Re: RH VirtualPC & Airport

["S. Ryan Quick" <ryan () phaedo com>]

-----BEGIN PGP SIGNED MESSAGE-----

On Mon, 24 Jul 2000, Matt Denton wrote:

> OK maybe I'm the only one on the planet to even attempt this setup so 
> I don't know how relevant this problem & solution will be, but here 
> goes:
>
> Using nmap under VirtualPC with Red Hat 6.1 on an iBook (you've 
> already stopped reading, right?) with Airport, the entire VirtualPC 
> program would lock up when the scan got to the OS detection phase. I 
> had VirtualPC set up to share the IP address of the laptop, thinking 
> that it would do multihoming as I believe it does when you use a 
> Windows HD image. Instead, it actually does MASQing (I checked the 
> route table) so it was really masking a private network behind the 
> already-masked network address given by the Airport base station. I 
> then set VirtualPC to use a unique IP and the problem cleared up.

I had some of the same issues using Debian and nmap from my laptop running the Wavelan Orinoco card through my
airport.  Problem cleared up a lot (and some of the other weird NATing problems as well) when I set the
airport to simply bridge to the ethernet and then relied on my main router/dhcp server for everything else.
It looked to me at the time like the nmap scans would quickly use all the ports available on the airport for
its PAT since it didn't seem to use the entire range from 1024:65535 -- instead it looked (according to SYN
connections on the machines I was testing anyway) that the range was more like 32768-40000 . . . 

Ryan



> BTW in the VirtualPC config you get to choose Airport as a networking 
> option if it's available, and with it selected RHLinux still thinks 
> it's using ethernet. So with ifup eth0 it grabs a unique IP address 
> from the base station and you're wirelessly networking like a dream. 
> Now when I'm working at home and get email notification my subnet's 
> been scanned I can fire up a Linux environment and scan the offending 
> host without missing a beat...

Yeah, the airport is killer . . .

> -------
>
> Matt Denton
> Network/IS Manager
> UCSF Radiology
> http://www.radiology.ucsf.edu/internal/compsupport/index.shtml
>
> "The above statements are my own, not those of the Regents of the 
> University of California. References to non-university products and 
> pointers to non-university web pages do not represent endorsement by 
> the Regents of the University of California." 
>
> --------------------------------------------------
> For help using this (nmap-hackers) mailing list, send a blank email to 
> nmap-hackers-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).

%                                                       %%%%%%%%%%
%%           S. Ryan Quick                               %%%%%%%%%
%%%           Principal Systems Engineer                  %%%%%%%%
%%%%           Systems Administration -- eBay              %%%%%%%
%%%%%                                                       %%%%%%
%%%%%%         www.phaedo.com/ryan/  ryan () phaedo com         %%%%%
%%%%%%%       ------------ PGP FingerPrint -------------      %%%%
%%%%%%%%  CF 19 6B BA 31 8E B8 8E  20 DF 4F 2B 2E 69 81 F5     %%%
%%%%%%%%%     ------------------------------------------        %%
%%%%%%%%%%                                                       %

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3a
Charset: noconv

iQCVAwUBOXx9pvUYDAQiV+tNAQGb2wP/dyV3s/fW1fda5XE8jRezfEw9kbOaP9PO
4j+OSs6ov6yrLxjLtronkm/Ry9KNjt/J+1JTWZ7oejSdy2UD9NGzmpA/9oxGLXg3
ckvmgIJjEH/6Atgogsl7mPoGX3Sxba870B6V2NlKfgwFtJwZmUxC/dDF2N6Gy9DF
kdmgghbLifc=
=/exo
-----END PGP SIGNATURE-----


--------------------------------------------------
For help using this (nmap-hackers) mailing list, send a blank email to 
nmap-hackers-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).