Malunga nomyalelo weping
Ngomgaqo we-ICMP, oko kukuthi, umyalelo odumile ping Singazi ukuba ikhompyuter ethile iyaphila kwinethiwekhi, ukuba sinemizila, ndihamba kuyo ngaphandle kwengxaki.
Ukuza kuthi ga ngoku kubonakala kuluncedo kwaye, nangona kunjalo zininzi izixhobo ezilungileyo okanye usetyenziso, inokusetyenziselwa iinjongo eziyingozi, umzekelo i-DDoS eneping, enokuthi iguqulele kwizicelo eziyi-100.000 ngeping ngomzuzu okanye ngomzuzwana, ezinokuphazamisa ukuphela kwekhompyuter okanye uthungelwano lwethu.
Yiba njalo, ngamanye amaxesha sifuna ukuba ikhompyuter yethu ingaphenduli kwizicelo zabanye kwinethiwekhi, oko kukuthi, ibonakale ingadibananga, kuba oku kufuneka sikhubaze impendulo yomgaqo-nkqubo we-ICMP kwinkqubo yethu.
Uqinisekisa njani ukuba siyenzile inketho yokuphendula kwe-ping
Kukho ifayile kwinkqubo yethu esivumela ukuba sichaze ngendlela elula kakhulu, ukuba sikwazi ukwenza impendulo ye-ping okanye hayi, yile: / proc / sys / net / ipv4 / icmp_echo_ignore_all
Ukuba le fayile iqulethe i-0 (zero), ke nabani na osikhethayo uya kufumana impendulo ngalo lonke ixesha ikhompyuter yethu ikwi-intanethi, nangona kunjalo, ukuba sibeka 1 (enye) ayikhathali ukuba iPC yethu ixhunyiwe okanye akunjalo, iya kuthi kubonakala kungenjalo.
Oko kukuthi, ngalo myalelo ulandelayo siya kuyilungisa loo fayile:
sudo nano /proc/sys/net/ipv4/icmp_echo_ignore_all
Sitshintsha ifayile ye- 0 ngenxa 1 kwaye sicinezela [Ctrl] + [O] ukugcina, emva koko [Ctrl] + [X] ukuphuma.
Ilungile, ikhompyuter yethu ayiphenduli kwi-ping yabanye.
Ezinye iindlela zokuzikhusela kuhlaselo lweping
Enye into ngokucacileyo isebenzisa i-firewall, usebenzisa iptables inokwenziwa ngaphandle kwengxaki enkulu:
sudo iptables -A INPUT -p icmp -j DROP
Emva koko khumbula, imigaqo ye-iptables iyacocwa xa ikhompyuter iqala kwakhona, kufuneka ngendlela ethile sigcine utshintsho, nokuba kungokugcina iptables kunye nokubuyisela iptables, kunye nokwenza iskripthi ngokwethu.
Kwaye ibiyiyo 🙂
Igalelo elihle. Ndixelele, ngaba iya kunceda ukuthintela izicelo zokunqunyulwa ??? njengaxa bafuna ukuqhekeza inethiwekhi besebenzisa i-aircrack-ng. Nditsho kuba ukuba ngokucacileyo sikhutshiwe abanakukwazi ukusithumela izicelo ezinjalo. Enkosi ngegalelo
Ayisebenzi ngale ndlela, oku kuthintela impendulo ye-icmp echo, ke ukuba umntu ufuna ukuvavanya unxibelelwano kunye ne-icmp echo cela ikhompyuter yakho iya kwenza icmp echo ingakhathaleli kwaye ke umntu ozama ukuvavanya unxibelelwano uya kufumana Uhlobo lwempendulo "umamkeli ubonakala ngathi uphantsi okanye uvimba i-ping probes", kodwa ukuba umntu ujonga uthungelwano nge-airodump okanye esinye isixhobo esifanayo, baya kuba nakho ukubona ukuba uqhagamshelwe kuba ezi zixhobo zihlalutya iipakethi ezithunyelwe kwi AP okanye ifunyenwe kwi-AP
Kufuneka iqatshelwe ukuba yeyokwexeshana, emva kokuqalisa kwakhona i-pc yakho iya kuphinda ifumane ipings kwakhona, ukuyishiya isigxina, ngokubhekisele kubuqhinga bokuqala bokumisela ifayile /etc/sysctl.conf kwaye ekugqibeleni yongeza net.ipv4.icmp_echo_ignore_all = 1 kwaye ngentlonipho Icebiso lesibini liyafana kodwa ngaphezulu "Kude" (Gcina i-Iptable Conf, yenza iscript esibonakalayo esiqhubayo xa inkqubo iqala, nezinto)
Mholweni. Ngaba ikhona into engalunganga? okanye inokuba yintoni? kuba kubuntu akukho fayile enjalo ......
Kwakungenasiphako njengesiqhelo.
Ukuqwalaselwa okuncinci, xa kuvalwa i-nano ayikhawulezi Ctrl + X kwaye emva koko uphume ngo-Y okanye ngo-S
Iimbeko
Ingcebiso egqwesileyo, @KZKG, ndisebenzisa icebo elifanayo phakathi kwamanye amaninzi ukuphucula ukhuseleko lwePC yam kunye neeseva ezimbini endisebenza nazo, kodwa ukuthintela umthetho we-iptables, ndisebenzisa sysctl kunye noqwalaselo lwayo lwefolda / njl / sysctl. d / nefayile endincamathisela kuyo imiyalelo eyimfuneko ukuze ukuqala kwakhona kulayishwe kunye neebhutsi zenkqubo yam ngawo onke amaxabiso asele elungisiwe.
Kwimeko yokusebenzisa le ndlela, yenza nje ifayile XX-local.conf (XX inokuba linani ukusuka ku-1 kuye ku-99, ndinayo ngo-50) kwaye ubhale:
net.ipv4.icmp_echo_ignore_all = 1
Sele kunjalo banesiphumo esifanayo.
Isisombululo esilula, enkosi
Yeyiphi eminye imiyalelo onayo kule fayile?
Nawuphi na umthetho onento yokwenza nezinto eziguquguqukayo ze-sysctl kwaye unokusetyenziswa nge-sysctl unokusetyenziswa ngale ndlela.
Ukubona amaxabiso ahlukeneyo onokungena kuhlobo lwe-sysctl kwisiphelo sendlela -a
KuvulweSUSE khange ndikwazi ukuyihlela.
Ku lungile
Enye indlela ekhawulezayo kukusebenzisa i-sysctl
#sysctl -w net.ipv4.icmp_echo_ignore_all = 1
Njengoko bekutshiwo, kwi-IPTABLES ungasala isicelo se-ping sayo yonke into ngo:
iptables -Igalelo -p icmp -j DROP
Ngoku, ukuba sifuna ukwala nasiphi na isicelo ngaphandle kwesicelo esithile, singasenza ngolu hlobo lulandelayo:
Sazisa izinto eziguquguqukayo:
IFEXT = 192.168.16.1 #i IP yam
IPHEPHA ELIGUNYAZISIWEYO = 192.168.16.5
iptables -I-INPUT -i $ IFEXT -s $ IPHEPHILEYO IP -p icmp -m icmp –icmp-uhlobo echo-sicelo -m ubude-ubude-28: 1322 -m umda -limisa 2 / umzuzwana -ukuqhekeka -4 -j YAMKELA
Ngale ndlela sigunyazisa kuphela ukuba i-IP isonge i-PC yethu (kodwa ngemida).
Ndiyathemba ukuba iluncedo kuwe.
Salu2
Wow, umahluko phakathi kwabasebenzisi, ngelixa iiwindowseros zithetha ngendlela yokudlala i-halo okanye ububi ngaphakathi kweLinux obudinisa umhlaba ngezinto ezinje.
Kungenxa yoko le nto iiWindowseros zazi kuphela indlela yokudlala, ngelixa iLinuxeros ingabo abakwaziyo ngokwenene ulawulo oluphambili lwe-OS, iinethiwekhi, njl.
Enkosi ngokusindwendwela 😀
Coordiales Ndiyabulisa
Umxholo uluncedo kakhulu kwaye unceda kwinqanaba elithile.
Enkosi kuwe.
xa iifestile zikufumanisa malunga noku uza kubona ukuba ziyaphambana
kwii-iptables ekufuneka ubeke ip kwi-IMPUT kunye nenye into kwi-DROP?