Re: IP Spoofing/Masquarading



So can someone explain ip spoofing in the sense that a packet may be
spoofed to make it appear as if it originated from the internal lan
yet it did not. I need an explanation of how it works and how the
packet is structured.

regards

MD

On 9/9/09, Dan Howerton <danny.howerton@xxxxxxxxx> wrote:
M.D. -

The packet wont get to the internet. The moment your ISP sees it, it will
be
dropped.

On Wed, Sep 9, 2009 at 12:19 AM, M.D.Mufambisi <mufambisi@xxxxxxxxx> wrote:

I understand that IP packets can be spoofed ie change the source
address to make it look like they originated from the internal LAN.
However, when this is done across the internet, with a private IP
address in its source field, how does this packet get routed through
the internet?

Kind Regards

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review
Board

Prove to peers and potential employers without a doubt that you can
actually do a proper penetration test. IACRB CPT and CEPT certs require a
full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------




--
Dan Howerton
http://metacortexsecurity.com
GPG key: 10F5DDA5


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------



Relevant Pages

  • Re: JBN users busted by NSA, proving NSA blows your privacy
    ... > ''Eelbash'' once boasted at a Las Vegas conference that he could crack JBN ... > piece of evidence that led Canadian authorities to arrest an Ottawa man on ... > Internet traffic. ... The packet is wrapped in what computer scientists ...
    (sci.crypt)
  • RE: [Full-Disclosure] Wiretap or Magic Lantern?
    ... traffic is recoverable and to monitor for abuse. ... The NSA has over 3 Bill USD/Year in open book funding. ... Internet pioneer and computer-science professor at Carnegie-Mellon ... so does the envelope of a digitized packet. ...
    (Full-Disclosure)
  • RE: risks of ip-forwarding, without ipf/ipfw
    ... If I wasn't actually packet filtering, ... >> big bad internet and one on a home lan, with ip forwarding enabled, ... > A.k.a. a router. ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)
  • Re: At a loss figuring out if an IP is on LAN or INET
    ... What source address is in the packet? ... internet IP? ... internal network hosts, the packet will contain the internal address. ... I'm talking to multiple peers, some inside and some outside my ...
    (microsoft.public.dotnet.languages.vb)
  • Re: IP Spoofing/Masquarading
    ... So can someone explain ip spoofing in the sense that a packet may be ... address to make it look like they originated from the internal LAN. ... However, when this is done across the internet, with a private IP ... Information Assurance Certification Review Board ...
    (Pen-Test)