public inbox for gentoo-dev@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-dev] net.eth0 without an IP addy
@ 2003-03-17 23:11 Robert Cole
  2003-03-17 23:55 ` Marko Mikulicic
  2003-03-18  0:12 ` Michael Boman
  0 siblings, 2 replies; 4+ messages in thread
From: Robert Cole @ 2003-03-17 23:11 UTC (permalink / raw
  To: gentoo-dev

I'm building stealth machines (logger, IDS, etc) without IP addresses and I 
need a way to activate an interface without an IP address in a switched 
environment. 

loading up the module isn't enough to send a broadcast so the switch 
negotiates a link and logs the mac. Anyone have an idea on how to send a 
broadcast to the switch with nothing setup in /etc/conf.d/net  ?

I've been trying mii-diag without success. I'm using the 3c59x driver in 
gentoo-sources. Gentoo rc3.

Before I get into modifying the net.eth0 script I would like to see if tehre 
is something I'm missing here. :)

Here's a link to what I'm trying to setup:

http://www.linuxjournal.com/article.php?sid=6222

Any help would be appreciated. When I'm complete with this I will submit it to 
the gentoo security docs.

Robert

--
gentoo-dev@gentoo.org mailing list


^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [gentoo-dev] net.eth0 without an IP addy
  2003-03-17 23:11 [gentoo-dev] net.eth0 without an IP addy Robert Cole
@ 2003-03-17 23:55 ` Marko Mikulicic
  2003-03-18  3:16   ` Joseph Carter
  2003-03-18  0:12 ` Michael Boman
  1 sibling, 1 reply; 4+ messages in thread
From: Marko Mikulicic @ 2003-03-17 23:55 UTC (permalink / raw
  To: robert.cole; +Cc: gentoo-dev

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Robert Cole wrote:
| I'm building stealth machines (logger, IDS, etc) without IP addresses
and I
| need a way to activate an interface without an IP address in a switched
| environment.
|
| loading up the module isn't enough to send a broadcast so the switch
| negotiates a link and logs the mac. Anyone have an idea on how to send a
| broadcast to the switch with nothing setup in /etc/conf.d/net  ?
|
I think the simplest way is to add "ifconfig eth0 up" in
/etc/conf.d/local.start.
It's quite a specific situation, I don't know if it's worth to put in
default scripts.

Marko

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE+dmB1j0pLiOk7oZoRAnjzAJ4+q4xWcXCKuuMan5ReOam6Wuon7ACaAsRt
TZQiAc68LcKAvySahDTdug0=
=oAfY
-----END PGP SIGNATURE-----


--
gentoo-dev@gentoo.org mailing list


^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [gentoo-dev] net.eth0 without an IP addy
  2003-03-17 23:11 [gentoo-dev] net.eth0 without an IP addy Robert Cole
  2003-03-17 23:55 ` Marko Mikulicic
@ 2003-03-18  0:12 ` Michael Boman
  1 sibling, 0 replies; 4+ messages in thread
From: Michael Boman @ 2003-03-18  0:12 UTC (permalink / raw
  To: Robert Cole; +Cc: gentoo-dev

[-- Attachment #1: Type: text/plain, Size: 1134 bytes --]

On Mon, Mar 17, 2003 at 03:11:34PM -0800, Robert Cole wrote:
> I'm building stealth machines (logger, IDS, etc) without IP addresses and I 
> need a way to activate an interface without an IP address in a switched 
> environment. 
> 
> loading up the module isn't enough to send a broadcast so the switch 
> negotiates a link and logs the mac. Anyone have an idea on how to send a 
> broadcast to the switch with nothing setup in /etc/conf.d/net  ?
> 
> I've been trying mii-diag without success. I'm using the 3c59x driver in 
> gentoo-sources. Gentoo rc3.
> 
> Before I get into modifying the net.eth0 script I would like to see if tehre 
> is something I'm missing here. :)
> 
> Here's a link to what I'm trying to setup:
> 
> http://www.linuxjournal.com/article.php?sid=6222
> 
> Any help would be appreciated. When I'm complete with this I will submit it to 
> the gentoo security docs.
> 
> Robert

You mean somehing like:

iface_eth1="0.0.0.0 promisc"

in your /etc/conf.d/net

Best regards
 Michael Boman

-- 
Michael Boman
Security Architect, SecureCiRT Pte Ltd
http://www.securecirt.com

[-- Attachment #2: Type: application/pgp-signature, Size: 232 bytes --]

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [gentoo-dev] net.eth0 without an IP addy
  2003-03-17 23:55 ` Marko Mikulicic
@ 2003-03-18  3:16   ` Joseph Carter
  0 siblings, 0 replies; 4+ messages in thread
From: Joseph Carter @ 2003-03-18  3:16 UTC (permalink / raw
  To: Marko Mikulicic; +Cc: robert.cole, gentoo-dev

[-- Attachment #1: mutt-galen-12253-50 --]
[-- Type: text/plain, Size: 854 bytes --]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, Mar 18, 2003 at 12:55:34AM +0100, Marko Mikulicic wrote:
> I think the simplest way is to add "ifconfig eth0 up" in
> /etc/conf.d/local.start.
> It's quite a specific situation, I don't know if it's worth to put in
> default scripts.

I sure wouldn't mind seeing ifconfig iface down added to static and DHCP
ehternet configs..

- -- 
Joseph Carter <knghtbrd@efn.org>                  SCO must cease to exist!
 
If I have trouble installing Linux, something is wrong. Very wrong.
        -- Linus Torvalds

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: 1024D/20F62261F1857A3E79FC44F98FF7D7A3DCF9DAB3

iEYEARECAAYFAj52j6UACgkQj/fXo9z52rMtEwCcCOLEg0B5+plyWMhBuG+GS4mV
46gAoJjZF74BqZb4Cyyx9a6EYVuiivdt
=Ze+H
-----END PGP SIGNATURE-----

--
gentoo-dev@gentoo.org mailing list


^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2003-03-18  3:16 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-03-17 23:11 [gentoo-dev] net.eth0 without an IP addy Robert Cole
2003-03-17 23:55 ` Marko Mikulicic
2003-03-18  3:16   ` Joseph Carter
2003-03-18  0:12 ` Michael Boman

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox