| Home | Forums | Reviews | Articles | Register |
 |
| Thread Tools | Rate Thread |
|
Guest
Posts: n/a
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
|
|
|
|
||
|
Guest
Posts: n/a
|
|
|
|
|
||
|
Guest
Posts: n/a
|
Hmm weird... the source rule disappeared gonna try again first
 Bye, Skybuck. "Skybuck Flying" <(E-Mail Removed)> wrote in message news:a3df8$4a57b65d$d53372a9$(E-Mail Removed)... > Nope that doesn't seem to work. > > I choose filter option "block". > > Instead of the "request security". > > (Maybe block don't work ? but unicast it does seem to block so this is > weird). > > Maybe this is a broadcast bug in the filter ?!? > > Now I am gonna try a special broacast rule. > > Bye, > Skybuck. > > "Skybuck Flying" <(E-Mail Removed)> wrote in message > news:34624$4a57b566$d53372a9$(E-Mail Removed)... >> So far I base the rules on "destination addres/ip". >> >> Before I try a special broadcast rule.... >> >> First I try a "source address/ip" rule... >> >> Maybe that will work for banning broadcast packets too... >> >> Bye, >> Skybuck. >> >> "Skybuck Flying" <(E-Mail Removed)> wrote in message >> news:7a36e$4a57b48b$d53372a9$(E-Mail Removed)... >>> Hello, >>> >>> I banned ip address: 7.0.79.54 in windows xp policy etc... >>> >>> (This is a virtual ip) >>> >>> To my surprise the broadcast packets are not blocked ? >>> >>> (Only unicast packets are blocked ?!?) >>> >>> So for example udp packet: >>> >>> Source IP: 7.0.79.54 >>> Dest IP: 255.255.255.255 >>> >>> ^^^ Is not blocked. >>> >>> While >>> >>> Source IP: 7.0.79.54 >>> Dest IP: My IP >>> >>> ^^^ Is blocked ?!?!? >>> >>> I guess I have to add a special rule for broadcast packets ?! >>> >>> Hmm... >>> >>> Gonna try it... >>> >>> Later, >>> Bye, >>> Skybuck. >>> >> >> > > |
|
|
|
|
|||
|
Guest
Posts: n/a
|
Maybe it got removed because it was invalid or conflicting...
I tried again... this time it worked for the broadcast packets... But unicast both ways blocked not... So I would have to add a special rule to block unicast in both ways... This kinda sux because it requires two rules... which is double as much work but ok. Also trying to ban 255.255.255.255 for a specific source is not possible... So I had to choose "any ip" which is a bit strange but ok End result: Broadcast packets banned for ip X Unicast packets banned for ip X both ways. However I also noticed something weird: The broadcast packets were still showing up in the wireshark sniffer... Apperently broadcast packets follow a different route through the windows filter/firewall/policy logic ?!?!? ^ Weird... might be exploitable too ^ For example "broadcast attacks onVPLAN's" might still work. Bye, Skybuck. "Skybuck Flying" <(E-Mail Removed)> wrote in message news:e1df7$4a57b6aa$d53372a9$(E-Mail Removed)... > Hmm weird... the source rule disappeared gonna try again first > > Bye, > Skybuck. > > "Skybuck Flying" <(E-Mail Removed)> wrote in message > news:a3df8$4a57b65d$d53372a9$(E-Mail Removed)... >> Nope that doesn't seem to work. >> >> I choose filter option "block". >> >> Instead of the "request security". >> >> (Maybe block don't work ? but unicast it does seem to block so this is >> weird). >> >> Maybe this is a broadcast bug in the filter ?!? >> >> Now I am gonna try a special broacast rule. >> >> Bye, >> Skybuck. >> >> "Skybuck Flying" <(E-Mail Removed)> wrote in message >> news:34624$4a57b566$d53372a9$(E-Mail Removed)... >>> So far I base the rules on "destination addres/ip". >>> >>> Before I try a special broadcast rule.... >>> >>> First I try a "source address/ip" rule... >>> >>> Maybe that will work for banning broadcast packets too... >>> >>> Bye, >>> Skybuck. >>> >>> "Skybuck Flying" <(E-Mail Removed)> wrote in message >>> news:7a36e$4a57b48b$d53372a9$(E-Mail Removed)... >>>> Hello, >>>> >>>> I banned ip address: 7.0.79.54 in windows xp policy etc... >>>> >>>> (This is a virtual ip) >>>> >>>> To my surprise the broadcast packets are not blocked ? >>>> >>>> (Only unicast packets are blocked ?!?) >>>> >>>> So for example udp packet: >>>> >>>> Source IP: 7.0.79.54 >>>> Dest IP: 255.255.255.255 >>>> >>>> ^^^ Is not blocked. >>>> >>>> While >>>> >>>> Source IP: 7.0.79.54 >>>> Dest IP: My IP >>>> >>>> ^^^ Is blocked ?!?!? >>>> >>>> I guess I have to add a special rule for broadcast packets ?! >>>> >>>> Hmm... >>>> >>>> Gonna try it... >>>> >>>> Later, >>>> Bye, >>>> Skybuck. >>>> >>> >>> >> >> > > |
|
|
|
|
|||
|
Guest
Posts: n/a
|
|
|
|
|
||
|
|
| |
|
| Thread Tools | |
| Rate This Thread | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Not Receiving UDP Broadcast Packets | Kevin S. | Microsoft C# .NET | 2 | 13th Aug 2009 01:13 AM |
| Packets being broadcast from one machine to all switch ports? | =?Utf-8?B?V1hT?= | Windows XP Networking | 1 | 29th May 2007 04:30 PM |
| Broadcast UDP packets don't go to all network interfaces in Vista | ED | Windows Vista Networking | 0 | 23rd May 2007 07:33 AM |
| WAN bridge and broadcast UDP packets | Denville Longhurst | Microsoft Windows 2000 Networking | 2 | 13th Jan 2005 09:05 AM |
| XP, No Multicast packets can be received, but TCP, UDP, Broadcast works. | Dmitri Top | Windows XP Networking | 0 | 29th Dec 2004 03:02 PM |
