echoblack

Owe, I see. You are have it dishing out IP's from the router. That is a better way of doing it I guess. I'll have to set up the Pineapple a to static IP and try it out. But reading through the shell script.. It looks like it will work vary well. I'm not sure though. Running a DHCP+DNS server on the Host laptop may be more resilient to changes in the network. However, I have not fully internalized the way your set up is working. So, I could just be a dumbass. With the Pineapple handling the DHCP you will be able to use the Nmap on the Pineapple which is nice. I'll edit this post after trying your way.

Thanks for the reply :) I got it all worked out now. I wish I would have read your respose before. But I learned a lot doing it. I even wrote my own HowTo for Linux. I guess this forums needed one even though you wrote one already :P HowTo- Internet Connection Sharing on "LINUX" http://hak5.org/forums/index.php?showtopic...t=0#entry148756

Internet Connection Sharing on "LINUX" & Jasager Pineapple Setup This way run's the dnsmasq DHCP+DNS server on the Host Laptop This HowTo is NOT the Best Way Just left of for reference if you want to try it or need to do this for some other reason You Want to follow This other HowTo Just Click the link or search these forums for the thread name Best HowTo - Setup Internet Connection Forwarding on "Linux" & Jasager http://hak5.org/forums/index.php?showtopic=15200 --------------------------------------------------- - On Pineapple - Ethernet Port = ETH0 WiFi Port = WiFi - On laptop - Wireless Interface = wlan0 Ethernet Port = eth0 This is how it will all work in the end. Internet > ("dhcp+dns" GW > wlan0) > ("dhcp+dns" eth0 > {"lan network" ETH0 > WiFi } ) ^You understand that right ? Well lets start on the Laptop Config. Fist install LINUX . . . BSD or Solaris but the setup is different. or not Windows is an Amazingly good OS for building Botnets. Wink wink, nudge nudge Matt Lestock. You will need to install dnsmasq on your laptop. On Archlinux pacman -S dnsmasq Now you need to edit the /etc/dnsmasq.conf The main things that need to be changed in there are these. # If you want dnsmasq to listen for DHCP and DNS requests only on # specified interfaces (and the loopback) give the name of the # interface (eg eth0) here. # Repeat the line for more than one interface. interface=eth0 # This is an example of a DHCP range where the netmask is given. This # is needed for networks we reach the dnsmasq DHCP server via a relay # agent. If you don't know what a DHCP relay agent is, you probably # don't need to worry about this. dhcp-range=10.110.0.50,10.110.0.150,255.255.255.0,12h Change this MAC address to the MAC address of the ETH0 interface on "Your" Pineapple This way it always has the same IP. . . MANDATORY # Always allocate the host with ethernet address 11:22:33:44:55:66 # The IP address 192.168.0.60 dhcp-host=00:18:84:1E:97:88,10.110.0.2 Now add the OpenDNS servers to your /etc/resolv.conf dnsmasq looks here for them. echo "nameserver 127.0.0.1" >> /etc/resolv.conf echo "nameserver 208.67.222.222" >> /etc/resolv.conf echo "nameserver 208.67.220.220" >> /etc/resolv.conf Now Start dnsmasq as Root with sudo but Don't worry dnsmasq Drops Root privileges and runs as "nobody" after startup. sudo dnsmasq If that doesn't start dnsmasq then start it with this command sudo /etc/init.d/dnsmasq start ----------------------------------------------- Now (You can do all this or just run this stupidly crappy shell script to set up your laptop. Run from a Root shell # not $) #!/bin/bash # # This sets up internet connection shareing from wlan0 to eth0 for the Pineapple # # ifconfig eth0 10.110.0.1 netmask 255.255.255.0 && ifconfig eth0 up && sleep 1 && echo 1 > /proc/sys/net/ipv4/ip_forward && iptables -t nat -A PREROUTING -i eth0 -p tcp --destination-port 80 -j REDIRECT --to-ports 10000 && iptables -t nat -A POSTROUTING -o wlan0 -j MASQUERADE && /etc/rc.d/iptables save && sleep 1 && /etc/rc.d/iptables start && sleep 1 && /etc/rc.d/dnsmasq start && sleep 1 && echo "You can Plug in the Pineapple Now" exit Now To bridge the wlan0 Wireless interface on your laptop that is connected to a Wireless Router serving up the Internet. . . To the eth0 Ethernet interface that is connected to the Pineapple. Agin . . wlan0 = Internet facing eth0 = Pineapple facing Set the IP address of the interface and the Netmask of the network. ifconfig eth0 10.110.0.1 netmask 255.255.255.0 ifconfig eth0 up Now you need to enable IP-Forwarding. I do this in a temporary way like this. . . echo 1 > /proc/sys/net/ipv4/ip_forward To make it persistant you can do this. . Edit /etc/sysctl.conf Change. . . net.ipv4.ip_forward=0 to net.ipv4.ip_forward=1 Ok, Now set a iptables rule to allow traffic form eth0 to be forwarded to wlan0 and off to the Internet. Also add the rule to forward all traffic origination from interface eth0 on Port 80 to port 10000 which is the default listening Port for sslstrip. NOTE:if you put in the rule to Forward eth0 traffic on port 80 to port10000. You Have to have sslstrip running so the WiFi clients get there http traffic forwarded off to the Internet iptables -t nat -A PREROUTING -i eth0 -p tcp --destination-port 80 -j REDIRECT --to-ports 10000 iptables -t nat -A POSTROUTING -o wlan0 -j MASQUERADE /etc/rc.d/iptables save /etc/rc.d/iptables start --------------------------------------- Chary --------------------------------------- DON'T PLUG Pinapple INTO THE LAPTOP Ethernet YET ! Now To set up the Jasager Pineapple Connect to it's WiFi interface. . . It should have an essid of OpenWRT or Pineapple.... If it is not sending off any essid. Then you probably need to plug the Pineapple into a computer that you didn't set up the Ethernet forwarding on, OR reboot the Linux laptop and start all over after setting up a Virtual WiFi Lan on the "lan network" in Webif Network/Wireless Go ahead and add the OpenDNS servers to the /etc/resolv.conf on the Pineapple too. So ssh into the Pineapple ssh -c blowfish root@192.168.1.1 And add them. . . echo "nameserver 127.0.0.1" >> /etc/resolv.conf echo "nameserver 208.67.222.222" >> /etc/resolv.conf echo "nameserver 208.67.220.220" >> /etc/resolv.conf Ok, So, now go to page Network/networks http://192.168.1.1/cgi-bin/webif/network.sh Now. You are going to have to flip the "Connection Type" back and forth. BUT in the end it will be set to "DHCP" Connection Type = Static IP Type = Bridged IP Address = 10.110.0.2 Netmask = 255.255.255.0 Default Gateway = 10.110.0.1 Lan DNS servers = 10.110.0.1 Hum,.... you mite need to save here too and then go back in and change to DHCP... not sure. NOW Flip that "Connection Type" back to "DHCP" So, it will look like this when you hit the save. . . Connection Type = DHCP Type = Bridged IP Address = 10.110.0.2 Netmask = 255.255.255.0 Now, hit the "Save Changes" Button then Apply Changes at the bottom. It probably will not reconnect so just let it sit for like 5min's then Power Cycle ---------------------------------------- Now please Owe PLEASE Work !!!! ----------------------------------------- OK, ....... Now after about 5-10min's The Jasager Powered Fon La Fonera Router Should be done booting up. Note: You should be connected to the Internet with your laptops Wireless Interface "wlan0" to a Wireless Router. Pull out your handy Ethernet cable. Pluge one end into your laptop Ethernet Port eth0 Plug the other end into the Ethernet Port on the Fon La Fonera Router. . . . . . . Should have worked ! . ... Give it a min or two then open FireFox and navigate to 10.110.0.2.... YES Now SSH to ssh root@10.110.0.2 YES Now start up a VirtualBox and Connect to the WiFi.... Open a Shell and. . . ping 10.110.0.2 YES ping 10.110.0.1 YES ping (The wlan0 IP address) YES ping (The GW address) YES ping google.com YES Now, If you have it set up for sslstrip. Fire that up so the Port80 traffic that is being forwarded to Port 10000 has sslstrip to send it off to the Internet... sslstrip -w sslstrip.log In the VirtualBox - Open FireFox and Navigate to http://google.com YES ---------------------------------------------------------------------- Navigate to the Jasager Admin Webpage and turn Karma ON. Make sure you add Your Fon Routers essid of "pineapple" or "OpenWrt" to the "Black List" - Every Time you Reboot the router ! ! ! Now Start up Wireshark on your Host Laptop and listen on interface "eth0" and get your packet sniffing on. ------------------------------------------------------------------------------------ From now on just make a crappy shell script like I showed you. Name it pineapple.sh and put it in /usr/bin and make it executable. sudo cp pineapple.sh /usr/bin && sudo chmod 775 /usr/bin/pineapple.sh This way form now on all you have to do to get the Jasager up and running is just [Root@ArchLinux~]# pineapple.sh [User@ArchLinux~]$ sslstrip -w sslstrip.log & Plug in the Pineapple ------------------------------------------------------------------------------------ To Kill everything. . . As Root do this killall dnsmasq iptables -X iptables -F /etc/rc.d/iptables stop # On Linux distros other then Archlinux /etc/init.d/iptables stop Hope this helped you =============================================== P.S. I love the show guys and girl :) Keep on the Linux ! Windows is Dead !... Well it sucked big balls to begin with. What the hell is with C:\Windows\$NtUninstallWindow98847977$ ? That is crazy crap only good for hiding Virus code. & I'll take a well documented config file over the cryptic Windows Registry any day :P Thanks for the Pineapple :) I still can't find anywhere ells to buy one. If you do, buy them all. I am sure you'll sell'um.

Few, I installed dnsmasq and started serving up IP's, then plugged in the Pineapple and it connected. That was scarry

Well I bricked it.... I filaly listened to they stupid XP Internet connection sharing thread. And set the lan to DHCP instead of Static IP. I din't know what ells to do. Everything Should have been working...arg http://wiki.hak5.org/wiki/Internet_Connect...mit_Der_Jasager Now, I can't get an IP on WiFi and not on Ethernet. All I changed was a eth0 lan setting and now the WiFi will not give out IP's ? crazy. ya ya,, I know I just need to install a DHCP server on my laptop. and that is "Suppose to Work' but so was everything ells I was doing.

Hello agin, Hopefully I'll answer my own question again but I'll post anyway. Maybe it will help someone ells. What is a safe Tx Power setting for the Fon La Fontenna ? Is 16dbm Safe ? Has anyone gotten Internet connection sharing working with Linux ? ---------------- I got the Internet connection sharing working with Linux. Or it "Should" be working. I did this.... Internet GW IP range is 192.168.1.1 255.255.255.0 - On laptop - wlan0 = Internet eth0 = Ethernet Port set to share ifconfig eth0 192.168.0.1 netmask 255.255.255.0 ifconfig eth0 up Then set of Forwarding echo 1 > /proc/sys/net/ipv4/ip_forward Then set up iptables to bridge the connection iptables -t nat -A POSTROUTING -o wlan0 -j MASQUERADE /etc/rc.d/iptables save /etc/rc.d/iptables start ----------------------- - On Pineapple - On. . . http://192.168.0.2/cgi-bin/webif/network.sh (lan Configuration) Connection Type = "Static IP" Type = "Bridged" Ipaddress = "192.168.0.2" Netmask = "255.255.255.0" Default Gateway = "192.168.0.1" Then I added the OpenDNS servers to the resolve.conf file. . . echo "nameserver 208.67.222.222" >> /etc/resolv.conf echo "nameserver 208.67.220.220" >> /etc/resolv.conf ----------------------- I can SSH into the Pineapple root@192.168.0.2 I then then ping the the eth0@192.168.0.1 & google.com root@OpenWrt:~# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes 64 bytes from 192.168.0.1: seq=0 ttl=64 time=1.763 ms 64 bytes from 192.168.0.1: seq=1 ttl=64 time=1.496 ms 64 bytes from 192.168.0.1: seq=2 ttl=64 time=1.471 ms ^C --- 192.168.0.1 ping statistics --- 3 packets transmitted, 3 packets received, 0% packet loss round-trip min/avg/max = 1.471/1.576/1.763 ms root@OpenWrt:~# ping 74.125.19.105 PING 74.125.19.105 (74.125.19.105): 56 data bytes 64 bytes from 74.125.19.105: seq=0 ttl=51 time=71.131 ms 64 bytes from 74.125.19.105: seq=1 ttl=51 time=75.533 ms 64 bytes from 74.125.19.105: seq=2 ttl=51 time=74.146 ms ^C --- 74.125.19.105 ping statistics --- 3 packets transmitted, 3 packets received, 0% packet loss round-trip min/avg/max = 71.131/73.603/75.533 ms root@OpenWrt:~# ping google.com PING google.com (74.125.19.105): 56 data bytes 64 bytes from 74.125.19.105: seq=0 ttl=51 time=267.918 ms 64 bytes from 74.125.19.105: seq=1 ttl=51 time=80.228 ms 64 bytes from 74.125.19.105: seq=2 ttl=51 time=77.532 ms 64 bytes from 74.125.19.105: seq=3 ttl=51 time=78.513 ms ^C --- google.com ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 77.532/126.047/267.918 ms ------------------------ But If I connect to the Wireless connection Pineapple in a VirtualBox-BT4 It will "TRY" to resolve the DNS of http://google.com in Firefox but will not succeed. If I connect to the Wireless and then SSH into the Pineapple I can Ping Google.com... Just not in Firefox. I can turn on "Karma" and it will suck in Noobs but the Noobs can't resolve DNS in Firefox ether... Same gig as if I connected to the Pineapple essid. The connected clients to the WiFi can Ping the Pineapple@192.168.0.2 & eth0@192.168.0.1 But NOT wlan0@192.168.1.166 Nore the real GW@192.168.1.1 Nore google.com So, My laptop IS sharing the internet between. . . GW>->wlan0>eth0>->Pineapple Pineapple>->eth0>wlan0>->GW Wifi>Pineapple>eth0>:brake:>wlan0>GW -------------- I know I had to tun on DHCP for "WAN"? To get give Wireless clients IP's.... Shouldn't that be the "LAN"? I when ahead and set up the Bridge for the "WAN" as well but No go. ------------------------- I went ahead and set the DNS servers in. . . http://192.168.0.2/cgi-bin/webif/network.sh But still same gig.

Sure, it is a vary functional little router. But, I think the reason this thread was started is because the Fon routers that work with Jasager are no longer for sale. I can't find one anywhere not ebay not amazon. Not Google/shopping This whole Jasager Project is dead without a router to run it on.

OK, I'm a noob. I had to just ifconfig wifi0 up. And then the big thing was to turn on DHCP for the "WAN". That still makes no sents to me bacuse the V-interface is on "LAN".... What ever though. I'm getting is all down now. I just needed to sleep. --------------------------- I got everything working. So if your reading this and have the same problem check out the HowTo I wrote HowTo- Internet Connection Sharing on "LINUX" http://hak5.org/forums/index.php?showtopic=15185

Hello, Well it is not bricked yet. So, No sweat. My questions are... Is the Webif website "suppose to' work? Or should I say F-that and do everything from the shell? Should I reinstall naserl and webif and jasager ? That would work right? I'm thinking I'll just start clearing config files and reinstalling stuff. Kind of build it backup from the ground up. I got to just tare it all down, build it all up and figure out how it is working together. Every time I make change a setting something ells brakes. Wireless all down now. -------------------------------------- I got a commissioned Pineapple today. I had to remove the haserl and webif. Then install the newest versions to be able to connect to the Webif admin web page. Apon reboot all was A-OK still essid of Pineapple and stuff. But then I set my laptop to bridge the wlan0 to eth0. Then I Used the "Admin Webpage" of Webif to set the lan to bridged and the ip of 192.168.0.2 and netmask 255.255.255.0. Then save and when I hit Apply channges... it all went down. Maybe I didn't let it sit long enough.... 5mins's ... but it was broadcasting a essid (OpenWrt3) again before I puled the plug. Apon reboot. The essid was nolonger Pineapple. The essid is was then OpenWrt3.... And, would not give an IP address to anything. (I have 3 wireless cards total. one rtl8187, rt73, intel WiFi 5300-- VM's and all) So, I turned off. Held down the "Hardware Reset button" and powered on and bla bla reset it. Apon reboot. Same gig (though it did seem to reset because the Lan setting I had set up for the bridge were gone. {But will not Reset now}) But after clearing the bridged eth0. I can connect to the Fon with the ethernet. So, not bricked few... So, wile looking at the wireless settings in the Webif Admin page... I figured I'd change the Wireless channels to USA. And turned off the duel-antenna thing(cant remember the setting name now) because it only has one antenna. (Figured maybe that could have been the problem) Now, the Wireless is not even turning on.... Not the green hardware light, no essid.....

El'O, I quite possibly could just be a dumbass.... However, 9/10 times I try to look at the thread. USB Pocket-Knife Development site:hak5.org It will not show the thread-page number at the top. It dose at the bottom though. However, It only says it has 8 page BUT when it is working it REALLY has 40 pages. When it only shows the page#'s at the bottom of the tread it will only show the First post. Then if I click on the page#'s at the bottom . . It still only shows the First Post. If I click on one of the "Links" to one of the replies it will show the "First" post &/or Just the posted-response of the post that I clicked on. In short It will not let me search the thread. -------------- I have this problem in. . . My Host OS Archlinux in Firefox and Konqeror Guest VirtualBox XP sp3 OS. Firefox Guest VirtualBox Win7 OS. Firefox Guest VirtualBox WinServer 2008. in Firefox Guest VirtualBox OpenSUSE firefox and Konqeror ---------------- I have this problem going through my SSH account, Not going though the SSH account, On My WiFi, On my Nabers WiFi, ON the coffee shop WiFi...... Blocking Scripts... Not blocking Scripts,... Cookies ON/Off..... ---------------- Let me know if you need any more Info. I know this must sound vary strange.... Or not ? is this a known problem? Is something crazy going on like the NSA attacking it and the 8 page version is some Backup of the Thread that still works??? Na, na.. But really what is going On? I think there is a 9/10 chance I am a dumbass.... ------------------ I guess I am a dumbass. I seem to only have the problem in Firefox and Not in IE.

I too would like to see this project back on track. I don't have a lot of money to spend on this but maybe someone ells will jump in and pledge to pay the Dev some money for his/her time. I make a pledge to pay $10 a Bug-Fix/or new/or/improved Feature I will pay in what ever form you would like. (Max $60 For each 60 day period. New version must be posted on a public server for all to download for FREE) ( I am easily excited so I may just pay you the $60 even if you only fix a couple cool things) You can contact me at >> CodeBounty@gmail.com ---------------------------------- Things I would really like to see fixed. ->Key-logger >to> email (Fix this for XP and Take all $60 and doesn't count toward the 60day Budget) ->Get working on windows 7 - or vista. ->Troublesome payloads that get caught by AV... Change the signature of the code.