Олицетворение Маршрутизатор

655
sandeep_jagtap

Можно ли полностью (имеется в виду тип сетевого устройства по идентификатору поставщика) выдавать себя за маршрутизатор за компьютер или ноутбук, клонируя mac-адрес компьютера или ноутбука? Можно ли узнать после клонирования mac-адреса, что роутер является роутером, а не подключенным ПК?

Например: Ethernet-канал (CAT-5) для ноутбука с точкой доступа к нескольким устройствам через WiFi (CASE-1)

Поток Ethernet (CAT-5) для маршрутизатора на несколько устройств через WiFi (CASE-2)

Можно ли сделать CASE 2 похожим на CASE 1, не зная о наличии сетевого администратора в маршрутизаторе?

-3
Это действительно возможно. Ramhound 10 лет назад 0
Вы можете это уточнить, как? sandeep_jagtap 10 лет назад 0
Точные шаги будут зависеть от конкретного оборудования, которое у вас есть. Если вы измените MAC-адрес маршрутизатора на ваш компьютер, вы создадите отдельную проблему, потому что намного сложнее изменить MAC-адрес компьютера или другого электронного устройства. Ramhound 10 лет назад 0
Я подозреваю, что путаница связана с тем, что английский язык отсталый по сравнению с большинством других языков. В этом случае он спрашивает не о компьютере, имитирующем маршрутизатор, а об обратном. Synetech 10 лет назад 0

2 ответа на вопрос

1
davidgo

This question is badly worded and thus difficult to answer. You should provide more details on the hardware, and how you mean "completely impersonate". Also you should confirm the nature of the router [presumably WAN] connection.

In the simple case where you are just getting an Ethernet feed and the upstream provider is not running anything fancy (like BGP for failover) the answer is "Mostly"

In this case all you need to do is clone the MAC address on the router - how you do this will depend on the OS (and if the OS does not support it, you might need to get a card which does, but this can definately be done in software under Linux). You will then need to set the same mechanisms [ie MTU, IP address, gateway, netmask] to get this to work.

Note that I said "Mostly" in my answer. This is because it is usually possible for a device to be "fingerprinted", which gives an indication of the OS. I'm not familiar with this being used very widely for network engineers (hackers are a different story). Another possibility is that the provider may have hooks [ like be running an SSH server on the router, or remote management ] which they would were no longer accessible if they provided a router to you for management purposes.

For the sake of clarity, if you are in a situation of "Provide your own CISCO router" (for example) and you want to plug in a PC directly (you will want to secure it), but make it look - to the casual observer or helpdesk dummy - who for whatever reason can directly view the remote end of the connection - they will probably just look up the first part of the MAC address and see who it was assigned to. By faking the cards mac address - which is trivial to do on ethernet - you can fool this check.

Я отредактировал свой вопрос. Доу это поможет вам ответить более четко sandeep_jagtap 10 лет назад 0
1
Synetech

It sounds like you are asking how to allow multiple devices to share an Internet connection without the ISP knowing exactly what is connected. For example, perhaps your ISP only allows you to connect a single computer, but you want to use a router to connect more than one via NAT. In this case, yes, it is possible to do this, and most routers specifically include a function to facilitate it.

The steps required will depend on your specific router, but they will usually be fairly similar. In this example, we’ll do it for a D-Link DIR-655 (if you specify your router, I can try to update it for that):

  1. Open your router’s configuration page and log in
  2. Look for something like setup or Internet or WAN (you may need to go through manual setup)
  3. Once you’ve located the WAN-configuration page, locate the DHCP section
  4. Most routers will include the ability to specify a MAC address, and most will even include a [Clone/Copy PC] button to let you copy the computers’s MAC address automatically:
  5. You may also need to copy the computer/host name, though most ISPs only lock based on MAC address
  6. Click [Save] or [Apply] and reboot the router

Screenshot of router’s MAC-address setting

Now you should be able to share the Internet connection with multiple devices. The ISP might still be able to detect that multiple devices are connected with some kind of probing or traffic-analysis, but few, if any bother going to such extremes.

Похожие вопросы