUTING, FOR-
 WARD or INPUT chains.
..
iptables -A EDIKFOSI -m mac --mac-source 00:11:22:33:44:55 -j KFOTO_ISKASH
:-)

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: MAC IP?

[Ilia Lindov]

atlas wrote:
 ,
,
 Linux  (Slakware v.10), Internet  PPP0.
  ETH0,Internet 
   (192.168.1.0/24).
  ,PPP0   
  MACIP?  Linux
  Internet   SSH  22, 
  (iptables -A INPUT -i ppp0 -p tcp --dport 22 -j DROP)

  ...   ...
?
  ,   ,
 I,
   (   PPP  
   ?!)
:
 IP (  ) 111.222.333.444, 
I  
, ()  555.666.777.888...
iptables -P INPUT DROP
# 
iptables -A INPUT -i eth0 -j ACCEPT
#   I  555.666.777.888# 
   22
iptables -A INPUT -p tcp -i ppp0 -s 555.666.777.888 --dport 22 -j ACCEPT
   OUTPUT .
 ,   -  -   
:
iptables -P OUTPUT ACCEPT

, 
  
,
.
  :
iptables -P OUTPUT DROP
iptables -A OUTPUT -p tcp -o ppp0 -d 555.666.777.888 --sport 22 -j ACCEPT
 ,,  , 
! :) !
:  

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

lug-bg: Re: lug-bg: MAC IP?

[atlas]

  :)
  .

 From: Ilia Lindov [EMAIL PROTECTED]

 atlas wrote:
   ,
 ,
   Linux  (Slakware v.10), Internet 
PPP0.
ETH0,Internet 
 (192.168.1.0/24).
,PPP0  

MACIP? 
Linux
Internet   SSH  22,

(iptables -A INPUT -i ppp0 -p tcp --dport 22 -j DROP)
 
   ...   ...
 ?
   ,   ,
  I,
(   PPP  
?!)

 :
  IP (  ) 111.222.333.444, 
 I  
 , ()  555.666.777.888...

 iptables -P INPUT DROP
 # 
 iptables -A INPUT -i eth0 -j ACCEPT
 #   I  555.666.777.888 # 
22
 iptables -A INPUT -p tcp -i ppp0 -s 555.666.777.888 --dport 22 -j ACCEPT

OUTPUT .
  ,   -  -   
 :
 iptables -P OUTPUT ACCEPT
 
 , 
   
 ,
 .
   :
 iptables -P OUTPUT DROP
 iptables -A OUTPUT -p tcp -o ppp0 -d 555.666.777.888 --sport 22 -j ACCEPT

  ,,  , 
 ! :) !

 :  




 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
 http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara
Zagora
 To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html






A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: MAC IP?

[Vesselin Kolev]

Georgi Ivanov wrote:
|   ,PPP0   
|   MACIP? 

   ebtables.Link 
Layer .   :

http://ebtables.sourceforge.net/
 
   

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: Re: lug-bg: MAC IP?

[Georgi Ivanov]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
atlas wrote:
| IPTABLES  MAC ?
|
|
|From: Georgi Ivanov [EMAIL PROTECTED]
|Sent: Friday, October 01, 2004 6:50 PM
|Subject: Re: lug-bg: MACIP?
|
| atlas wrote:
| | [EMAIL PROTECTED] [EMAIL PROTECTED],
| | 0 Linux 0H8=0 (Slakware v.10), :OB 5 [EMAIL PROTECTED] :J Internet [EMAIL 
PROTECTED]
|
| PPP0.
|
| | A25= B20 80 8 @562 040?B5@ ETH0, [EMAIL PROTECTED] :9B ?4020 Internet :J
| | [EMAIL PROTECTED] 8 @560 (192.168.1.0/24).
| | J?@A0 8 5, :0: 40 [EMAIL PROTECTED] 4ABJ?0 4 0H8=0B0 [EMAIL PROTECTED] PPP0 
40 AB020
|
| A0
|
| | [EMAIL PROTECTED] :=:@5B5= MAC [EMAIL PROTECTED] 8;8 :=:@5B= IP? 45OB0 8 5 40 
:0=420
|
| Linux
|
| | 0H8=0B0 [EMAIL PROTECTED] Internet [EMAIL PROTECTED][EMAIL PROTECTED] [EMAIL PROTECTED] 
SSH ?@B 22, = =5 8A:0 40
|[EMAIL PROTECTED]
| | ? ?@B (iptables -A INPUT -i ppp0 -p tcp --dport 22 -j DROP)
| |
| | 0 F5;B0 AJ7404E A;54=0B0 [EMAIL PROTECTED]:
| | 
| |  iptables -N block
| |
| |  iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT
| |  iptables -A block -m state --state NEW -i ! ppp0 -j ACCEPT
| |
| |  iptables -A block -m mac --mac-source 00:80:AD:62:15:A3 -j ACCEPT
| |
| |  iptables -A block -j DROP
| |
| |  iptables -A INPUT -j block
| |  iptables -A FORWARD -j block
| | 
| |
| | = =5I =5 A5 ?;CG020 ([EMAIL PROTECTED] ? MAC =5 A5 ?;CG020).
| | @120E A [EMAIL PROTECTED] ? IP:
| |
| | iptables -A block -s 213.91.17.190 -i ppp0 -j ACCEPT
| |
| | = @57C;B0B0 15H5 AJI8O.
| |
| | : =O:9 65 40 8 ?3=5, 1;03[EMAIL PROTECTED] [EMAIL PROTECTED]@8B5;=.
| |
| |
| |
| |
|
|
|

|
| | A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
| | http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara
| Zagora
| | To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
| |
|
|
|

|
| G= 70 B78 A;CG09 A ssh  65H 40 3 [EMAIL PROTECTED] [EMAIL PROTECTED] 
hosts.allow 8
| hosts.deny 157 40 ?;720H iptables
|
| --
| Georgi Ivanov
| Aii Data Processing
| System Administrator
| IT Department
|
|
| http://www.6lyokavitza.org/
|

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara
| Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
|


|

| A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
| http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara
Zagora
| To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
|

   :
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
iptables -A allowed -p TCP --syn -j ACCEPT
iptables -A allowed -p TCP -m state --state ESTABLISHED,RELATED -jACCEPT
iptables -A allowed -p TCP -j DROP
iptables -A INPUT -p TCP -s -_ -d ME --dport
22 -j allowed
~MAC-a , MAC

iptables -N allow
- --
Georgi Ivanov
Aii Data Processing
System Administrator
IT Department
http://www.6lyokavitza.org/
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.4 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBXZE70dEkp0mjhDsRAvokAJ4wxrbOf4BO40r2rwaJcvkkNO8KDwCfZr5q
8gDHntso/b17cGzrIycLOm8=
=c6yV
-END PGP SIGNATURE-

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: MAC+IP

[Teodor Georgiev]

- Original Message -
From: Àíãåë Âúëêîâ [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, November 30, 2001 12:00 AM
Subject: Re: lug-bg: MAC+IP


 On Thursday 29 November 2001 16:47, you wrote:
  az bih go napravil mnogo zverski.
 
  1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP

 A gadniara po niakakva slu4ainost znae MAC i IP na dobroto drugar4e ot
 sysednata staia. Relaciata pak shte e viarna :)

A tuk problema veche e chisto psihologicheski.

Nikoi ne te bie po glavata da trubish po kakuv metod raboti sistemata za
accounting ;



===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[George Danchev]

On Thursday 29 November 2001 22:35, you wrote:
  A kakvo shte pravish , ako sum si vzel root/admin na mashinata na
  drugarcheto , drupnal sum mu key-ovete/passworda , smenil sum si IP-to
  i MAC-a ?!?!!?

 Ok, kazvam :)
 Eto edno Linux workstation drugar4e na koeto si otkradnal naj-bezsramno
 vsi4kite gorni nesta ... samo  4e ako e realizirano PPPoE za auth i se
 dial-upva s wvdial (syotvetno s opciq ASK PASSWORD v wvdial.conf, za da
 pita vseki pyt za pass-a pri startirane, a ne samiq password da se
 taralqnka nqkude po diska)  ste trqbva da me  snimash ot nqkude s skrita
 kamera koi keys natiskam kogato vyvezhdam pass-a za pppoe ili da se snimash
 sam s gornite nesta koito si otkradnal :)))
iskam samo da dobavq 4e ako ne mozhe da se obqsni na wvdial da ne pravi 
nomeronabirane i da e tyrsi modem ala bala ... to mozhe i bez nego 
estestveno. Vazhnoto e da ne se store-va nqkude po diska pppoe pass-a stom 
ste se krade :). Ako trqbva pass-a ste se vyvezhda vseki pyt  i premahva  
sled auth-a. (tova ve4e e posledna faza na paranoq, maj e nele4ima;). 
Vsustnost ima si  PPPoE clienti, i tova v krajna smetka si e VPN realiziran 
na bazata na PPPD, e nqma encryption samo. Startira se pppd koeto vika pppoe 
i my kazva prez koj eth interface da nameri drugiq kraj na PPP vryzkata 
(gateway-q), sled kato se ustanovi tq rabotata se poema ot pppd. Spomnqm si 
4e Ivaylo Toshev kazvashe kak Win clienta se connectval kym PPPoE server-a na 
115200 :), ne pomnq ve4e s standartniq dialup soft ili s pppoe cleint za win.
Naistina 4ak pyk takava paranoq ne e neobhodima, a i tova si e problem na 
klientite, edva li admina trqba da se pravi na policaj i da gi sledi da ne si 
kradat i podmenqt tova onova :)
-- 
Greets, 
fr11zb1
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Boris Jordanov]

On Fri, 30 Nov 2001 12:08:33 +0200
George Danchev wrote:


 iskam samo da dobavq 4e ako ne mozhe da se obqsni na wvdial da ne pravi 
 nomeronabirane i da e tyrsi modem ala bala ... to mozhe i bez nego 
 estestveno. Vazhnoto e da ne se store-va nqkude po diska pppoe pass-a stom 
 ste se krade :). Ako trqbva pass-a ste se vyvezhda vseki pyt  i premahva  
 sled auth-a. (tova ve4e e posledna faza na paranoq, maj e nele4ima;). 
 Vsustnost ima si  PPPoE clienti, i tova v krajna smetka si e VPN realiziran 
 na bazata na PPPD, e nqma encryption samo. Startira se pppd koeto vika pppoe 
 i my kazva prez koj eth interface da nameri drugiq kraj na PPP vryzkata 
 (gateway-q), sled kato se ustanovi tq rabotata se poema ot pppd. Spomnqm si 
 4e Ivaylo Toshev kazvashe kak Win clienta se connectval kym PPPoE server-a na 
 115200 :), ne pomnq ve4e s standartniq dialup soft ili s pppoe cleint za win.
 Naistina 4ak pyk takava paranoq ne e neobhodima, a i tova si e problem na 
 klientite, edva li admina trqba da se pravi na policaj i da gi sledi da ne si 
 kradat i podmenqt tova onova :)

Shtom ni e hvanala chak takava paranoia :)) Po dno vreme si igrah s VPN 
funkcionalnostta na PGP (Windows). Znachi puskahme si VPN mezdu Win mashini s PGP keys 
za authentication, kato se vdigne mashinata(a moze bi i kato se logne user, ne sum 
probval) PGP Net kazva - ja mi daj passphrase za tozi kluch, davash mu pass phrase, ne 
se store-va na disk, encryption e strong (nastrojva se razbira se). BTW spored 
dokumenti koito sum chel mozesh da vurzesh PGP VPN clienta kum Win2000 ili FreeS/WAN 
VPN serveri... Merak da ima chovek :))


Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg08150/pgp0.pgp
Description: PGP signature

Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 15:22:57 +0200
Yavor Atanasov wrote:

 Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo edin IP
 
 adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito statichen 
adres)!
 
 Kak mozhe da stane tova?
 
 Yavor Atanasov

Tova s cel da ogranichish dostupa do njakakva usluga i userite da ne mogat da 
zaobikaljat ogranichenieto ti kato si smenjat IP-tata li e ? Ako da - mozesh da 
setnesh ruchno (razbiraj script) ARP tablicata na mashinata predostavjashta uslugata, 
t.e. setvash - NA_TOVA_IP otgovarja TOZI_MAC. 

arp -d IP #tova za da flushnesh entrito za tova IP
arp -s IP MAC #za da go zakovesh

Ako ti vurshi rabota - moga da ti pratja i primeren script (to e edin red :) ) kojto 
gi chete ot file i gi setva.A ako gi razdavash s DHCP mozesh da kazesh na DHCP servera 
na konkreten MAC da dava konkretno IP.

Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07802/pgp0.pgp
Description: PGP signature

Re: lug-bg: MAC+IP

[Pavel Milev]

Hello Yavor,

÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:

Ne mojesh da spresh horata koito rabotiat po workstationite da si
smeniat IP-ta (osobeno horata s admin prava) ... ili pone ne si struva
shtoto e mnogo tejka zadacha ... az sum zabil static entry-ta v arp
tablicata na gateway-a ... ne che tva e otgovor na vuprosa ti , no
mislia che se doseshtam zashto pitash - i az sum imal hitreci
deto se opitvat da si slagat IP-ta koito sa priviligirovani


Best regards,
 Pavelmailto:[EMAIL PROTECTED]


===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Teodor Georgiev]

az bih go napravil mnogo zverski.

1. Izgrazhdam si edna bazichka s danni, 
relacia MAC - IP
2. s arpping obozhdam i 
sravniavam.
3. Ako vidia nesuotvetstvie, s iptables mu 
bicha edin DROP na MAC adresa i chakam da doide da pita shto niama Net 
;)))



  - Original Message - 
  From: 
  Yavor Atanasov 
  
  To: [EMAIL PROTECTED] 
  Sent: Thursday, November 29, 2001 2:22 
  PM
  Subject: lug-bg: MAC+IP
  
  Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo edin 
  IP
  adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito 
  statichen adres)!
  Kak mozhe da stane tova?
  Yavor Atanasov
  

Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 15:47:41 +0100
Teodor Georgiev wrote:

 
 az bih go napravil mnogo zverski.
 
 1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP
 2. s arpping obozhdam  i sravniavam.
 3. Ako vidia nesuotvetstvie, s iptables mu bicha edin DROP na MAC adresa i chakam da 
doide da pita shto niama Net ;)))
 

Mdaaa, tova mi haresva :)


Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07807/pgp0.pgp
Description: PGP signature

Re: lug-bg: MAC+IP

[Bozhan Bozhkov]

Lesno mozhes da razdavash s DHCP statichni adresi - 

host sulio{ hardware ethernet 
52:54:.;
 fixed-address 
sulio;}ili pyk:
.
fixed-address 
192.168..;
}

obache kak mozhe da se napravi, ako chovekyt sam si turi adres 
- da ne se prieme - ne znam
Kojto znae - da pishe!
B.


- Original Message - 

  From: 
  Yavor Atanasov 
  
  To: [EMAIL PROTECTED] 
  Sent: Thursday, November 29, 2001 2:22 
  PM
  Subject: lug-bg: MAC+IP
  
  Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo edin 
  IP
  adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito 
  statichen adres)!
  Kak mozhe da stane tova?
  Yavor Atanasov
  

Re: Re: lug-bg: MAC+IP

[Todor Belev]

Zdravei, 
Iskam da popitam tova oznachava li che ARP tablicata niama 
da ima avtomatichen update.
Po skoro mehanizma na skripta ti niama li da byde da 
chistish pyrvo IP - to i sled tova da go setvash...
Ako e taka oznachava li che na opredeleno vreme trebe da go 
puskash tozi script(cronjob naprimer). 
Ima li nachin na ARP-to da byde zabraneno avtomatichnoto 
dobaviane na zapisi tam.

todorin



 Îðèãèíàëíî ïèñìî 
Îò:  [EMAIL PROTECTED] 
Îòíîñíî: Re: lug-bg: MAC+IP
Äî : [EMAIL PROTECTED]
Èçïðàòåíî íà: 29.11.2001 15:40:01
---

On Thu, 29 Nov 2001 15:22:57 +0200
Yavor Atanasov wrote:

 Trjabva da napravja taka, 4e v mrejata na MAC adres
da otgovarja samo edin IP
 
 adres! I da ne moje tozi PC da vzema drug IP adres
(nito ot DHCP nito statichen adres)!
 
 Kak mozhe da stane tova?
 
 Yavor Atanasov

Tova s cel da ogranichish dostupa do njakakva usluga i
userite da ne mogat da zaobikaljat ogranichenieto ti
kato si smenjat IP-tata li e ? Ako da - mozesh da
setnesh ruchno (razbiraj script) ARP tablicata na
mashinata predostavjashta uslugata, t.e. setvash -
NA_TOVA_IP otgovarja TOZI_MAC. 

arp -d IP #tova za da flushnesh entrito za tova IP
arp -s IP MAC #za da go zakovesh

Ako ti vurshi rabota - moga da ti pratja i primeren
script (to e edin red :) ) kojto gi chete ot file i gi
setva.A ako gi razdavash s DHCP mozesh da kazesh na
DHCP servera na konkreten MAC da dava konkretno IP.

Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.

---
Èçáåðè çàâåäåíèå è íàïðàâè ðåçåðâàöèÿ òóê: http://app.netinfo.bg/zavedenia/




===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP-Dopylnenie

[Bozhan Bozhkov]

Dopylnenie -
pyrviat variant:

Lesno mozhes da razdavash s DHCP statichni adresi - 

host sulio{ hardware ethernet 
52:54:.;
 fixed-address 
sulio;}
e ako imash DNS i za host name si ima IPako ne :
.
fixed-address 
192.168..;
}

- estestveno taka mozhe i ako imash DNS :)

  - Original Message - 
  From: 
  Yavor Atanasov 
  
  To: [EMAIL PROTECTED] 
  Sent: Thursday, November 29, 2001 2:22 
  PM
  Subject: lug-bg: MAC+IP
  
  Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo edin 
  IP
  adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito 
  statichen adres)!
  Kak mozhe da stane tova?
  Yavor Atanasov
  

Re: lug-bg: MAC+IP

[Georgi Vlaev]

Oshte poweche --
ne mojesh da spresh da si smenqt MAC adres-a, koeto e po-locho !


Íà ×åòâúðòúê 29 Íîåìâðè 2001 15:46, âèå íàïèñàõòå:
 Hello Yavor,

 ÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:

 Ne mojesh da spresh horata koito rabotiat po workstationite da si
 smeniat IP-ta (osobeno horata s admin prava) ... ili pone ne si struva
 shtoto e mnogo tejka zadacha ... az sum zabil static entry-ta v arp
 tablicata na gateway-a ... ne che tva e otgovor na vuprosa ti , no
 mislia che se doseshtam zashto pitash - i az sum imal hitreci
 deto se opitvat da si slagat IP-ta koito sa priviligirovani


 Best regards,
  Pavelmailto:[EMAIL PROTECTED]


 ===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Teodor Georgiev]

pri men v ofisa vyrvi accounting po IP shtoto  ima edni deto praviat lud
trafik.
I te si vdigat drugi IP-ta.
Hitreci be...


- Original Message -
From: Pavel Milev [EMAIL PROTECTED]
To: Yavor Atanasov [EMAIL PROTECTED]
Sent: Thursday, November 29, 2001 2:46 PM
Subject: Re: lug-bg: MAC+IP


 Hello Yavor,

 ÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:

 Ne mojesh da spresh horata koito rabotiat po workstationite da si
 smeniat IP-ta (osobeno horata s admin prava) ... ili pone ne si struva
 shtoto e mnogo tejka zadacha ... az sum zabil static entry-ta v arp
 tablicata na gateway-a ... ne che tva e otgovor na vuprosa ti , no
 mislia che se doseshtam zashto pitash - i az sum imal hitreci
 deto se opitvat da si slagat IP-ta koito sa priviligirovani


 Best regards,
  Pavelmailto:[EMAIL PROTECTED]



===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[George Danchev]

On Thursday 29 November 2001 16:47, you wrote:
 az bih go napravil mnogo zverski.

 1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP
 2. s arpping obozhdam  i sravniavam.
 3. Ako vidia nesuotvetstvie, s iptables mu bicha edin DROP na MAC adresa i
 chakam da doide da pita shto niama Net ;)))
basi gadniq ...
edinstveniq probiv na tova e hardwaren, t.e. ako zemat da si razmenqt vzaimno 
NIC-ovete po machinite:) . Ama ti sigurno bi slozhil i obemen dat4ik e 
box-ovete im i pak ste gi hvanesh ... znam az :)

   Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo
 edin IP

   adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito
 statichen adres)!

   Kak mozhe da stane tova?

   Yavor Atanasov

-- 
Greets, 
fr11zb1
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 16:04:27 +0200
Todor Belev wrote:

 Zdravei, 
 Iskam da popitam tova oznachava li che ARP tablicata niama 
 da ima avtomatichen update.
 Po skoro mehanizma na skripta ti niama li da byde da 
 chistish pyrvo IP - to i sled tova da go setvash...
 Ako e taka oznachava li che na opredeleno vreme trebe da go 
 puskash tozi script(cronjob naprimer). 

Hm... ami da, nali tova bjah napisal v postinga: `arp -d IP_ADDRESS` za da razkarash 
entry-to za tozi IP v ARP tablicata i `arp -s IP_ADDRESS MAC_ADDRESS` za da go 
zakovesh kum daden MAC address. Za auto update na arp table - da i ne. Tezi koito 
setnesh tvurdo taka shte si stojat, a za koito ne si ukazval izrichno - shte si se 
update-vat (ako sum razbral pravilno kakvo pitash). Opredelenoto vreme pri nas e pri 
startup na mashinata, v edin rc script si gi setvame. Userite ni ne se promenjat s koj 
znae kakva dinamika, napravo s nikakva daze.  

 Ima li nachin na ARP-to da byde zabraneno avtomatichnoto 
 dobaviane na zapisi tam.

Kude e tam?

Take care

Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07816/pgp0.pgp
Description: PGP signature

Re: Re: lug-bg: MAC+IP

[Todor Belev]

Imenno tova pitah, 
tova znachi che ako ne pravish proverka chesto za tova dali 
ima avtomatichno dobaveni entryta v ARP tablicata , az ot 
strna na hitrec shte moga da si smenia IP-to i da rabotia 
do sledvashtia pyt kogato si pochistish dinamichno 
dobavenoto entry (t.e. pri restart na mashinata).
Ako tova se pravi na 1 minuta (t.e. flushvane na dinamichno 
dobavenite zapisi v ARP tablicata) az pyk moga da si 
napravia script s koito dinamichno si promeniam IP to da 
kajem na vremeto na koeto ti pochistvash tablicata.
Za tova mi beshe vyrposa za niakakyv trik s koito shet 
mojesh izcialo da zabranish dinamichnoto dobaviane na 
entryta v ARP tablicata.

Todorin




 Îðèãèíàëíî ïèñìî 
Îò:  [EMAIL PROTECTED] 
Îòíîñíî: Re: lug-bg: MAC+IP
Äî : [EMAIL PROTECTED]
Èçïðàòåíî íà: 29.11.2001 16:18:45
---

On Thu, 29 Nov 2001 16:04:27 +0200
Todor Belev wrote:

 Zdravei, 
 Iskam da popitam tova oznachava li che ARP tablicata
niama 
 da ima avtomatichen update.
 Po skoro mehanizma na skripta ti niama li da byde da

 chistish pyrvo IP - to i sled tova da go setvash...
 Ako e taka oznachava li che na opredeleno vreme trebe
da go 
 puskash tozi script(cronjob naprimer). 

Hm... ami da, nali tova bjah napisal v postinga: `arp
-d IP_ADDRESS` za da razkarash entry-to za tozi IP v
ARP tablicata i `arp -s IP_ADDRESS MAC_ADDRESS` za da
go zakovesh kum daden MAC address. Za auto update na
arp table - da i ne. Tezi koito setnesh tvurdo taka
shte si stojat, a za koito ne si ukazval izrichno -
shte si se update-vat (ako sum razbral pravilno kakvo
pitash). Opredelenoto vreme pri nas e pri startup na
mashinata, v edin rc script si gi setvame. Userite ni
ne se promenjat s koj znae kakva dinamika, napravo s
nikakva daze.  

 Ima li nachin na ARP-to da byde zabraneno
avtomatichnoto 
 dobaviane na zapisi tam.

Kude e tam?

Take care

Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.

---
Èçáåðè çàâåäåíèå è íàïðàâè ðåçåðâàöèÿ òóê: http://app.netinfo.bg/zavedenia/




===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: Re: lug-bg: MAC+IP

[Todor Belev]

Imenno tova pitah, 
tova znachi che ako ne pravish proverka chesto za tova dali 
ima avtomatichno dobaveni entryta v ARP tablicata , az ot 
strna na hitrec shte moga da si smenia IP-to i da rabotia 
do sledvashtia pyt kogato si pochistish dinamichno 
dobavenoto entry (t.e. pri restart na mashinata).
Ako tova se pravi na 1 minuta (t.e. flushvane na dinamichno 
dobavenite zapisi v ARP tablicata) az pyk moga da si 
napravia script s koito dinamichno si promeniam IP to da 
kajem na vremeto na koeto ti pochistvash tablicata.
Za tova mi beshe vyrposa za niakakyv trik s koito shet 
mojesh izcialo da zabranish dinamichnoto dobaviane na 
entryta v ARP tablicata.

Todorin




 Îðèãèíàëíî ïèñìî 
Îò:  [EMAIL PROTECTED] 
Îòíîñíî: Re: lug-bg: MAC+IP
Äî : [EMAIL PROTECTED]
Èçïðàòåíî íà: 29.11.2001 16:18:45
---

On Thu, 29 Nov 2001 16:04:27 +0200
Todor Belev wrote:

 Zdravei, 
 Iskam da popitam tova oznachava li che ARP tablicata
niama 
 da ima avtomatichen update.
 Po skoro mehanizma na skripta ti niama li da byde da

 chistish pyrvo IP - to i sled tova da go setvash...
 Ako e taka oznachava li che na opredeleno vreme trebe
da go 
 puskash tozi script(cronjob naprimer). 

Hm... ami da, nali tova bjah napisal v postinga: `arp
-d IP_ADDRESS` za da razkarash entry-to za tozi IP v
ARP tablicata i `arp -s IP_ADDRESS MAC_ADDRESS` za da
go zakovesh kum daden MAC address. Za auto update na
arp table - da i ne. Tezi koito setnesh tvurdo taka
shte si stojat, a za koito ne si ukazval izrichno -
shte si se update-vat (ako sum razbral pravilno kakvo
pitash). Opredelenoto vreme pri nas e pri startup na
mashinata, v edin rc script si gi setvame. Userite ni
ne se promenjat s koj znae kakva dinamika, napravo s
nikakva daze.  

 Ima li nachin na ARP-to da byde zabraneno
avtomatichnoto 
 dobaviane na zapisi tam.

Kude e tam?

Take care

Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.

---
Èçáåðè çàâåäåíèå è íàïðàâè ðåçåðâàöèÿ òóê: http://app.netinfo.bg/zavedenia/




===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 16:27:00 +0200
Todor Belev wrote:

 Imenno tova pitah, 
 tova znachi che ako ne pravish proverka chesto za tova dali 
 ima avtomatichno dobaveni entryta v ARP tablicata , az ot 
 strna na hitrec shte moga da si smenia IP-to i da rabotia 
 do sledvashtia pyt kogato si pochistish dinamichno 
 dobavenoto entry (t.e. pri restart na mashinata).
 Ako tova se pravi na 1 minuta (t.e. flushvane na dinamichno 
 dobavenite zapisi v ARP tablicata) az pyk moga da si 
 napravia script s koito dinamichno si promeniam IP to da 
 kajem na vremeto na koeto ti pochistvash tablicata.
 Za tova mi beshe vyrposa za niakakyv trik s koito shet 
 mojesh izcialo da zabranish dinamichnoto dobaviane na 
 entryta v ARP tablicata.
 
 Todorin
 
 

O, ima nachin :) Dobavjash statichno VSICHKI IP-ta koito ne iskash da se shmatkat 
bezkontrolno. Pri men e taka, okolo 200 entry-ta sa mi maj. Tuk go izpolzvame za da 
limitirame proxy usage, shtoto navremeto ne e napraveno s proxy auth, a sa reshili da 
e po-bezproblemno za userite. Tezi koito imat web access sa kovnati tvurdo v ARP-a na 
proxy-to. Vsichki ostanali sa free da se rejat iz mrezata. Ot druga strana vsichkite 
ni useri sa NT Workstation i ne sa s admin prava ... Ponjakoga edin instrument ne e 
dostatuchen ;)

P.S. Ti kato hitrec, kato ti kovna vednuz MAC-a s dadeno IP, posle smenjaj IP-ta 
kolkoto iskash :) Dali gateway/server na kojto e setnata tazi ARP tablica shte te 
obsluzi?


Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07822/pgp0.pgp
Description: PGP signature

Re: lug-bg: MAC+IP

[Teodor Georgiev]

- Original Message -
From: George Danchev [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, November 29, 2001 3:16 PM
Subject: Re: lug-bg: MAC+IP


 On Thursday 29 November 2001 16:47, you wrote:
  az bih go napravil mnogo zverski.
 
  1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP
  2. s arpping obozhdam  i sravniavam.
  3. Ako vidia nesuotvetstvie, s iptables mu bicha edin DROP na MAC adresa
i
  chakam da doide da pita shto niama Net ;)))
 basi gadniq ...
 edinstveniq probiv na tova e hardwaren, t.e. ako zemat da si razmenqt
vzaimno
 NIC-ovete po machinite:) . Ama ti sigurno bi slozhil i obemen dat4ik e
 box-ovete im i pak ste gi hvanesh ... znam az :)

Tova sus smianata na NIC-ovete niama da stane, shtoto taka shte se ebat edin
drugi...
nali pak shte ima otcheten trafik ot tqhnata staq ;)

Ami kato minimum shte gi hvana po NetBIOS hostname, shtoto sa windows'dzhii.
Ako triabva i tcpdump na ICQ paketite shte pravia, da gledam koi s kakuv UIN
se logva.

Gurch za userite!

:)))





===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Teodor Georgiev]

shto puk ne?

- Original Message -
From: Georgi Vlaev [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, November 29, 2001 3:15 PM
Subject: Re: lug-bg: MAC+IP


 Oshte poweche --
 ne mojesh da spresh da si smenqt MAC adres-a, koeto e po-locho !


 Íà ×åòâúðòúê 29 Íîåìâðè 2001 15:46, âèå íàïèñàõòå:
  Hello Yavor,
 
  ÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:
 
  Ne mojesh da spresh horata koito rabotiat po workstationite da si
  smeniat IP-ta (osobeno horata s admin prava) ... ili pone ne si struva
  shtoto e mnogo tejka zadacha ... az sum zabil static entry-ta v arp
  tablicata na gateway-a ... ne che tva e otgovor na vuprosa ti , no
  mislia che se doseshtam zashto pitash - i az sum imal hitreci
  deto se opitvat da si slagat IP-ta koito sa priviligirovani
 
 
  Best regards,
   Pavelmailto:[EMAIL PROTECTED]
 
 
 
===
  A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
  http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora

===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Ivan Dimitrov]

   Ivan Dimitrov
System Administrator
  Bastun Networks

On Thu, 29 Nov 2001, Teodor Georgiev wrote:


 az bih go napravil mnogo zverski.

 1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP
 2. s arpping obozhdam  i sravniavam.

trqbva ti arpwatch, ako imash po-golqma mreja:)



 3. Ako vidia nesuotvetstvie, s iptables mu bicha edin DROP na MAC adresa i chakam da 
doide da pita shto niama Net ;)))


   - Original Message -
   From: Yavor Atanasov
   To: [EMAIL PROTECTED]
   Sent: Thursday, November 29, 2001 2:22 PM
   Subject: lug-bg: MAC+IP


   Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo edin IP

   adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito statichen 
adres)!

   Kak mozhe da stane tova?

   Yavor Atanasov




===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Ivan Dimitrov]

1) vednuj setnesh li s `arp -s MAC IP` tova ne e dinamichno ami si ostava
i ot tam natatuk prosto nqma nachin da vlezes s drug MAC adres. blokva
vsichko. obiknovenno tozi skript se slaga v rc. failovete pri bootvane da
si zaredi tablicata s  ip - mac adresi.

2) ako obichate zabravete za filtrirane po MAC adres. ot izvestno vreme
proizvoditelite na eth karti:) sa si dobavili vuzmojnost za promqna na MAC
adresi, az lichno sum vijdal mac adres 00:00:00:00:00:kolkoto:trqbva:nuli
i ne e problem da se smeni mac adres i ip-to. stava za sekundi:) nachina
koito mi podskazaxa togava i koito ne sum iztestval e s vpn, ako nqkoi ima
opit za takuv vid authentifikacia neka da pishe:)))


   Ivan Dimitrov
System Administrator
  Bastun Networks

On Thu, 29 Nov 2001, Todor Belev wrote:

 Imenno tova pitah,
 tova znachi che ako ne pravish proverka chesto za tova dali
 ima avtomatichno dobaveni entryta v ARP tablicata , az ot
 strna na hitrec shte moga da si smenia IP-to i da rabotia
 do sledvashtia pyt kogato si pochistish dinamichno
 dobavenoto entry (t.e. pri restart na mashinata).
 Ako tova se pravi na 1 minuta (t.e. flushvane na dinamichno
 dobavenite zapisi v ARP tablicata) az pyk moga da si
 napravia script s koito dinamichno si promeniam IP to da
 kajem na vremeto na koeto ti pochistvash tablicata.
 Za tova mi beshe vyrposa za niakakyv trik s koito shet
 mojesh izcialo da zabranish dinamichnoto dobaviane na
 entryta v ARP tablicata.

 Todorin




  Îðèãèíàëíî ïèñìî 
 Îò:  [EMAIL PROTECTED]
 Îòíîñíî: Re: lug-bg: MAC+IP
 Äî : [EMAIL PROTECTED]
 Èçïðàòåíî íà: 29.11.2001 16:18:45
 ---
 
 On Thu, 29 Nov 2001 16:04:27 +0200
 Todor Belev wrote:
 
  Zdravei,
  Iskam da popitam tova oznachava li che ARP tablicata
 niama
  da ima avtomatichen update.
  Po skoro mehanizma na skripta ti niama li da byde da
 
  chistish pyrvo IP - to i sled tova da go setvash...
  Ako e taka oznachava li che na opredeleno vreme trebe
 da go
  puskash tozi script(cronjob naprimer).
 
 Hm... ami da, nali tova bjah napisal v postinga: `arp
 -d IP_ADDRESS` za da razkarash entry-to za tozi IP v
 ARP tablicata i `arp -s IP_ADDRESS MAC_ADDRESS` za da
 go zakovesh kum daden MAC address. Za auto update na
 arp table - da i ne. Tezi koito setnesh tvurdo taka
 shte si stojat, a za koito ne si ukazval izrichno -
 shte si se update-vat (ako sum razbral pravilno kakvo
 pitash). Opredelenoto vreme pri nas e pri startup na
 mashinata, v edin rc script si gi setvame. Userite ni
 ne se promenjat s koj znae kakva dinamika, napravo s
 nikakva daze.
 
  Ima li nachin na ARP-to da byde zabraneno
 avtomatichnoto
  dobaviane na zapisi tam.
 
 Kude e tam?
 
 Take care
 
 Boris Jordanov (borj) [EMAIL PROTECTED]
 ICQ 10751645
 
 PGP-key-fingerprint:--
 CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
 --
 Public-key:---
 http://borj.freeshell.org/borj.asc
 --
 If one does not know to which port is sailing,
 no wind is favorable.
 
 ---
 Èçáåðè çàâåäåíèå è íàïðàâè ðåçåðâàöèÿ òóê: http://app.netinfo.bg/zavedenia/




 ===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora


===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Teodor Georgiev]

 
  az bih go napravil mnogo zverski.
 
  1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP
  2. s arpping obozhdam  i sravniavam.
 
 trqbva ti arpwatch, ako imash po-golqma mreja:)

i tova e viarno :)



===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Georgi Vlaev]

Èñêàø äà êàæåø, ÷å MAC  àäðåñà íå ìîæå äà ñå ñìåíè ëè ???

eth0  Link encap:Ethernet  HWaddr 00:11:22:33:44:55
  inet addr:192.168.10.20  Bcast:192.168.10.255  Mask:255.255.255.0
  UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
  RX packets:4874265 errors:334435 dropped:11 overruns:0 frame:0
  TX packets:503073 errors:7 dropped:0 overruns:7 carrier:0
  collisions:18676 txqueuelen:100
  Interrupt:10 Base address:0xd400

eth0:1Link encap:Ethernet  HWaddr 00:11:22:33:44:55
  inet addr:10.0.0.20  Bcast:10.255.255.255  Mask:255.255.255.0
  UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
  Interrupt:10 Base address:0xd400

ßâíî íå ñè ïîïàäàë íà çëîíàìåðåíè õîðà.. 



Íà ×åòâúðòúê 29 Íîåìâðè 2001 17:39, âèå íàïèñàõòå:
 shto puk ne?

 - Original Message -
 From: Georgi Vlaev [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]
 Sent: Thursday, November 29, 2001 3:15 PM
 Subject: Re: lug-bg: MAC+IP

  Oshte poweche --
  ne mojesh da spresh da si smenqt MAC adres-a, koeto e po-locho !
 
  Íà ×åòâúðòúê 29 Íîåìâðè 2001 15:46, âèå íàïèñàõòå:
   Hello Yavor,
  
   ÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:
  
   Ne mojesh da spresh horata koito rabotiat po workstationite da si
   smeniat IP-ta (osobeno horata s admin prava) ... ili pone ne si struva
   shtoto e mnogo tejka zadacha ... az sum zabil static entry-ta v arp
   tablicata na gateway-a ... ne che tva e otgovor na vuprosa ti , no
   mislia che se doseshtam zashto pitash - i az sum imal hitreci
   deto se opitvat da si slagat IP-ta koito sa priviligirovani
  
  
   Best regards,
Pavelmailto:[EMAIL PROTECTED]

 ===

   A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
   http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara

 Zagora

 ===

  A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
  http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara

 Zagora

 ===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Pavel Milev]

Hello Ivan,

÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:

ID 1) vednuj setnesh li s `arp -s MAC IP` tova ne e dinamichno ami si ostava
ID i ot tam natatuk prosto nqma nachin da vlezes s drug MAC adres. blokva
ID vsichko. obiknovenno tozi skript se slaga v rc. failovete pri bootvane da
ID si zaredi tablicata s  ip - mac adresi.

Kakvo shte kajesh za slednoto :

.. smenil sum si IP-to,  otvariam niacacuv connection na niakude ...
mashinata koiato maskira packeti kum sveta IZOBSHTO ne ia e griza  za
static entry-to v tvoiata ARP tablica i maskira connectiona ... sled
vreme se vrushta reply za teb , mashinata ti go vrushta na tvoeto
(smenenoto) IP s drug MAC ... i estestveno NIC-a ti ne si go poznava i
go otebava ... ami kakvo stava ako sus gateway-a sme na edin ethernet segment
(naprimer zakacheni v edin hub) i az sum v promiscuous_mode ???
mai si hvashtam reply-a i si svirkam ,a ?

ID 2) ako obichate zabravete za filtrirane po MAC adres. ot izvestno vreme
ID proizvoditelite na eth karti:) sa si dobavili vuzmojnost za promqna na MAC
ID adresi, az lichno sum vijdal mac adres 00:00:00:00:00:kolkoto:trqbva:nuli
ID i ne e problem da se smeni mac adres i ip-to. stava za sekundi:)

da , taka e i naistina ne se seshtam za protivodeistvie !
... no e fakt che 95% ot horata ne biha si smenili MAC/IP addressite -
bilo zashtoto ne znaiat kak, zashtoto ne iskat, zashtoto posle ne
im se govori s shefa i t.n. ...

ID nachina
ID koito mi podskazaxa togava i koito ne sum iztestval e s vpn, ako nqkoi ima
ID opit za takuv vid authentifikacia neka da pishe:)))

i kvo sega ... sha si pusnesh hilaidi VPN-i  mejdu gateway-a i
workstation-ite shtoto niakoi shtial da vidi 5 goli zadnika v poveche ot
drugia ?!?!?!
A kakvo shte pravish , ako sum si vzel root/admin na mashinata na
drugarcheto , drupnal sum mu key-ovete/passworda , smenil sum si IP-to
i MAC-a ?!?!!?




Best regards,
 Pavelmailto:[EMAIL PROTECTED]


===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 17:31:11 +0200
Georgi Vlaev wrote:

 Èñêàø äà êàæåø, ÷å MAC  àäðåñà íå ìîæå äà ñå ñìåíè ëè ???
 
 eth0  Link encap:Ethernet  HWaddr 00:11:22:33:44:55
   inet addr:192.168.10.20  Bcast:192.168.10.255  Mask:255.255.255.0
   UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
   RX packets:4874265 errors:334435 dropped:11 overruns:0 frame:0
   TX packets:503073 errors:7 dropped:0 overruns:7 carrier:0
   collisions:18676 txqueuelen:100
   Interrupt:10 Base address:0xd400
 
 eth0:1Link encap:Ethernet  HWaddr 00:11:22:33:44:55
   inet addr:10.0.0.20  Bcast:10.255.255.255  Mask:255.255.255.0
   UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
   Interrupt:10 Base address:0xd400
 
 ßâíî íå ñè ïîïàäàë íà çëîíàìåðåíè õîðà.. 
 

Mdaa. Tova vse pak predpolaga njakakvo nivo na kompetentnost na userite, koeto slava 
bogu rjadko se sreshta. Ako dokopam takuv pri nas, shte mu izvia vrata ...

Taja istoria e kato zmia zahapala opashkata si. Vechnata igra na gonenica :)) Trjabva 
da se nameri chastno reshenie spored usloviata i konkretnata situacia. Maj generalno 
reshenie njama. Pak vechnata igra na gonenica :))

Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07836/pgp0.pgp
Description: PGP signature

Re: lug-bg: MAC+IP

[George Danchev]

On Thursday 29 November 2001 17:31, you wrote:
 Èñêàø äà êàæåø, ÷å MAC  àäðåñà íå ìîæå äà ñå ñìåíè ëè ???

 eth0  Link encap:Ethernet  HWaddr 00:11:22:33:44:55
   inet addr:192.168.10.20  Bcast:192.168.10.255  Mask:255.255.255.0
   UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
   RX packets:4874265 errors:334435 dropped:11 overruns:0 frame:0
   TX packets:503073 errors:7 dropped:0 overruns:7 carrier:0
   collisions:18676 txqueuelen:100
   Interrupt:10 Base address:0xd400

 eth0:1Link encap:Ethernet  HWaddr 00:11:22:33:44:55
   inet addr:10.0.0.20  Bcast:10.255.255.255  Mask:255.255.255.0
   UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
   Interrupt:10 Base address:0xd400

 ßâíî íå ñè ïîïàäàë íà çëîíàìåðåíè õîðà..

 Íà ×åòâúðòúê 29 Íîåìâðè 2001 17:39, âèå íàïèñàõòå:
  shto puk ne?
blah, za smqnata na MAC-a bqh 4uval samo i si mislih 4e ponastoqstem e 
legenda vse oste, vinata e na proizvoditelite na NIC , vsustnost ne mi e qsno 
kakvo pe4elqt ot tova . No vse pak kolko sa userite kojto znaqt kak da se 
zadobiqt i setnat  privilegirovani IP-MAC ot arp table-a na dadeniq 
gateway/router. 
Drugoto za koeto se setam e da prekarash   vsi4ki prez proxy-to za 
authentification, if fail - no service.
-- 
Greets, 
fr11zb1
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Boris Jordanov]

On Thu, 29 Nov 2001 17:47:46 +0200
Pavel Milev wrote:

 Hello Ivan,
 
 ÷åòâúâòúê, 29 Íîåìâðè 2001 ã., you wrote:
 
 ID 1) vednuj setnesh li s `arp -s MAC IP` tova ne e dinamichno ami si ostava
 ID i ot tam natatuk prosto nqma nachin da vlezes s drug MAC adres. blokva
 ID vsichko. obiknovenno tozi skript se slaga v rc. failovete pri bootvane da
 ID si zaredi tablicata s  ip - mac adresi.
 
 Kakvo shte kajesh za slednoto :
 
 .. smenil sum si IP-to,  otvariam niacacuv connection na niakude ...
 mashinata koiato maskira packeti kum sveta IZOBSHTO ne ia e griza  za
 static entry-to v tvoiata ARP tablica i maskira connectiona ... sled
 vreme se vrushta reply za teb , mashinata ti go vrushta na tvoeto
 (smenenoto) IP s drug MAC ... i estestveno NIC-a ti ne si go poznava i
 go otebava ... ami kakvo stava ako sus gateway-a sme na edin ethernet segment
 (naprimer zakacheni v edin hub) i az sum v promiscuous_mode ???
 mai si hvashtam reply-a i si svirkam ,a ?
 

OKie, stana jasno kakvi hvatki i chalumi sa poznati na sveta za da zaobikoli 
ogranicheniata. Choveka pitashe kak da si svurshi rabotata, ajde da se susredotochim 
vurhu tova.


Take care


Boris Jordanov (borj) [EMAIL PROTECTED]
ICQ 10751645

PGP-key-fingerprint:--
CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
--
Public-key:---
http://borj.freeshell.org/borj.asc
--
If one does not know to which port is sailing,
no wind is favorable.




msg07839/pgp0.pgp
Description: PGP signature

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Teodor Georgiev]

viarno e.
mnogo lesno se smenia MAC adres.
eto primer:

ifconfig eth0 hw ether 00:00:00:00:00:00...

obache...
eto slednata shema:

admina dava  iptables -P FORWARD DROP
sled tova pootdelno za vsiaka karta si razreshava trafika...

smeniai si MAC-a koolkoto iskash...


- Original Message -
From: Ivan Dimitrov [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, November 29, 2001 4:00 PM
Subject: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP


 1) vednuj setnesh li s `arp -s MAC IP` tova ne e dinamichno ami si ostava
 i ot tam natatuk prosto nqma nachin da vlezes s drug MAC adres. blokva
 vsichko. obiknovenno tozi skript se slaga v rc. failovete pri bootvane da
 si zaredi tablicata s  ip - mac adresi.

 2) ako obichate zabravete za filtrirane po MAC adres. ot izvestno vreme
 proizvoditelite na eth karti:) sa si dobavili vuzmojnost za promqna na MAC
 adresi, az lichno sum vijdal mac adres 00:00:00:00:00:kolkoto:trqbva:nuli
 i ne e problem da se smeni mac adres i ip-to. stava za sekundi:) nachina
 koito mi podskazaxa togava i koito ne sum iztestval e s vpn, ako nqkoi ima
 opit za takuv vid authentifikacia neka da pishe:)))


Ivan Dimitrov
 System Administrator
   Bastun Networks

 On Thu, 29 Nov 2001, Todor Belev wrote:

  Imenno tova pitah,
  tova znachi che ako ne pravish proverka chesto za tova dali
  ima avtomatichno dobaveni entryta v ARP tablicata , az ot
  strna na hitrec shte moga da si smenia IP-to i da rabotia
  do sledvashtia pyt kogato si pochistish dinamichno
  dobavenoto entry (t.e. pri restart na mashinata).
  Ako tova se pravi na 1 minuta (t.e. flushvane na dinamichno
  dobavenite zapisi v ARP tablicata) az pyk moga da si
  napravia script s koito dinamichno si promeniam IP to da
  kajem na vremeto na koeto ti pochistvash tablicata.
  Za tova mi beshe vyrposa za niakakyv trik s koito shet
  mojesh izcialo da zabranish dinamichnoto dobaviane na
  entryta v ARP tablicata.
 
  Todorin
 
 
 
 
   Îðèãèíàëíî ïèñìî 
  Îò:  [EMAIL PROTECTED]
  Îòíîñíî: Re: lug-bg: MAC+IP
  Äî : [EMAIL PROTECTED]
  Èçïðàòåíî íà: 29.11.2001 16:18:45
  ---
  
  On Thu, 29 Nov 2001 16:04:27 +0200
  Todor Belev wrote:
  
   Zdravei,
   Iskam da popitam tova oznachava li che ARP tablicata
  niama
   da ima avtomatichen update.
   Po skoro mehanizma na skripta ti niama li da byde da
  
   chistish pyrvo IP - to i sled tova da go setvash...
   Ako e taka oznachava li che na opredeleno vreme trebe
  da go
   puskash tozi script(cronjob naprimer).
  
  Hm... ami da, nali tova bjah napisal v postinga: `arp
  -d IP_ADDRESS` za da razkarash entry-to za tozi IP v
  ARP tablicata i `arp -s IP_ADDRESS MAC_ADDRESS` za da
  go zakovesh kum daden MAC address. Za auto update na
  arp table - da i ne. Tezi koito setnesh tvurdo taka
  shte si stojat, a za koito ne si ukazval izrichno -
  shte si se update-vat (ako sum razbral pravilno kakvo
  pitash). Opredelenoto vreme pri nas e pri startup na
  mashinata, v edin rc script si gi setvame. Userite ni
  ne se promenjat s koj znae kakva dinamika, napravo s
  nikakva daze.
  
   Ima li nachin na ARP-to da byde zabraneno
  avtomatichnoto
   dobaviane na zapisi tam.
  
  Kude e tam?
  
  Take care
  
  Boris Jordanov (borj) [EMAIL PROTECTED]
  ICQ 10751645
  
  PGP-key-fingerprint:--
  CB23 8B52 5FBC F36A 1B61  F1ED 2831 E52D AAFF 7B08
  --
  Public-key:---
  http://borj.freeshell.org/borj.asc
  --
  If one does not know to which port is sailing,
  no wind is favorable.
  
  ---
  Èçáåðè çàâåäåíèå è íàïðàâè ðåçåðâàöèÿ òóê:
http://app.netinfo.bg/zavedenia/
 
 
 
 
 
===
  A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
  http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora
 


===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Vasil Kolev]

On Thu, 29 Nov 2001, George Danchev wrote:

 On Thursday 29 November 2001 17:31, you wrote:
  Èñêàø äà êàæåø, ÷å MAC  àäðåñà íå ìîæå äà ñå ñìåíè ëè ???
 
  eth0  Link encap:Ethernet  HWaddr 00:11:22:33:44:55
inet addr:192.168.10.20  Bcast:192.168.10.255  Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
RX packets:4874265 errors:334435 dropped:11 overruns:0 frame:0
TX packets:503073 errors:7 dropped:0 overruns:7 carrier:0
collisions:18676 txqueuelen:100
Interrupt:10 Base address:0xd400
 
  eth0:1Link encap:Ethernet  HWaddr 00:11:22:33:44:55
inet addr:10.0.0.20  Bcast:10.255.255.255  Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
Interrupt:10 Base address:0xd400
 
  ßâíî íå ñè ïîïàäàë íà çëîíàìåðåíè õîðà..
 
  Íà ×åòâúðòúê 29 Íîåìâðè 2001 17:39, âèå íàïèñàõòå:
   shto puk ne?
 blah, za smqnata na MAC-a bqh 4uval samo i si mislih 4e ponastoqstem e
 legenda vse oste, vinata e na proizvoditelite na NIC , vsustnost ne mi e qsno
 kakvo pe4elqt ot tova . No vse pak kolko sa userite kojto znaqt kak da se
 zadobiqt i setnat  privilegirovani IP-MAC ot arp table-a na dadeniq
 gateway/router.
 Drugoto za koeto se setam e da prekarash   vsi4ki prez proxy-to za
 authentification, if fail - no service.
 --

Purvo, tova za smqnata na mac adresa se e nalagolo otdavna, za nqkoi
protocoli kato decnet, koito iziskvat vsichki eth interfaces na mashinata
da imat eidn i sushti mac adress( za chii *** - dqvol znae ). Inache,
naj-secure nachina e s pppoe , dazhe Ivajlo Toshev beshe napisal takava
programka ( LANUTA ) , koqto dosta dobre se opravqshe i s trafic
accounting-a.

Ili 3tiq variant e da fixirate po krajnite ustrojstva ( switchove/hubove)
pozvolenite mac adresi ot koito mozhe da idva info na nqkoj port... Obache
e baq skupo reshenie.

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re[2]: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[Pavel Milev]

Hello Boris,


BJ OKie, stana jasno kakvi hvatki i chalumi sa poznati na sveta za da zaobikoli 
ogranicheniata. Choveka pitashe kak da si svurshi rabotata, ajde da se susredotochim 
vurhu tova.

1. Nali tochno tova se opitvame da napravim - da predlojim nai-dobre
raboteshtoto reshenie
2. Mislia che diskusiata e polezna , zashtoto vseki ot nas se e
sbluskval s podoben problem i spodelianeto na opit/idei/ hvatki i
chalumi:) shte e polzeno.
3. Prav si che :
--- Trjabva da se nameri chastno reshenie spored usloviata i konkretnata situacia. Maj 
generalno
--- reshenie njama. Pak vechnata igra na gonenica :))
zatova misia che Yavor Atanasov [EMAIL PROTECTED] triabva sam da
preceni situaciata okolo nego i vuz osnova na vsichkite mailove koito
izpisahme, da se nasochi kum neshto puk nie shte pomagame ! :)


Best regards,
 Pavelmailto:[EMAIL PROTECTED]


===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[George Danchev]

Yovore taka kakto si postavil uslovieto na zada4ata maj naistina nqma 
reshenie. Ne razbrah samo ideqta na Teodor Georgiev:

iptables -P FORWARD DROP
sled tova pootdelno za vsiaka karta si razreshava trafika...
smeniai si MAC-a koolkoto iskash...
--
stom user-a mozhe da si podbere i setne (gepi 4uzhda) dvojka MAC-IP koqto e 
ot razreshenite za obsluzhvane, to togava gornoto ne reshava problema spored 
men.

Trqbva da kazhesh zasto to4no iskash da vurzhesh daden MAC za dadeno IP, t.e. 
kakyv kraen rezultat gonish da postignesh vruzvajki daden MAC za opredeleno 
IP?  mozhe bi ste postignesh pak krajniq rezultat no po drug pyt , naprimer 
4rez authentifikaciq na usera, i pak ste se dokopash do konkretniq user ako 
tova e celta na zanqtieto.
Tova s PPP over Ether (prez ppp za da go authentificira , tova e ideqta 
dokolkoto razbiram ...) mozhe i da svyrshi rabota. Maj suhranqvashe nesto v 
SQL baza oba4e, ne pomnq no beshe diskutirano dosta otdavna.
 Purvo, tova za smqnata na mac adresa se e nalagolo otdavna, za nqkoi
 protocoli kato decnet, koito iziskvat vsichki eth interfaces na mashinata
 da imat eidn i sushti mac adress( za chii *** - dqvol znae ). Inache,
 naj-secure nachina e s pppoe , dazhe Ivajlo Toshev beshe napisal takava
 programka ( LANUTA ) , koqto dosta dobre se opravqshe i s trafic
 accounting-a.

e Ivo da se proiznese kompetentno i da kazhe de e programkata, ako e free 
estestveno:)

 Ili 3tiq variant e da fixirate po krajnite ustrojstva ( switchove/hubove)
 pozvolenite mac adresi ot koito mozhe da idva info na nqkoj port... Obache
 e baq skupo reshenie.

kato nqkoj Managed na Allied Telesyn $$$ Series ...(maj ne bqha GPL'd 
naistina:)

-- 
Greets, 
fr11zb1
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP+mnogo offtopic

[Yavor Atanasov]

Izchetoh vsichkite otgovori. Tochnija problem e che stava vupros za
Win95
computri na koito po ideja ne mozhe da im se smeni MAC (taka kazvat ili pone
se nadjavat).

Po princip problema ne e moj, no tuj kato iskam da reshavam podobni problemi
pri men (ne na Win95 rabira se:) zatova go zadadoh. Men po-tochno me
interesuva
accounting na masquerading-a i dosega sum zadaval baja vuprosi v taja
posoka.
Naj bi mi haresalo neshto ot typa na proxy authentication ili pppoe s
izrichna authentikacija
a ne po IP ili po MAC.

Mojte mashini sa osnovno Win98, 2-3 na WinMe, 4-5 na Windows 2000 Pro
3 Linux-a i edin Windows 2000 Server sus MS Proxy na nego (accounting)

Dva ot Linux-ite sa serveri - file-ov i firewall.
Instalirah edno MDK 8.1 s ideja pone kato nachalo da zamenja firewall-a
(ipchains)
s iptables i njakakuv accounting na nego (da mahna MS Proxy-to zashtoto
mashinata
mi e nuzhna za drugi celi). Na sushtija Linux shte trjabva da vurvi qmail
(nego go poznavam
pone malko vuv varianta Mailbox) sus SMTP autentication zashtoto imam
laptopi, koito se
opitvat da si chekvat (i estestveno da prashtat) poshtata ponjakoga ot
drugija kraj na sveta.
Trjabva mi i WEB interface za qmail (no tova mozhe i da izchaka).

Tuj kato opita mi e mnogo maluk do momenta ne moga da pusna iptables s
accounting.
Kakto sami se seshtate tursja neshto po-lesno za instalacija (oshte poveche
nablizhava
kraja na godinata i ima kup drugi zadachi - ne sum samo Sysadmin
[nabeden]:.

Imashe mnogo otgovori - iproute si spomnjam primerno, no vsichko tova e
malko
kato kitajsko pismo.

Da zavursha s konkretetni vuprosi:

1. Naj-lesnija accounting za iptables (Pentium 200 MMX, 64 MB RAM)
2. Po user-friendly (po Windowski tip ako shtete) sredstvo za nastrojka
na iptables (pone blizuk analog na ipchains pone)

Vsichko tova mozhe bi vi otegchi, no tova sa mi problemite nakup.
Ako mozhe njakoj da otgovori izcjalo ili na chasti shte sum mnogo
blagodaren.
Yasno mi e che nikoj njama da mozhe da mi reshi problemite s magicheska
pruchka (cheta Harry Potter v momenta :))), no vsjaka pomosht e dobre
doshla.
 Izvinjavam se za prostrannoto pismo, no veche minava 8 i javno umorata
si kazva dumata

Leka vecher na tezi koito prochetat tova predi da si legnat :)

Yavor Atanasov

- Original Message -
From: George Danchev [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, November 29, 2001 7:03 PM
Subject: Re: lug-bg: MAC+IP


 Yovore taka kakto si postavil uslovieto na zada4ata maj naistina nqma
 reshenie. Ne razbrah samo ideqta na Teodor Georgiev:
 
 iptables -P FORWARD DROP
 sled tova pootdelno za vsiaka karta si razreshava trafika...
 smeniai si MAC-a koolkoto iskash...
 --
 stom user-a mozhe da si podbere i setne (gepi 4uzhda) dvojka MAC-IP koqto
e
 ot razreshenite za obsluzhvane, to togava gornoto ne reshava problema
spored
 men.

 Trqbva da kazhesh zasto to4no iskash da vurzhesh daden MAC za dadeno IP,
t.e.
 kakyv kraen rezultat gonish da postignesh vruzvajki daden MAC za
opredeleno
 IP?  mozhe bi ste postignesh pak krajniq rezultat no po drug pyt ,
naprimer
 4rez authentifikaciq na usera, i pak ste se dokopash do konkretniq user
ako
 tova e celta na zanqtieto.
 Tova s PPP over Ether (prez ppp za da go authentificira , tova e ideqta
 dokolkoto razbiram ...) mozhe i da svyrshi rabota. Maj suhranqvashe nesto
v
 SQL baza oba4e, ne pomnq no beshe diskutirano dosta otdavna.
  Purvo, tova za smqnata na mac adresa se e nalagolo otdavna, za nqkoi
  protocoli kato decnet, koito iziskvat vsichki eth interfaces na
mashinata
  da imat eidn i sushti mac adress( za chii *** - dqvol znae ). Inache,
  naj-secure nachina e s pppoe , dazhe Ivajlo Toshev beshe napisal takava
  programka ( LANUTA ) , koqto dosta dobre se opravqshe i s trafic
  accounting-a.

 e Ivo da se proiznese kompetentno i da kazhe de e programkata, ako e free
 estestveno:)

  Ili 3tiq variant e da fixirate po krajnite ustrojstva (
switchove/hubove)
  pozvolenite mac adresi ot koito mozhe da idva info na nqkoj port...
Obache
  e baq skupo reshenie.

 kato nqkoj Managed na Allied Telesyn $$$ Series ...(maj ne bqha GPL'd
 naistina:)

 --
 Greets,
 fr11zb1

===
 A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
 http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
Zagora

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Luben Karavelov]

On Thu, Nov 29, 2001 at 06:11:55PM +0200, Vasil Kolev wrote:
 
 
 On Thu, 29 Nov 2001, George Danchev wrote:
 
  On Thursday 29 November 2001 17:31, you wrote:
   Èñêàø äà êàæåø, ÷å MAC  àäðåñà íå ìîæå äà ñå ñìåíè ëè ???
  
   eth0  Link encap:Ethernet  HWaddr 00:11:22:33:44:55
 inet addr:192.168.10.20  Bcast:192.168.10.255  Mask:255.255.255.0
 UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
 RX packets:4874265 errors:334435 dropped:11 overruns:0 frame:0
 TX packets:503073 errors:7 dropped:0 overruns:7 carrier:0
 collisions:18676 txqueuelen:100
 Interrupt:10 Base address:0xd400
  
   eth0:1Link encap:Ethernet  HWaddr 00:11:22:33:44:55
 inet addr:10.0.0.20  Bcast:10.255.255.255  Mask:255.255.255.0
 UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
 Interrupt:10 Base address:0xd400
  
   ßâíî íå ñè ïîïàäàë íà çëîíàìåðåíè õîðà..
  
   Íà ×åòâúðòúê 29 Íîåìâðè 2001 17:39, âèå íàïèñàõòå:
shto puk ne?
  blah, za smqnata na MAC-a bqh 4uval samo i si mislih 4e ponastoqstem e
  legenda vse oste, vinata e na proizvoditelite na NIC , vsustnost ne mi e qsno
  kakvo pe4elqt ot tova . No vse pak kolko sa userite kojto znaqt kak da se
  zadobiqt i setnat  privilegirovani IP-MAC ot arp table-a na dadeniq
  gateway/router.
  Drugoto za koeto se setam e da prekarash   vsi4ki prez proxy-to za
  authentification, if fail - no service.
  --
 
 Purvo, tova za smqnata na mac adresa se e nalagolo otdavna, za nqkoi
 protocoli kato decnet, koito iziskvat vsichki eth interfaces na mashinata
 da imat eidn i sushti mac adress( za chii *** - dqvol znae ). Inache,
 naj-secure nachina e s pppoe , dazhe Ivajlo Toshev beshe napisal takava
 programka ( LANUTA ) , koqto dosta dobre se opravqshe i s trafic
 accounting-a.
 
 Ili 3tiq variant e da fixirate po krajnite ustrojstva ( switchove/hubove)
 pozvolenite mac adresi ot koito mozhe da idva info na nqkoj port... Obache
 e baq skupo reshenie.
 

iptables/netfilter ima vyzmozhnost za filtrirane po MAC address, tyi che
i taa syshto stava
-- 
_
Luben Karavelov[phone] +359 2 9877088
Network Administrator [ICQ#] 34741625
~



msg07847/pgp0.pgp
Description: PGP signature

Re: ZABRAVETE ZA MAC FILTRIRANE Re: Re: lug-bg: MAC+IP

[George Danchev]

 A kakvo shte pravish , ako sum si vzel root/admin na mashinata na
 drugarcheto , drupnal sum mu key-ovete/passworda , smenil sum si IP-to
 i MAC-a ?!?!!?

Ok, kazvam :)
Eto edno Linux workstation drugar4e na koeto si otkradnal naj-bezsramno 
vsi4kite gorni nesta ... samo  4e ako e realizirano PPPoE za auth i se 
dial-upva s wvdial (syotvetno s opciq ASK PASSWORD v wvdial.conf, za da pita 
vseki pyt za pass-a pri startirane, a ne samiq password da se taralqnka 
nqkude po diska)  ste trqbva da me  snimash ot nqkude s skrita kamera koi 
keys natiskam kogato vyvezhdam pass-a za pppoe ili da se snimash sam s 
gornite nesta koito si otkradnal :))) 

 Best regards,
  Pavelmailto:[EMAIL PROTECTED]

Oste po-best regards
-- 
Greets, 
fr11zb1
===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

On Thursday 29 November 2001 16:47, you wrote:
 az bih go napravil mnogo zverski.

 1. Izgrazhdam si edna bazichka s danni, relacia  MAC - IP

A gadniara po niakakva slu4ainost znae MAC i IP na dobroto drugar4e ot 
sysednata staia. Relaciata pak shte e viarna :)
 Ako e s *NIX nikvi griji da si gi smeni i dvete.
Ako e s Win :) . Ami izkazanoto mnenie , 4e pod Win ne moje da se smenia MAC 
ne e viarno( dori i da ne razpolagash sys NIC koito dava vyzmojnost za smiana 
na MAC-a.) No NDIS-a ne predostavia sredstva s koito da smenish adresa 
dokladvan ot NIC miniport driver-a pri activirane na NIC-a. otvyn. No eto 
edna primerna shema za deistvie s koiato bi se spravil vseki koito ima opit v 
programiraneto na C- ne e neobhodim opit v pisaneto na NDIS NIC miniports :)

1. Otska4a do otsreshnia  magazin za comuterni komponenti i si kupuva
za $7-8 niakoia __ne__2k compatible ( naprimer rtl8029 ).
2. instalira si M$VC i NTDDK
3. namira v primernia driver ot NTDDK  ne2000 funkciata NE2000QueryInfo() i 
v  za OID_802_3_CURRENT_ADDRESS prepravia da se vryshta konstanten niz( MAC-a 
na dobroto drugar4e ), vmesto pro4etenia ot eprom-a 
4. build 
5. install.
6. Voila

Viarvam, 4e v tozi list niama hora koito biha izpolzvali zlonamereno gornata 
shema. :)

 2. s arpping obozhdam  i sravniavam.
 3. Ako vidia nesuotvetstvie, s iptables mu bicha edin DROP na MAC adresa i
 chakam da doide da pita shto niama Net ;)))




   - Original Message -
   From: Yavor Atanasov
   To: [EMAIL PROTECTED]
   Sent: Thursday, November 29, 2001 2:22 PM
   Subject: lug-bg: MAC+IP


   Trjabva da napravja taka, 4e v mrejata na MAC adres da otgovarja samo
 edin IP

   adres! I da ne moje tozi PC da vzema drug IP adres (nito ot DHCP nito
 statichen adres)!

   Kak mozhe da stane tova?

   Yavor Atanasov


Content-Type: text/html; charset=windows-1251; name=Attachment: 1
Content-Transfer-Encoding: quoted-printable
Content-Description: 

===
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora

Re: lug-bg: MAC+IP

[Valentin Valchev]

Àáå âèå ìàé çàáðàâÿòå, ÷åâ àäìèíèñòðèðàíåòî èìà è 
÷îâåøêè ôàêòîð, êîéòî å òî÷íî ñèñòåìíèÿò àäìèíèñòðàòîð. Òàêà, ÷åíåêà ñè 
ñìåíÿò IP-òà, MAC-îâå,íî êîãàòî íÿêîé íå ìó õàðåñâà ùå ñå îïëà÷å èìåííî íà 
Âàñ - ñèñòåìíèòå àäìèíèñòðàòîðè. À âèå ìîæåòå äà ðåøèòå äàëè òîçè êîéòî ïðàâè 
ìèçåðèèòåçàñëóæàâà äà ìó ñå îáúðíå âíèìàíèå - åäèí ìàëúê ðàçãîâîð, êëîíÿù 
êúììîíîëîã íà âèñîê òîí èëè ïðîñòî ìó äúðïàø êàáåëà èïîñëå äà ñå 
ïðàâè íà õàêåð êîëêîòî ñè èñêà.

Àêî íÿêîé èñêà íåùî ïî-ñèãóðíî VPN ðàçáèðà ñå å äîáðî ðåøåíèå 
(ìàêàð, ÷å ìàé ãëåäàõ íÿêúäå VPNpasswod sniffer) íî ìèñëÿ, ÷å âñè÷êè òåçè 
êðèïòèðàíè ïîòîöè ùåèçèñêâàò è äîñòà äîáúð ïðîöåñîð çà ñúðâúðà, 
êîéòîèíà÷å, ñàìî ñ ipchains èëè iptables ìîæå è äà å íàé-îáèêíîâåí 486 
;)
---
ProSyst Bulgaria Ltd.Valentin Valchev
48 Vladajska Str.Project Manager
Sofia 1606, Bulgaria Dept: mBedded Server/Broadband
http://www.prosyst.com/  Phone: +359 02 (9631394) 223
---
Leading Software Technology for Open Service Gateways