[TriLUG] spoofing mac addresses
Jon Carnes
jonc at nc.rr.com
Thu Aug 12 10:26:11 EDT 2004
On Thu, 2004-08-12 at 09:57, Reginald Reed wrote:
> Another way to do this is for your code to "be the IP stack" bypassing
> the kernel IP stack altogether. Using libnet and libpcap, you
> basically roll your own packets to send and anything received, you
> filter based on what you're looking for (combo of IP address and
> destination MAC, etc) and process accordingly. This is pretty easy
> for UDP, TCP adds a few challenges. My team his written several
> internal tools that use this method to scale traffic generation and
> network simulation stuff using Python (with wrapped libnet and libpcap
> functions).
>
> --Reggie
Interesting... This would give you the ability to write a Voice Proxy
Firewall for dealing with phones behind NAT'ed firewalls. The current
price for such software is $4k to $12k.
It would be great to see an open source version of one of these (or a
cheaper version that ran on Linux).
Jon Carnes
More information about the TriLUG
mailing list