![]() ![]() Now that I have my victim device safely on an isolated network, with outbound access to the Internet, I need to forward ports from the Internet to the victim machine. But, I can still log into the gateway device from my local network. Logging into the test machine I can confirm that I can ping my local subnet before this firewall rule, but not after. Note that I use the -I directive here, to insert the dropping rule before the forwarding rules configured above. Therefore, the rule needs to be placed on the eth0 interface, and not generically in the stack or on the usbnet0 interface. However, this rule needs to be done so that I can still reach the router/firewall machine from my subnet. Therefore, I need to add a firewall rule that prevents them from accessing my own subnet. I want my isolated devices to get to the Internet, but I don't want them to be able to access my internal network.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |