Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 27 Jan 2001 15:54:18 -0500 (EST)
From:      Evan S <kaworu@sektor7.ath.cx>
To:        freebsd-stable@freebsd.org
Subject:   Strange network behavior.
Message-ID:  <Pine.GSO.4.10.10101271525590.4483-100000@wintermute.sekt7>
next in thread | raw e-mail | index | archive | help 
Hello,

I'm not sure if this belongs in freebsd-stable, -security, or -misc, so
I'll take my chances and post it here, in -stable.

I was fooling around with nmap one day, reading the man page, and stumbled
upon the -D, decoy option. So, to test it out, I nmapped one of my boxen
with the decoys of www.daemonnews.org, www.slashdot.org, and acs.bu.edu.
It worked, and it was kind of neat.

However, after it completed the nmap, I am now unable to connect to
www.slashdot.org, or www.daemonnews.org. So I began investigating a bit.
Heres some of the weird things that are happening.

The internal interface on my router has two ip addresses, 169.69.7.1, and
169.69.6.1. I have all of my computers using the gateway 169.69.6.1,
however, when I traceroute, it sends the packets to its alias 169.69.7.1.
Still works though.

This is what happens when I traceroute www.slashdot.org, and the same for
acs.bu.edu, or daily.daemonnews.org. Thankfully, I can connect to
acs2.bu.edu and so on.

kaworu@teqnix kern> traceroute www.slashdot.org
traceroute to slashdot.org (64.28.67.48), 30 hops max, 40 byte packets
 1  169.69.7.1 (169.69.7.1)  1.440 ms  1.439 ms  1.387 ms
 2  149.112.50.65 (149.112.50.65)  4.668 ms  3.730 ms  3.560 ms
 3  * *

Here is the output from netstat -nr on my router.

[kaworu@interorbos]$netstat -nr
Routing tables

Internet:
Destination        Gateway            Flags     Refs     Use    Mtu
Interface
default            149.112.50.65      UGS         3  2067979   1500  ep0
127/8              127.0.0.1          UGRS        0        0  32972  lo0
127.0.0.1          127.0.0.1          UH          3       62  32972  lo0
149.112.50.65      0:50:da:fb:c5:75   UHL         1       96   1500  ep0
149.112.50.98      127.0.0.1          UGHS        0        0  32972  lo0
169.69.6/24        link#2             UC          0        0   1500  ep1
169.69.6.2         0:a0:cc:73:d1:a7   UHL         0      836   1500  ep1
169.69.6.3         0:a0:cc:63:e1:8f   UHL         2  1694450   1500  ep1
169.69.6.5         8:0:20:c:f5:86     UHL         0      123   1500  ep1
169.69.7/24        link#2             UC          0        0   1500  ep1
169.69.7.2         0:40:5:4e:24:91    UHL         0     1133   1500  ep1
209.6.248/23       link#1             UC          0        0   1500  ep0
209.6.248.1        0:30:19:3b:a5:54   UHL         0        0   1500  ep0
209.6.248.127      127.0.0.1          UGHS        0        0  32972  lo0
224/4              127.0.0.1          URS         0        0  32972  lo0

Uname -ap output for the computer I nmapped from:

FreeBSD teqnix.sekt7.org 4.2-STABLE FreeBSD 4.2-STABLE #20: Sat Jan  6
10:09:59 GMT 2001     kaworu@teqnix.sekt7.org:/usr/src/sys/compile/KAWORU
i386

Thanks in advance, 

Evan Sarmiento (kaworu@sektor7.ath.cx)
http://sekt7.org/es



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.10.10101271525590.4483-100000>