Since SSL can be decrypted easily using a basic man in the middle node, whats the reason to continue using it? Don’t most ISPs decrypt on a daily basis using Deep Packet Inspection? And isn’t it possible to put a MITM node at any hop along the packet route (not just ISP) to decrypt therefore … Read more
Could someone help me block all incoming traffic on my network which has port forwarding set up on the router to allow incoming requests on port 27017 to be sent to the Mac running Mongo internally except for one IP address which I can specify? I tried loading a new anchor file from /etc/pf.conf. In … Read more
I recently started a game hosting company and one of my boxes is being hit very hard by what i believe is a botnet(getting thousands of ip addresses sending traffic to a port where a game server is located.) I managed to log onto the server and start capturing packets using wireshark. In total there … Read more
I’m trying to create a iptables rule that matches the following pattern in this UDP packet: 0x0000: 0000 030a 0000 0000 0000 0000 0000 0800 ……………. 0x0010: 4500 0027 5d30 0000 6c11 232a 5164 585d E..’]0..l.#*QdX] 0x0020: c0a8 6402 fe25 1e61 0013 b382 5341 4d50 ..d..%.a….SAMP 0x0030: c063 ba71 e2ea 63 .c.q..c The pattern is … Read more
I have been reading about the IEEE 802.11 and especially on the MAC layer, and i noticed that it contains a lot of informations, but when i start to capture with wireshark with my wireless card, the MAC (Ethernet) header showing in wireshak contains only destination MAC address and source MAC address and the next … Read more
I’ve been using tcpdump without any issues before this error popped up. I use the following two commands with variations as soon as my server is attacked so the packets automatically get dumped if the packet rate is high. tcpdump -i eth0 -p -nn -s0 -c 2000 -w $dumpdir/dump.`date +”%Y%m%d-%H%M%S”`.cap tcpdump -nn -s0 -c 2000 … Read more
I’ve been using tcpdump without any issues before this error popped up. I use the following two commands with variations as soon as my server is attacked so the packets automatically get dumped if the packet rate is high. tcpdump -i eth0 -p -nn -s0 -c 2000 -w $dumpdir/dump.`date +”%Y%m%d-%H%M%S”`.cap tcpdump -nn -s0 -c 2000 … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 7 years ago. Improve this question I reading the manual pages for help, but I didn’t find a parameter that allows you to specify how many packets to send … Read more
I’m trying to bring up a little box on my network. I just reflashed the firmware and it’s supposed to come up as 192.168.1.1 by default. My router is a DSL modem at 192.168.0.1; it usually uses a netmask of 255.255.255.0, so I can’t talk to the new box. I telnet into the router and … Read more
I need some serious help with a complex routing setup I am doing. Lets I have a /24 IPv4 .I am announcing the same /24 at two different locations. One is a ISP exchange center where all the ISPs peer each other locally.To make it simple just understand that this network does not has internet … Read more
