Re: Ping a mac address

[Cedric Blancher <blancher () cartel-securite fr>]

Le dimanche 04 décembre 2005 à 10:39 -0800, Thor (Hammer of God) a
écrit :
> All packets are not automatically dropped if the IP doesn't match the
> bound IP -- -- that's what the MAC is for in the first place.

At least they should, unless the device is a router, in what case
packets get routed.
I don't get your point about the MAC address being for "in the first
place"... MAC addresses are for ensure L2 connectivity. L3 is only
relying on L3 addressing, i.e. IP, whatever L2 you're using. If you use
the wrong IP address, then the device has wether to drop or route the
packet. Period.

Speaking of unicast IP addresses, of course...

> For instance, I have a few IP cameras around my infrastructure... If 
> I add a static ARP entry for the MAC to some arbitrary IP (that's still on 
> my subnet) I can use that arbitrary IP to access the unit's HTTP 
> configuration... works just fine.

You're lucky to be facing theses non RFC compliant devices :)))


-- 
http://sid.rstack.org/
PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
> > Hi! I'm your friendly neighbourhood signature virus.
> > Copy me to your signature file and help me spread!

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------