is a multipurpose sniffer/interceptor/logger for switched LAN.
| etter.conf.v6 (ettercap-0.8.3) | : | etter.conf.v6 (ettercap-0.8.3.1) |
|---|
| | |
| skipping to change at line 178 | | skipping to change at line 178 |
|---|
| # note that the cleanup script is executed without enough privileges (because | | # note that the cleanup script is executed without enough privileges (because |
| # they are dropped on startup). so you have to either: provide a setuid program | | # they are dropped on startup). so you have to either: provide a setuid program |
| # or set the ec_uid to 0, in order to be sure the cleanup script will be | | # or set the ec_uid to 0, in order to be sure the cleanup script will be |
| # executed properly | | # executed properly |
| # NOTE: the script must fit into one line with a maximum of 255 characters | | # NOTE: the script must fit into one line with a maximum of 255 characters |
| | |
| #--------------- | | #--------------- |
| # Linux | | # Linux |
| #--------------- | | #--------------- |
| | |
|
| # if you use ipchains: | | #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp -d %desti |
| #redir_command_on = "ipchains -A input -i %iface -p tcp -s %source -d %destin | | nation --dport %port -j REDIRECT --to-port %rport" |
| ation %port -j REDIRECT %rport" | | #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp -d %dest |
| #redir_command_off = "ipchains -D input -i %iface -p tcp -s %source -d %desti | | ination --dport %port -j REDIRECT --to-port %rport" |
| nation %port -j REDIRECT %rport" | | |
| | |
| # if you use iptables: | | |
| #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp -s %sourc | | |
| e -d %destination --dport %port -j REDIRECT --to-port %rport" | | |
| #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp -s %sour | | |
| ce -d %destination --dport %port -j REDIRECT --to-port %rport" | | |
| | |
| # pendant for IPv6 - Note that you need iptables v1.4.16 or newer to use IPv6 re
direct | | # pendant for IPv6 - Note that you need iptables v1.4.16 or newer to use IPv6 re
direct |
|
| #redir6_command_on = "ip6tables -t nat -A PREROUTING -i %iface -p tcp -s %sou | | #redir6_command_on = "ip6tables -t nat -A PREROUTING -i %iface -p tcp -d %des |
| rce -d %destination --dport %port -j REDIRECT --to-port %rport" | | tination --dport %port -j REDIRECT --to-port %rport" |
| #redir6_command_off = "ip6tables -t nat -D PREROUTING -i %iface -p tcp -s %so | | #redir6_command_off = "ip6tables -t nat -D PREROUTING -i %iface -p tcp -d %de |
| urce -d %destination --dport %port -j REDIRECT --to-port %rport" | | stination --dport %port -j REDIRECT --to-port %rport" |
| | |
| #--------------- | | #--------------- |
| # Mac Os X | | # Mac Os X |
| #--------------- | | #--------------- |
| | |
|
| # if you use ipfw: | | #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet p |
| #redir_command_on = "ipfw -q add set %set fwd 127.0.0.1,%rport tcp from %sour | | roto tcp from any to %destination port %port -> localhost port %rport') | pfctl |
| ce to %destination %port in via %iface" | | -f - 2> /dev/null" |
| #redir_command_off = "ipfw -q delete set %set" | | #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %des |
| | tination port = %port' | pfctl -f - 2> /dev/null" |
| # if you use BSD PF: | | |
| #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet p | | |
| roto tcp from %source to %destination port %port -> localhost port %rport') | pf | | |
| ctl -f - 2> /dev/null" | | |
| #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ %source to | | |
| %destination port = %port' | pfctl -f - 2> /dev/null" | | |
| | |
| # BSD PF for IPv6: | | # BSD PF for IPv6: |
|
| #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 | | #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 |
| proto tcp from %source to %destination port %port -> localhost port %rport') | | | proto tcp from any to %destination port %port -> localhost port %rport') | pfct |
| pfctl -f - 2> /dev/null" | | l -f - 2> /dev/null" |
| #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ %source t | | #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ any to %d |
| o %destination port = %port' | pfctl -f - 2> /dev/null" | | estination port = %port' | pfctl -f - 2> /dev/null" |
| | |
| #--------------- | | #--------------- |
| # FreeBSD | | # FreeBSD |
| #--------------- | | #--------------- |
| | |
| # Before PF can be used, make sure the kernel module has been loaded by | | # Before PF can be used, make sure the kernel module has been loaded by |
| # `kldstat | grep pf.ko`. If the rusult is empty, you can load it by | | # `kldstat | grep pf.ko`. If the rusult is empty, you can load it by |
| # `kldload pf.ko` or add 'pf_enable="YES"' to the /etc/rc.conf and reboot. | | # `kldload pf.ko` or add 'pf_enable="YES"' to the /etc/rc.conf and reboot. |
| | |
| # Check if the PF status is enabled by | | # Check if the PF status is enabled by |
| # `pfctl -si | grep Status | awk '{print $2;}'`. If "Disabled", enable it with | | # `pfctl -si | grep Status | awk '{print $2;}'`. If "Disabled", enable it with |
| # `pfctl -e`. | | # `pfctl -e`. |
| | |
|
| #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet p | | #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet p |
| roto tcp from %source to %destination port %port -> localhost port %rport') | pf | | roto tcp from any to %destination port %port -> localhost port %rport') | pfctl |
| ctl -f - 2> /dev/null" | | -f - 2> /dev/null" |
| #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ %source to | | #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %des |
| %destination port = %port' | pfctl -f - 2> /dev/null" | | tination port = %port' | pfctl -f - 2> /dev/null" |
| | |
| # pendant for IPv6 | | # pendant for IPv6 |
|
| #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 | | #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 |
| proto tcp from %source to %destination port %port -> localhost port %rport') | | | proto tcp from any to %destination port %port -> localhost port %rport') | pfct |
| pfctl -f - 2> /dev/null" | | l -f - 2> /dev/null" |
| #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ %source t | | #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ any to %d |
| o %destination port = %port' | pfctl -f - 2> /dev/null" | | estination port = %port' | pfctl -f - 2> /dev/null" |
| | |
| #--------------- | | #--------------- |
| # Open BSD | | # Open BSD |
| #--------------- | | #--------------- |
| | |
| # unfortunately the pfctl command does not accepts direct rules adding | | # unfortunately the pfctl command does not accepts direct rules adding |
| # you have to use a script which executed the following command: | | # you have to use a script which executed the following command: |
| | |
| # ----- cut here ------- | | # ----- cut here ------- |
| # #!/bin/sh | | # #!/bin/sh |
| | | |
| End of changes. 6 change blocks. |
|---|
| 41 lines changed or deleted | | 28 lines changed or added |
|---|
"Fossies" - the Fresh Open Source Software Archive 