Antisniff should help you find out which node is sniffing. A fix for this (assuming a
fairly small network) is to use a switch and assign static ARP cache entries on each
node. Ths switch will prevent promiscuous mode sniffing and the static ARP entries
will prevent ARP cache poisoning, which is
Check out http://www.linuxvoodoo.com/howto/iptables/ for a great Netfilter/Iptables
tutorial
--
__
http://www.linuxmail.org/
Now with POP3/IMAP access for only US$19.95/yr
Powered by Outblaze
You might want to check out FreeSWAN - www.freeswan.org
- Original Message -
From: "SB CH" <[EMAIL PROTECTED]>
Date: Wed, 20 Nov 2002 07:45:58 +
To: [EMAIL PROTECTED]
Subject: any VPN program at linux?
Hello, all.
I would like to use VPN at linux?
Do you know any recommendable pro
On *nix based machines, you can setup static ARP entries. This of course only provides
consistent protection if you're on a static connection. If you move, for instance a
laptop (or even a desktop, but laptops are more likely to be moved) to another network
segment, your default gateway's MAC ad
if you are currently using the ssh client, you should be able to use the sftp (secure
ftp) client to securely ftp into the machine running the sshd, assuming you have an
account :)
- Original Message -
From: "SB CH" <[EMAIL PROTECTED]>
Date: Sat, 12 Oct 2002 02:05:33 +
To: [EMAIL P
>|Internet
>|ww.xx.yy.zz
>|
>| ProductionProduction
> |-|| WEBDB
> | eth0|
hello all... :)
i currently have a small home network (five nodes) in which a slackware 8 box is
NAT'ing the internal network using iptables 1.2.6a.
my roomate's employer has provided him with a DSL connection which permits him to work
from home. however, in order to access the corporate netwo
aph3x$ cat /etc/protocols
#
# Internet (IP) protocols
#
ip 0 IP # internet protocol, pseudo protocol number
icmp1 ICMP# internet control message protocol
ggp 3 GGP # gateway-gateway protocol
tcp
- Original Message -
From: Zhen Shi <[EMAIL PROTECTED]>
Date: Mon, 8 Apr 2002 07:45:06 -0700 (PDT)
To: [EMAIL PROTECTED]
Subject: DDOS or Spoofed DOS
> Hi,
>When you see a lot of TCP SYN flooding your network
> with various source IPs, how do you tell if these
> packets are generat
sounds like they are being filtered by the sniffer. check the filter rules to make
sure you're not filtering UDP, TCP, or any others you that would like to capture
--
Get your free email from www.linuxmail.org
Powered by Outblaze
10 matches
Mail list logo