Bypassing the firewall - Page 4
Page 4 of 4 FirstFirst ... 234
Results 31 to 34 of 34

Thread: Bypassing the firewall

  1. #31
    Junior Member
    Join Date
    Aug 2001
    Posts
    26

    Thanks

    I've been deprived of the net for a while, and this thread was a nice morning read. I, too, did not know that Linux used UDP for it's traceroute... Every day is good when you learn something new.

  2. #32
    Junior Member
    Join Date
    Dec 2003
    Posts
    6

    Re: Thanks

    Originally posted here by Sunflare
    ... Every day is good when you learn something new.
    Sure

    And there's even more. Try to learn using tools like hping2 - you'll find some features to trace even behind some firewalls.

  3. #33
    Senior Member
    Join Date
    Sep 2003
    Posts
    161
    one more question, if you use traceroute without ICMP_ECHO what does it use to do the UDP scan does still use the ICMP without the ECHO??

  4. #34
    Member
    Join Date
    Oct 2001
    Posts
    76
    It does it by setting the TTL field on the UDP packet it sends out. As packets travel to their destination, every router it passes through decrements the TTL field by 1. Once the TTL gets to 0, the packet is dropped and a destination unreachable message (ICMP type 3) is returned to the sender. This is to prevent networks getting congested by traffic stuck in a routing loop.

    Traceroute exploits this by sending UDP packets with customised TTL fields. The first packet it sends has a TTL of 1, the second has a TTL of 2, etc. until it gets the first proper reply from the target. The unreachable messages generated have the IP address of the sender in the packet header, and this is how traceroute determines the addresses of any routers. Latency is determined by timing the wait between the packet being sent, and the unreachable message being returned.

    In order for traceroute to be able to do this, it has to have the ability to create raw packets, which is why it's a suid root program. If it didn't have the sticky bit set, it wouldn't work because it won't be able to send any custom packets.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •