Re: Getting "ICMP Host redirect from gateway" response

Am Wed, 30 May 2007 20:10:00 -0500 schrieb Moe Trin:

Yes, I missed the .253 vs .254 - you are correct about a redirect here.
The "Network unreachable" will be generated by the first host that
realizes that's an RFC3330 address. Why do you think that ALL hosts
would receive and act on the redirect? The error is a unicast message,
not a broadcast.

Yes, didn't wrote that they would get a broadcast message, did I?
The answer receives the host which sent the icmp echo reply, but hte
redirect comes only to those hosts which are in the same network
(192.168.0.0/24 that means .1 to 254)
If you take a host which is outside of that network you won't get a
redirect, because here it doesn't matter who is the router as far he has
access to the other network.
e.g. .253 has a second interface (or vlan) and now the ip 10.10.10.1 ping
192.168.0.1 then he will not get a redirect.
Maybe I wrote a little confusing, english isn't my native language sorry
for that.

No, I said Denial Of Service, and I meant it. This has been used by windoze
hax0r kiddiez since they discovered networking in 1995/6 to knock their
"friends" off the Internet for some period of time (in the case of win95,
until it blue screened, and the kid had to reboot).
No you are wrong, they use packet fragmentation, if your icmp packet size
to big then it'll be fragmented, the made the packetsize so that the
packet after reassembling has had a size larger than 65535 and that was
the reason that the kernel couldn't handle and the bluescreen appeared.
Even Linunx and BSD had the problem but they fixed it in one night and
after patching the kernel all was fine.
M$ did that very late and so came lot's of messages about that thing, the
icmp redirect should be have the same size every time.
cya
.

Relevant Pages

  • IP address!
    ... Host 138.128.2.4 on network 138.128.2.0/24 wants to send a packet to ... · Host 138.128.2.4 has just booted and has not sent or received any ... List all the steps that are needed to send the packet. ...
    (comp.unix.large)
  • Re: IP address!
    ... Host 138.128.2.4 on network 138.128.2.0/24 wants to send a packet to ... Router 138.128.2.1has a direct link to 138.128.129.1, ... List all the steps that are needed to send the packet. ...
    (comp.unix.large)
  • RE: Cracking Servers W/O open ports: Packet Filter Firewall
    ... From my current knowledge with network sniffing and host scanning, ... Even if the host drops the packet (look at it, if the host does not want it ... But to crack something without open ports would be very complex, ...
    (Security-Basics)
  • ipnat weird problem
    ... NAT to translate my network addresses to the one of lupus for traffic ... TCP from lupus into B works, but TCP from any other host in A into B ... on B shows that packet arriving but no response packet is triggered. ...
    (comp.unix.solaris)
  • Re: 2 pc network - cant see host files from pc 2 on pc 1
    ... If the second card is lost on HOST PC then DSL Internet does not connect. ... Ditch the second network card in the one ...
    (microsoft.public.windowsxp.security_admin)