Linux Advanced Routing and Traffic Control list
 help / color / mirror / Atom feed
From: bert hubert <ahu@ds9a.nl>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] Stealth Router
Date: Sat, 24 Mar 2001 21:29:45 +0000	[thread overview]
Message-ID: <marc-lartc-98546951600753@msgid-missing> (raw)
In-Reply-To: <marc-lartc-98545518711220@msgid-missing>

On Sat, Mar 24, 2001 at 06:32:04PM +0100, M.F. PSIkappa wrote:
> Hi,
> in FreeBSD kernel is options that make router stealth, packet passed throw
> router have no change in TTL value.
> Is a posibility to make similar thing in Linux, I think that in traceroute
> isn't this hop, no asteris, no router, no change in TTL, nothing ...?

There are multiple ways to achieve this. 

* The Ethernet Frame Diverter which allows you to operate as a transparent
  bridge. The URL is in the HOWTO

* The TTL target in iptables. This allows you to raise the TTL again, so
  nobody might see your router. If you disallow certain ICMP Port
  Unreachable messages, I think your router won't appear in traceroute. You
  need to use proxy arp tricks to draw packets into your router if you want
  it to be totally transparent.

Regards,

bert

-- 
http://www.PowerDNS.com      Versatile DNS Services  
Trilab                       The Technology People   
'SYN! .. SYN|ACK! .. ACK!' - the mating call of the internet

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/

  reply	other threads:[~2001-03-24 21:29 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2001-03-24 17:32 [LARTC] Stealth Router M.F. PSIkappa
2001-03-24 21:29 ` bert hubert [this message]
2001-03-25 19:55 ` bert hubert

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=marc-lartc-98546951600753@msgid-missing \
    --to=ahu@ds9a.nl \
    --cc=lartc@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox