[ale] OT: ICMP Tunnel

Drag0n dragon at atlantacon.org
Sun Jun 15 20:21:05 EDT 2003


One thing you may be overlooking is how they are redirecting you to
their web page. If its a proxy, then your tunnel may work, but if they
are just hijacking all communications and pointing it at their
authentication server, then icmp will be redirected as well. How certain
are you that the server you were pinging was the site you were
attempting to reach? Any net admin with enough knowledge can make a
firewall forward icmp to another source as well. 


Drag0n
dragon at atlantacon.org

On Sun, 2003-06-15 at 16:21, Christopher Fowler wrote:
> On my trp to IL and MN, I ran into 2 instances of attempting to
> get fast internet access.  In both instances, I could ping a remote
> host but could do nothing else.  When I would fire up a browser, I
> would be directed to a page prompting me to pay X amount of dollars
> for short term access.  So I had a thought of building a tunnel that
> would create a VPN back to a host running a server for that tunnel.
> 
> The idea is to use the data portion of the ICMP packet to store 
> a packet header plus data that should be redirected to a pppd 
> server running on both the client and the server.  Since ping was
> successful between the networks, This woul make it possible to 
> do a network tunnel using ICMP as the transport.  The only
> problem is that ICMP is not a reliable protocol so all the
> reliability will have to be built into the client and the
> server.  It will be a tad slower than paying the fee but far
> cheaper. 
> 
> Any ideas?
> 
> Chris
> 
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
> 

_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale





More information about the Ale mailing list