MV2FNT Posted October 22, 2012 Share Posted October 22, 2012 Hi there sorry if this is a dumb questiion. i did the following. i made a network bridge on a linux box with 2 interfaces i have put this between the pineapple and my mainrouter. with the idea to externally DNSspoof things. i connected this to the WAN port of the pineapple. with no DNSspoof active every thing works. all traffic going to the bridge. with dnsspoof enabled i see the requests on the terminal but redirecting does not wrk. by mistake during trouble shooting i have put the bridge on the lan port of the pineapple. suddenly dnsspoofing is working. but i am getting my ip of the mainrouter not from the pineapple. if i look at my ipsettings of the client connecting to the pineapple i see my ip adress changing between 192.168.0.X and 172.16.42.x i guess to dhcp servers are fighting each other. but why does the more upstream win ? grt MV2FNT Quote Link to comment Share on other sites More sharing options...
potato Posted October 23, 2012 Share Posted October 23, 2012 Just use all static ip's or ideally stop one of the DHCP servers. Quote Link to comment Share on other sites More sharing options...
MV2FNT Posted October 23, 2012 Author Share Posted October 23, 2012 (edited) hm switch out both would give clients no ip right ?? i just don't get it on the linuxbox /mitm i do this ifconfig eth0 0.0.0.0 ifconfig eth1 0.0.0.0 brctl addbr mybridge brctl addif mybridge eth0 brctl addif mybridge eth1 ifconfig mybridge up ifconfig mybridge 192.168.0.123/24 on the pineapple i run the iptables script from the wiki iptables -A FORWARD -i eth1 -o wlan0 -s 172.16.42.0 -m state --state NEW -j ACCEPT iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE all clients have internet connection no problemo so far. then i start dnsspoof on the linux box dnsspoof -i mybridge -f hostfile contents of hostfile 192.168.0.101 *.* i see dnsspoof feedback reacting on a request twice ip-pineapple > 8.8.8.8:53 url ip-pineapple > iprouter:53 url when pinging on the client ping www.google.com cannot resolve google ping 8.8.8.8 all fine is the client confused because it is getting 2 reactions ? what am i missing here ??? is the work around to drop response of the mainrouter with iptables ? if so how ? Edited October 23, 2012 by MV2FNT Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.