LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 02-15-2005, 05:36 AM   #1
loboautoma
LQ Newbie
 
Registered: Jan 2005
Posts: 20

Rep: Reputation: 0
Question MIRROR target for tcp attacks......i wrote something like this


Hello world!
I proved the experimental target MIRROR versus some incoming tcp_packets not desired.....but the Shell told me that the target doesn't exist......why?.....my distribution support it but i can't use it! I wrote something like this:

iptables -A INPUT -s ip.ip.ip.ip -i eth0 -p tcp -j MIRROR

thanx for any hint!
 
Old 02-15-2005, 03:58 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
See if you have the ipt_MIRROR module on your system:

find / | grep ipt_MIRROR

If it's present you should get a list of modules. If not, you'll just see some libs. I didn't notice it, but the MIRROR match doesn't appear to be supported by default on Fedora Core 3, but it is on all my older boxes. I looked through the 2.6 kernel change log and sure enough the MIRROR taget was dropped:

http://64.233.161.104/search?q=cache...&hl=en&start=4
 
Old 02-17-2005, 11:54 AM   #3
loboautoma
LQ Newbie
 
Registered: Jan 2005
Posts: 20

Original Poster
Rep: Reputation: 0
The find command has found:

/lib/iptables-mandrake/libipt_MIRROR.so
/lib/iptables-vanilla/libipt_MIRROR.so

I think there are not modules....may be it's for the kernel.....
i'll see the links you gave me and i'll try to understand something more.

thanx for your time.
 
Old 02-17-2005, 05:31 PM   #4
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
If ipt_MIRROR was installed, you would have seen something like:

/lib/modules/<kernel-version>/kernel/net/ipv4/netfilter/ipt_MIRROR.o

If you would really like to use the MIRROR target, you can try patching the kernel with the netfilter patch-o-matic (pom-ng) and add in support for MIRROR. However this requires recompiling the kernel and iptables from source, so it's not trivial.
 
Old 02-19-2005, 09:37 AM   #5
loboautoma
LQ Newbie
 
Registered: Jan 2005
Posts: 20

Original Poster
Rep: Reputation: 0
i never compiled the kernel before.
..but i will try as soon as possible...

thanx
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
What is the last program you wrote (or are currently writing)? lowpro2k3 Programming 2 08-15-2005 01:14 AM
font looks like its been wrote with a pen insurin Linux - Newbie 4 07-05-2005 09:50 AM
Woody 3.0 Open Ports 1470/tcp/uaiact 1518/tcp/vpvd What for?How can I remove them? alexxxis Debian 5 07-05-2004 05:18 PM
Can anyone help me with a C prog I wrote? WorldBuilder Linux - Software 10 10-23-2003 09:11 AM
Wrote a program: TEXTDRAW lea Programming 1 08-13-2002 09:03 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration