Visit Our UNIX and Linux User Community


Webscrab proxy creates loads of TCP6 connections despite IPV6 being down


 
Thread Tools Search this Thread
Top Forums UNIX for Beginners Questions & Answers Webscrab proxy creates loads of TCP6 connections despite IPV6 being down
# 1  
Old 01-29-2020
Webscrab proxy creates loads of TCP6 connections despite IPV6 being down

I am working in Kali Linux. I have disabled ipv6 by the command, "sysctl -w net.ipv6.conf.all.disable_ipv6=1". Below output of "ifconfig -a" shows no IPV6.

Code:
eth0: flags=4163<UP,BROADCA[INDENT][INDENT]ST,RUNNING,MULTICAST>  mtu 1500
inet 192.168.1.119 netmask 255.255.255.0 broadcast 192.168.1.255 ether 08:00:27:ac:d6:52 txqueuelen 1000 (Ethernet) RX packets 3464 bytes 265390 (259.1 KiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 185 bytes 29219 (28.5 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 eth1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 192.168.141.11 netmask 255.255.255.0 broadcast 192.168.141.255 ether 08:00:27:42:25:3e txqueuelen 1000 (Ethernet) RX packets 6695 bytes 427120 (417.1 KiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 27 bytes 2250 (2.1 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

But when I enable "Webscrab" proxy, I see loads of TCP6 connection as below:
Code:
tcp6       0      0 127.0.0.1:48810         127.0.0.1:8008          ESTABLISHED
tcp6       0      0 127.0.0.1:8008          127.0.0.1:43334         ESTABLISHED

....
Code:
tcp6       0      0 127.0.0.1:44566         127.0.0.1:8008          ESTABLISHED
tcp6       0      0 127.0.0.1:46652         127.0.0.1:8008          ESTABLISHED
tcp6       0      0 127.0.0.1:54820         127.0.0.1:8008          CLOSE_WAIT


Any pointer toward the solution will be highly appreciated.
# 2  
Old 01-29-2020
I believe these 127.0.0.1 loopbacks are not "true network connections" and so IPV6 traffic will not pass since you blocked IPV6 networking.

The title of your post is:

Quote:
Webscrab proxy creates loads of TCP6 connections despite IPV6 being down
These 127.0.0.1 internal loopbacks are not "true connections" per se.

Did you actually try to pass IPV6 traffic thought that host? If you did, I would be surprised if any IPV6 traffic would pass since you have already disabled IPV6 networking via "sysctl -w net.ipv6.conf.all.disable_ipv6=1".

You might want to check to make sure when you installed your proxy server that it did not unintentionally enable your intended block / disabled setup.

PS: You should use CODE tags when you post and insure your posts are well formatted and easy for everyone to read.
# 3  
Old 01-30-2020
Reference:

Quote:
The IP address 127.0.0.1 is a special-purpose IPv4 address called localhost or loopback address. All computers use this address as their own but it doesn't let them communicate with other devices as a real IP address does.


Your computer might have the 192.168.1.115 private IP address assigned to it so that it can communicate with a router and other networked devices. However, it still has this special 127.0.0.1 address attached to it to mean "this computer," or the one you're currently on.

The loopback address is only used by the computer you're on, and only for special circumstances - unlike a regular IP address that is used to transfer files to and from other networked devices.
See also, for example:

127.0.0.1 IP Address Explained

FYI:

Quote:
127.0.0.1 is localhost, it's the address of the current machine, accessed through a loopback interface (not through the network adapter - this works even if there is no network chips in the system).
# 4  
Old 01-30-2020
Also,

If you do not want your proxy server to listen on the kernel loopback interface (127.0.0.1), you can easily fix this by configuring your proxy server to only listen on an IP address.

Just like mysql and other daemon processes, you can configure it to listen on 127.0.0.1 or not.

For example, many people configure mysql to only listen on 127.0.0.1 because they do not want any external connections to mysql; and 127.0.0.1 does not permit external connections.

If you don't want your proxy server to listen on 127.0.0.1, then you simply configure your proxy server to not listen on 127.0.0.1.

From the linux code base:

Code:
/* The loopback device is special if any other network devices
 * is present in a network namespace the loopback device must
 * be present. Since we now dynamically allocate and free the
 * loopback device ensure this invariant is maintained by
 * keeping the loopback device as the first device on the
 * list of network devices.  Ensuring the loopback devices
 * is the first device that appears and the last network device
 * that disappears.
*/


Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Assigning ipv6 to bonding interface - getting old as well as changed ipv6 in ifconfig output

Hi, I have created a bonding bond1 interface with 6 Eth , mode=4. Recently i have changed my old ipv6 to new one and tried to restart as well as reload network service. Post which i can see old as well as changed ipv6 in ifconfig command output. Below are few files and command output for your... (1 Reply)
Discussion started by: omkar.jadhav
1 Replies

2. AIX

Su loads .profile with argument

Hello, Is there any way to su another user and loading its profile with an argument. For example I am user1 and I want to start user2 user2 .profile is interactive asking user to pass some values I want to automate a process by switching user and if I pass an argument the interactive... (4 Replies)
Discussion started by: geodimo
4 Replies

3. IP Networking

Connecting via proxy chain to Upstream proxy

I need to configure a proxy on my local machine to use an upstream proxy (installed on another machine). The upstream proxy requires Digest/NTLM authorization. I want the local proxy to deal with the upstream proxy's authorization details and provides authorization free access to users that connect... (0 Replies)
Discussion started by: Russel
0 Replies

4. UNIX for Dummies Questions & Answers

launchctl loads app with icon (OS X)

We are deploying an app to our students that is running as a daemon. It keeps them from using certain software. The problem is that when we initially deploy it we don't want to require a restart. So we decided to use launchctl to load the daemon manually. When we do it this way, though, the... (4 Replies)
Discussion started by: nextyoyoma
4 Replies

5. Debian

Can't see anything after debian loads

Hey, I recently installed Debian on a desktop PC but when it starts I can't see anything (the monitor say no signal). I don't have any idea or even a way to figure out what going on here since I can't see anything at all not even the console. Is there something that I missed in the install, or is... (22 Replies)
Discussion started by: neur0n
22 Replies

6. UNIX for Advanced & Expert Users

How OS loads process in memory to execute ?

Hi, I was Googling to get info "How OS loads process into its memory to execute?" i mean when i execute ./<exename> , How OS exectes it? It will be better if i tell my intention, In my $LOGNAME saveral process are running, among all of these two process are my target process. Basically I... (1 Reply)
Discussion started by: ashokd001
1 Replies

7. UNIX for Dummies Questions & Answers

Adding loads of columns

Hi All, I've got file1 like this: aaa bbb ccc ddd eee fff ggg hhh kkk ppp mmm nnn and file 2 like this: aaa qqq www ddd fff ggg ggg sss zzz ppp vvv yyy and file 3 like this: aaa ggg ppp I need to match the first column of file3 and file1, then add the rest of the file 1 to... (3 Replies)
Discussion started by: zajtat
3 Replies

8. IP Networking

Software/tool to route an IP packet to proxy server and capture the Proxy reply as an

Hi, I am involved in a project on Debian. One of my requirement is to route an IP packet in my application to a proxy server and receive the reply from the proxy server as an IP packet. My application handles data at the IP frame level. My application creates an IP packet(with all the necessary... (0 Replies)
Discussion started by: Rajesh_BK
0 Replies

9. UNIX for Dummies Questions & Answers

SCO CPU Loads

I've been asked to get a breakdown of what is consuming CPU time on our server over an extended period ? Have been asked about the CPU load on our server and I need to be able to go back to my boss and indicate what % is consumed by what process (or group of processes). I.e. 15% is database... (2 Replies)
Discussion started by: Cameron
2 Replies

Featured Tech Videos