[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: [Full-Disclosure] Zonet ZSR1104WE Router problem
From: "J Wachtel" <jwachtel () homelogic ! com>
Date: 2004-04-29 13:39:50
Message-ID: 001901c42def$723535e0$ca00a8c0 () HOMELOGIC
[Download RAW message or body]
Zonet ZSR1104WE
Router does not report inbound connections with their WAN ip address.
All inbound connections are posted as the routers LAN address.
This issue is a simple one. The ZSR1104WE router with the listed
firmware / hardware will not report an inbound TCP/IP connections WAN
address. We host a service that uses port 443 @ 192.168.1.2 that is
forwarded through the routers NAT firewall. Lets say an inbound
connection from 24.156.189.3 establishes a socket connection to the
service on port 443. Our services IP logging tool and Windows XPPro SP1
netstat command line utility will not report the WAN address of this
connection. Instead the LAN IP address of the router will be reported
as the inbound connections address. It is analogous to NAT in reverse.
All inbound connections are masked as the router's LAN IP address. Our
service and some other tools discriminate security rights depending on
whether the connection is from the WAN or LAN, this behavior makes that
impossible. The connection will behave normally. However I speculate
that it is using the MAC address to get the routing correct. I have
contacted their support to inform them of this error and their response
is to not fix it as it does not break the connection.
-Jason Wachtel
Zonet ZSR1104WE
Hardware Version Rev. A
Boot Code Version 1.0
Runtime Code Version 2.41
[Attachment #3 (text/html)]
<html>
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 10 (filtered)">
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{font-family:Arial;
color:windowtext;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Zonet ZSR1104WE</span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Router does not report inbound connections with their WAN ip
address. All inbound connections are posted as the routers LAN address.</span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>This issue is a simple one. The ZSR1104WE router with the
listed firmware / hardware will not report an inbound TCP/IP connections WAN
address. We host a service that uses port 443 @ 192.168.1.2 that is forwarded
through the routers NAT firewall. Lets say an inbound connection from
24.156.189.3 establishes a socket connection to the service on port 443. Our
services IP logging tool and Windows XPPro SP1 netstat command line utility
will not report the WAN address of this connection. Instead the LAN IP address
of the router will be reported as the inbound connections address. It is
analogous to NAT in reverse. All inbound connections are masked as the
router's LAN IP address. Our service and some other tools discriminate
security rights depending on whether the connection is from the WAN or LAN,
this behavior makes that impossible. The connection will behave normally.
However I speculate that it is using the MAC address to get the routing
correct. I have contacted their support to inform them of this error and their
response is to not fix it as it does not break the connection. </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>-Jason Wachtel</span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=MsoNormal><a name="OLE_LINK2"><font size=2 face=Arial><span
style='font-size:10.0pt;font-family:Arial'>Zonet ZSR1104WE</span></font></a></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Hardware Version Rev. A </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Boot Code Version 1.0 </span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Runtime Code Version 2.41</span></font></p>
</div>
</body>
</html>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic