2. Tech
  3. FPIPE usage

FPIPE usage

xiaoxiao2021-03-06  109

FPIPE usage

I often ask me "how to enter the intranet", how to answer it, telling up is a sentence "breaking the gateway, using port redirection into the intranet". " The first choice will break through the gateway, which is easy to understand. Because an intranet wants to access the Internet always pass through the gateway, as for how to break through the gateway, this is nothing wrong with the server that is not a gateway, and he doesn't say it. After breaking through the gateway, our goal is 192.168.21.75 through the gateway. The later method is to redirect the gateway force port, establish a package forward. Port redirection is divided into two types (local and transote), but we have to induce the intranet, obviously cannot use the redirection of local way, the redirection of local mode is mainly used to bypass firewall (I will write one after this issue) Article article discusses how to reflate the firewall with a port redirection.

First, the port redirection is established using the FPIPE. Fpipe is a very interesting stuff. To demonstrate the FPIPE port redirection function, let's do this test. First run the fpipe on your own machine, as follows:

E: / TOOL / FPIP> FPIPE -L 80-S 90 -R 80 202.98.177.162 Fpipe V2.1 - TCP / UDP Port Redirector. CopyRight 2000 (C) by Foundstone, Inc. http://www.foundstone.com

// Explanation This command fpipe -l 80 -s 90 -r 80 202.98.177.162 will be connected to the 80-port connection through the 90-port of the 80-port. Take a detailed grammar: fpipe [-hv?] Ip -? / - h - shows this help text -c - maximum number of allowed Simultaneous Connections. Default IS 32 # The maximum number of connections, the default is 32 -L - Listening Port Number # To listen to the TCP port number - R - Remote TCP port number # 要 定 i 主 主 端 端-- S - Outbound connection source port number # From which port is redirected from the redirection information -V - Verbose Mode # Detailed Show Process

During the above, we have established port redirections on their own machine: connect the connection to the 80 port connected to the 202.98.177.162 80 port and then enter: http://127.0 .0.1, the result found that the webpage of the Kunming High-tech Zone is hit, which shows that our redirection is successful. At this point, FPIPE is actually as follows: Pipe Connected: in: 127.0.0.1:2092 -> 127.0.0.1:80 Out: 192.168.168.112:92 -> 202.98.177.162:80

From the above output, it can be seen that the path passed by the data package (192.168.168.112 is my IP) After success, the following things I don't say everyone know, copy the fpipe to our control gateway, perform the redirection : Fpipe -l 81 -s 91-r 21 192.168.21.75 # executed in the gateway (202.98. *. *), Data to the 81 port of 202.98. *. * Via the 91-port 21 ports from 192.168.21.75. Similarly: Fpipe -l 82-S 92 -R 23 192.168.21.75 # The data of 202.98. *. * 82 port is forwarded to 192.168.21.75 23-port FPIPE -L 83 -S 93 -R 80 192.168.21.75 # 53 ports of 202.98. *. * 80-port FPIPE -L 84 -S 94 -R 139 192.168.21.75 # of 192.168.21.75 # will be 202.98. *. * The port data is forwarded to the 139 port of 192.168.21.75 through the 94-port. If you are in this machine Telnet to 202.98. *. * 81 is equivalent to 211.21.75 21, no Ah! 192.168.21.75 21 should be ftp to go (haha), then go to FTP202.98. *. * 81 port!

Write here, I can't help but call "Real cow ...............................

Second, use RINETD to establish redirection. The method is the same as above. Runtered RINETEDs on the gateway, but to establish a configuration file (file name and extension here, I will use the configuration file as conf.ini to say) the following configuration file (where * does not Convenient, don't find this! He means to 202.98. *. * 90 package to 192.168.21.75 80) 202.98. *. * 90 192.168.21.75 80 to save him as conf.ini file Then to the RINETED to the gateway (202.98. *. *), Then execute RINETD-C conf.ini on the gateway and then you connect to 202.98. *. * 90 and connected to 192.168-.21.75 80 effect is the same .

By the way, the syntax of the RINETD configuration file is Bindaddress Bindport ConnectDress Connectport

Written behind: fpipe and rineted are two tools for the cow, usually I use these two tools to break through the firewall, and I will take the questions. What, these two little things are downloaded there (don't be lazy, find it yourself): http://www.boutell.com/rinetd/ http://www.foundstone.com

转载请注明原文地址:https://www.9cbs.com/read-99483.html

9cbs

New Post(0)