03-12-2013
Funny, first packet normally is syn no ack no fin, response is syn ack, the all ack until fin and fin ack. Is that sackOK a syn, an ack, ???
When the port changes, I look more to portforwarding examples, which are more than one rule. This works if you shut down either ethernet and address the other in the rule?
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I've been googling for a while now, trying to forward port 3000 to port 80....
In the past I used to DLink router to forward port 3000 to 80. I recently finished (well, is it ever done anyhow?) setting up my linux box and got it acting as a router.
I want to continue to run Apache on port 80... (1 Reply)
Discussion started by: meeps
1 Replies
2. UNIX for Advanced & Expert Users
Hi,
I have to install an application that has a built in tftp server. Tftp comes in on port 69. As i am not installing this application as a root user i am running into trouble because only the root user can listen to ports < 1024. So changing the port i listen to to one greater than 1023 isn't... (1 Reply)
Discussion started by: imloaded24_7
1 Replies
3. AIX
Hi friends
i have the following setup
machine1 two network adapters one connected to lan the other connected directly to machine2
machine2 is not connected to lan
i need to access machine2 directly from the LAN
how to force machine1 to forward all traffic received on a specific port the... (1 Reply)
Discussion started by: Husam
1 Replies
4. UNIX for Advanced & Expert Users
Hi
I want to set up port forwarding from one network to another network. I already have this configured on the Linux box using iptables.
iptables -t nat -A PREROUTING -p tcp -i eth1 --dport 1521 -j DNAT --to 10.218.146.230
iptables -A FORWARD -p tcp -i eth1 -d 10.218.146.230 -j ACCEPT
... (2 Replies)
Discussion started by: slash_blog
2 Replies
5. Solaris
Hi,
I am looking out a way to forward all UDP traffic coming on ports 3001,3002,3003 and 3004 on server 10.2.45.200
to
corresponding ports of server 10.2.45.197.
I am using Solaris 10.0.
-bash-3.00$ uname -a
SunOS airtelussd2 5.10 Generic_127127-11 sun4u sparc SUNW,Sun-Fire-V445
Is... (6 Replies)
Discussion started by: vikas027
6 Replies
6. IP Networking
Hi Linux/Unix Guru,
I am setting Linux Hopping Station to another different servers.
My current config to connect to another servers is using different port to connect.
e.g
ssh -D 1080 -p 22 username@server1.com
ssh -D 1081 -p 22 username@server2.com
Now what I would like to have... (3 Replies)
Discussion started by: regmaster
3 Replies
7. UNIX for Advanced & Expert Users
Hello,
I have a routeur linksys (192.168.1.1 ) a firewall (192.168.1.55 IN ----> 192.168.2.254 OUT) which using iptable
I want to acces to an equipment (lorex video camera serveur 192.168.2.44) which using an ddns service on the port 9000
So i don t know which redirection a will do on the... (2 Replies)
Discussion started by: tapharule
2 Replies
8. UNIX for Dummies Questions & Answers
I am having an issue with iptables. My server is a RHEL6 64bit system.
In my application I have a large number of connected clients ~100k to a particular service. The application works fine when iptables is off, 100k clients are able to connect.
However, when I turn iptables on and add a... (1 Reply)
Discussion started by: jtipp3tt
1 Replies
9. UNIX for Advanced & Expert Users
Hi experts,
We have windows machine ( A ) in one network & 2 Linux Servers ( B & C ) in another network. There is a firewall between these 2 networks and SSH (TCP/22) & HTTPS (TCP/443) are allowed from A to B only (but not to C). There is no personal firewall / iptables running on any machine.... (1 Reply)
Discussion started by: magnus29
1 Replies
10. Red Hat
Hello All,
I would like to ask you very kindly with /etc/sysconfig/iptables file
I have to setup port forwarding on RHEL6 router. Users from public network must be able to ssh to servers in private network behind RHEL6 router. Problem is that servers in private network must be isolated.
My... (2 Replies)
Discussion started by: oidipus
2 Replies
LEARN ABOUT DEBIAN
ashunt
ashunt(8) netsniff-ng-toolkit ashunt(8)
NAME
ashunt - Autonomous System (AS) trace route utility
SYNOPSIS
ashunt -H|--host <host> -i|-d|--dev <dev> [-6|--ipv6] [-n|--numeric] [-N|--dns] [-f|--init-ttl <ttl>] [-m|--max-ttl <ttl>]
[-q|--num-probes] [-x|--timeout <sec>] [-S|--syn] [-A|--ack] [-F|--fin] [-P|--psh] [-U|--urg] [-R|--rst] [-E|--ecn-syn] [-t|--tos
<tos>] [-G|--nofrag] [-X|--payload <string>] [-Z|--show-packet] [-l|--totlen <len>] [-w|--whois <server>] [-W|--wport <port>]
[--city-db <path>] [--country-db <path>] [-v|--version] [-h|--help]
DESCRIPTION
This program provides AS information on each hop between the client and the target host.
OPTIONS
ashunt -i eth0 -N -E -H netsniff-ng.org
IPv4 trace of AS with TCP ECN SYN probe
ashunt -i eth0 -N -S -H netsniff-ng.org
IPv4 trace of AS with TCP SYN probe
ashunt -i eth0 -N -F -H netsniff-ng.org
IPv4 trace of AS with TCP FIN probe
ashunt -i eth0 -N -FPU -H netsniff-ng.org
IPv4 trace of AS with Xmas probe
ashunt -i eth0 -N -H netsniff-ng.org -X "censor-me" -Z
IPv4 trace of AS with Null probe with ASCII payload
ashunt -6 -S -i eth0 -H netsniff-ng.org
IPv6 trace of AS up to netsniff-ng.org
OPTIONS
-h|--help
Print help text and lists all options.
-v|--version
Print version.
-H|--host <host>
Host/IPv4/IPv6 to lookup AS route to
i-|-d|--dev <netdev>
Networking device, i.e. eth0
-p|--port <port>
Hosts port to lookup AS route to
-4|--ipv4
Use IPv4 requests (default)
-6|--ipv6
Use IPv6 requests
-n|--numeric
Do not do reverse DNS lookup for hops
-N|--dns
Do a reverse DNS lookup for hops
-f|--init-ttl <ttl>
Set initial TTL
-m|--max-ttl <ttl>
Set maximum TTL (default: 30)
-q|--num-probes <num>
Number of max probes for each hop (default: 3)
-x|--timeout <sec>
Probe response timeout in sec (default: 3)
-S|--syn
Set TCP SYN flag in packets
-A|--ack
Set TCP ACK flag in packets
-F|--fin
Set TCP FIN flag in packets
-P|--psh
Set TCP PSH flag in packets
-U|--urg
Set TCP URG flag in packets
-R|--rst
Set TCP RST flag in packets
-E|--ecn-syn
Send ECN SYN packets (RFC3168)
-t|--tos <tos>
Set the IP TOS field
-w|--whois <server>
Use a different AS whois DB server (default: /etc/netsniff-ng/whois.conf)
-W|--wport <port>
Use a different port to AS whois server (default: /etc/netsniff-ng/whois.conf)
--city-db <path>
Specifiy path for geoip city database
--country-db <path>
Specifiy path for geoip country database
AUTHOR
Written by Daniel Borkmann <daniel@netsniff-ng.org>
DOCUMENTATION
Documentation by Emmanuel Roullit <emmanuel@netsniff-ng.org>
BUGS
Please report bugs to <bugs@netsniff-ng.org>
2012-06-29 ashunt(8)