Jump to content

phx

Active Members
  • Posts

    7
  • Joined

  • Last visited

Recent Profile Visitors

663 profile views

phx's Achievements

Newbie

Newbie (1/14)

  1. yep just decided the same thing I think it's this stupid old linksys router i'm using in switch mode and it's sending its own packets for some reason the 192.168.1.1 I scanned is not the same one I'm noticing thread over I guess, thanks guys
  2. Yes, I've tried them. I read the manual and it makes you change it on first login. I also know that the ISP can login externally. The only packets I'm seeing from 192.168.1.1 are arp requests every so often for machines on this network. Does this indicate anything?
  3. The router's IP is 192.168.254.254, it's some DSL modem / router combo the ISP installed. I don't have login access to it, although I can get physical access, but resetting to factory defaults isn't a viable option because I don't have the PPPoE info to get it going again. router make/model: Efficient 5930 DMT Router
  4. the traceroute looks like this HOP RTT ADDRESS 1 0.36 [router] 2 54.35 74-[removed].frontiernet.net 3 54.00 74.[removed] 4 69.41 74.[removed] ... 8 99.00 74.[removed] 9 92.94 192.168.1.1
  5. the local subnet is 192.168.254.
  6. frontiernet, it's supposedly a business account, but I know nothing about it other than that
  7. Quick question, and excuse my newbiness, but why is there a device 8 hops outside my local network that has the IP 192.168.1.1? It seems to be routed through another state no less, although it is within my ISP. It's also getting flagged in XArp by the SubnetFilter, which is why I became curious about it to begin with. Thanks. edit: Interesting ports on 192.168.1.1: Not shown: 996 closed ports PORT STATE SERVICE VERSION 21/tcp open ftp? 22/tcp open ssh SCS sshd 2.0.12 (protocol 2.0) 23/tcp open tcpwrapped 179/tcp open tcpwrapped 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at http://www.insecure.org/cgi-bin/servicefp-submit.cgi : SF-Port21-TCP:V=4.76%I=7%D=10/6%Time=48EA843D%P=x86_64-unknown-linux-gnu%r SF:(NULL,37,"421\x20Session\x20limit\x20reached,\x20closing\x20control\x20 SF:connection\r\n")%r(RTSPRequest,37,"421\x20Session\x20limit\x20reached,\ SF:x20closing\x20control\x20connection\r\n")%r(DNSVersionBindReq,37,"421\x SF:20Session\x20limit\x20reached,\x20closing\x20control\x20connection\r\n" SF:)%r(NCP,37,"421\x20Session\x20limit\x20reached,\x20closing\x20control\x SF:20connection\r\n"); Device type: router|switch|PBX|encryption accelerator|WAP|general purpose Running (JUST GUESSING) : Juniper embedded (95%), SMC embedded (89%), Vodavi embedded (88%), Cisco embedded (87%), D-Link embedded (86%), TRENDnet embedded (86%), Apple Mac OS X 10.3.X|10.4.X (86%), Juniper JUNOS 8.X (86%) Aggressive OS guesses: Juniper Networks ERX-700 router (95%), SMC SMC7724M/VSW switch (89%), Vodavi XTS-IP PBX (88%), Cisco VPN 3000 Concentrator VPN platform (software version 4.7.2.D) (87%), Cisco VPN 3000 Concentrator VPN platform (software version 4.1.7.O) (87%), Cisco VPN 3030 Concentrator VPN platform (87%), Cisco VPN 3030 Concentrator VPN platform (software 4.7.2.F) (87%), D-Link DWL-624+ or TRENDnet TEW-432BRP wireless broadband router (86%), Apple Mac OS X 10.3.9 (Panther) (Darwin 7.9.0, PowerPC) (86%), Apple Mac OS X 10.3.9 (Panther) - 10.4.7 (Tiger) (Darwin 7.9.0 - 8.7.8, PowerPC) (86%) No exact OS matches for host (test conditions non-ideal). Network Distance: 8 hops
×
×
  • Create New...