telnet from behind firewall

[Faqt]

PS-
Chsh-she she she she she she she....my profile clearly states that I am a female.....if your going to be rude you can at least use the proper pronoun.

[Faqt]

PS-
Chsh-she she she she she she she....my profile clearly states that I am a female.....if your going to be rude you can at least use the proper pronoun.

[Tiger Shark]

Hmmmm...... One person in this thread mentioned the word "enumeration".... Just one IIRC. Without any question as to what was meant faqt has returned with:-

I've discovered the firewall is 1.1 ISA, the computer I need to telnet from goes to a router (192.168.1.1) then the firewall (192.168.20.1), then the ISP..... however, I cannot find the address of the firewall on the public side.

From within the LAN I cannot ping any system not behind the firewall. From outside the LAN I cannot ping the internal clients. (can't find actual IP address to even try.)

I've been researching ssh tunneling....it seems to me, that in order for that to work for my purposes, I would need to install the ssh server on an external client, then tunnel from the Lan to the ssh server, but since I can't even ping external clients I don't see how I can implement this.

I've downloaded fpipe and can't get it to run for me (I'm running windows XP, and fpipe opens then dissappears right away, won't allow me any access to configure or use.)

I've downloaded the antifirewall program and will try it tonight at school.

For now, I've gone back to ISA as my search term, in hopes of finding some direction there. If at all possible I'd like to really understand what I'm doing.

I really don't care whether she used social engineering or tools to get the information, she took a hint and went ahead and discovered what it is she is up against.

I'm a first quarter student, and we don't even cover ISA/security until 4th quarter, so I guess maybe I'm a little over my head here.

Hmmmm..... Then logically she is ahead of her class since enumeration of the target is a security issue not a general networking issue......

This is clearly not some lame little kid coming here to find someone to do their homework for her. She is trying, she is working on her own and she is asking for direction and assistance. She is doing nothing more than she would in school - we just became her surrogate instructor(s)...... I don't see a problem with that...... Help her or leave her be......

can't find actual IP address to even try................
but since I can't even ping external clients I don't see how I can implement this

The external address and the ability to ping from either direction is not important. You know that you can use HTTP..... Did you complete the enumeration? Are there other ports that allow you access to the public network? SSL, (443) may be open, try it, what about DNS? That may well be open too, (but your admin may have direct DNS blocked too). You need to know all your avenues outbound to give yourself the biggest chance of finding the hole you need.

Netcat waiting on your home box for a connection on port 80 might work, (but don't trust me on that you said you can't telnet to port 80 further back in the thread IIRC, if that's the case I'm not sure how your admin is blocking that), it might take some creative use of a browser to get it to give you the shell you need but it would be an interesting project and success should guarantee you the credits you will certainly deserve.

Good Luck, and don't leave the Netcat swinging out there in the breeze too long..... Someone esle might find it......

[Tiger Shark]

Hmmmm...... One person in this thread mentioned the word "enumeration".... Just one IIRC. Without any question as to what was meant faqt has returned with:-

I've discovered the firewall is 1.1 ISA, the computer I need to telnet from goes to a router (192.168.1.1) then the firewall (192.168.20.1), then the ISP..... however, I cannot find the address of the firewall on the public side.

From within the LAN I cannot ping any system not behind the firewall. From outside the LAN I cannot ping the internal clients. (can't find actual IP address to even try.)

I've been researching ssh tunneling....it seems to me, that in order for that to work for my purposes, I would need to install the ssh server on an external client, then tunnel from the Lan to the ssh server, but since I can't even ping external clients I don't see how I can implement this.

I've downloaded fpipe and can't get it to run for me (I'm running windows XP, and fpipe opens then dissappears right away, won't allow me any access to configure or use.)

I've downloaded the antifirewall program and will try it tonight at school.

For now, I've gone back to ISA as my search term, in hopes of finding some direction there. If at all possible I'd like to really understand what I'm doing.

I really don't care whether she used social engineering or tools to get the information, she took a hint and went ahead and discovered what it is she is up against.

I'm a first quarter student, and we don't even cover ISA/security until 4th quarter, so I guess maybe I'm a little over my head here.

Hmmmm..... Then logically she is ahead of her class since enumeration of the target is a security issue not a general networking issue......

This is clearly not some lame little kid coming here to find someone to do their homework for her. She is trying, she is working on her own and she is asking for direction and assistance. She is doing nothing more than she would in school - we just became her surrogate instructor(s)...... I don't see a problem with that...... Help her or leave her be......

can't find actual IP address to even try................
but since I can't even ping external clients I don't see how I can implement this

The external address and the ability to ping from either direction is not important. You know that you can use HTTP..... Did you complete the enumeration? Are there other ports that allow you access to the public network? SSL, (443) may be open, try it, what about DNS? That may well be open too, (but your admin may have direct DNS blocked too). You need to know all your avenues outbound to give yourself the biggest chance of finding the hole you need.

Netcat waiting on your home box for a connection on port 80 might work, (but don't trust me on that you said you can't telnet to port 80 further back in the thread IIRC, if that's the case I'm not sure how your admin is blocking that), it might take some creative use of a browser to get it to give you the shell you need but it would be an interesting project and success should guarantee you the credits you will certainly deserve.

Good Luck, and don't leave the Netcat swinging out there in the breeze too long..... Someone esle might find it......

[Zetaphor]

I have the same prob, I was not asked by a teacher, I just want to play my MUD. I cant telnet to any host on any port, unless it is within the network. I am behind a proxy on port 8001, I am using a damned iMac;(. I try to use the crappy telnet prog they have installed, I have also tried a few others. Any help would be greatly appreciated.

[Zetaphor]

I have the same prob, I was not asked by a teacher, I just want to play my MUD. I cant telnet to any host on any port, unless it is within the network. I am behind a proxy on port 8001, I am using a damned iMac;(. I try to use the crappy telnet prog they have installed, I have also tried a few others. Any help would be greatly appreciated.

[groovicus]

I just want to play my MUD.

Oh yeah, that's exactly the same

Since it's exactly the same, only different, almost everything you need is here.

All jibes aside, this was a good thread.

[groovicus]

I just want to play my MUD.

Oh yeah, that's exactly the same

Since it's exactly the same, only different, almost everything you need is here.

All jibes aside, this was a good thread.

[cgkanchi]

Umm... iMacs run OSX is it not? Learn UNIX and learn to tunnel. That should solve your problem.

Cheers,
cgkanchi

[cgkanchi]

Umm... iMacs run OSX is it not? Learn UNIX and learn to tunnel. That should solve your problem.

Cheers,
cgkanchi