not sure why you are having the issue. You already stated that you can run netcat -l on port 7070. If that works, you should be able to create a listening port on 7070 with Java as well...
2010/6/19 나성수 <doovoo0...@gmail.com> > > > My Capture-HPC System is following this. > > ------------------------------------------------------ > > *Capture Server is* > > - *windows xp sp2 (IIS 5.1 installed) * > > - *capture-server-2.5.1-389-withLinuxRevert*** > > - *vmware 1.0.6* > > - *Java JRE 1.6.0*** > > * * > > *Capture Client is * > > - *windows xp sp2* > > - *capture-client-2.5.1-389* > > - *Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022* > > ------------------------------------------------------ > > > > > > This is Capture-server(Host) ipconfig infomation from cmd.exe > > ====================================== > > Windows IP Configuration > > > > Ethernet adapter VMware Network Adapter VMnet8: > > > > Connection-specific DNS Suffix . : > > IP Address. . . . . . . . . . . . : 192.168.0.1 > > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > > Default Gateway . . . . . . . . . : > > > > Ethernet adapter VMware Network Adapter VMnet1: > > > > Connection-specific DNS Suffix . : > > IP Address. . . . . . . . . . . . : 192.168.46.1 > > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > > Default Gateway . . . . . . . . . : > > > > Ethernet adapter 로컬 영역 연결: > > > > Connection-specific DNS Suffix . : > > IP Address. . . . . . . . . . . . : 220.70.1.59 > > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > > Default Gateway . . . . . . . . . : 220.70.1.254 > > ====================================== > > > > > > This is Guest OS(Client) ipconfig infomation from cmd.exe > > ====================================== > > Windows IP Configuration > > > > Ethernet adapter 로컬 영역 연결: > > > > Connection-specific DNS Suffix . : > > IP Address. . . . . . . . . . . . : 192.168.80.138 > > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > > Default Gateway . . . . . . . . . : 192.168.80.2 > > ====================================== > > > > Above guess os ip setting is used to share the host's IP address -> > VMnet8(NAT) setting > > > > > > When I run capture-server(java command), I have a problem following this... > > > ---------------------------------------------------------------------------------------------- > > >java -Djava.net.preferIPv4Stack=true -jar CaptureServer.jar -s > 192.168.46.1:7070 -f input_urls_example.txt > > PROJECT: Capture-HPC > > VERSION: 2.5 > > DATE: Apr 25, 2008 > > COPYRIGHT HOLDER: Victoria University of Wellington, NZ > > AUTHORS: > > Christian Seifert (christian.seif...@gmail.com) > > Ramon Steenson(ramon.steen...@gmail.com) > > > > Capture-HPC is free software; you can redistribute it and/or modify > > it under the terms of the GNU General Public License, V2 as published by > > the Free Software Foundation. > > > > Capture-HPC is distributed in the hope that it will be useful, > > but WITHOUT ANY WARRANTY; without even the implied warranty of > > MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the > > GNU General Public License for more details. > > > > You should have received a copy of the GNU General Public License > > along with Capture-HPC; if not, write to the Free Software > > Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301,USA > > > > > > Option added: server-listen-port => 7070 > > Option added: server-listen-address => 192.168.46.1 > > Option added: input_urls => input_urls_example.txt > > *CaptureServer: exception - java.net.BindException: Address already in > use: JVM_Bind* > > *java.net.BindException: Address already in use: JVM_Bind* > > * at java.net.PlainSocketImpl.socketBind(Native Method)* > > * at java.net.PlainSocketImpl.bind(Unknown Source)* > > * at java.net.ServerSocket.bind(Unknown Source)* > > * at java.net.ServerSocket.<init>(Unknown Source)* > > * at capture.ClientsController.run(ClientsController.java:39)* > > * at java.lang.Thread.run(Unknown Source)* > > Validating config.xml ... > > config.xml successfully validated > > Option added: capture-network-packets-benign => false > > Option added: capture-network-packets-malicious => true > > Option added: client-default => iexplorebulk > > Option added: client-default-visit-time => 20 > > Option added: client_inactivity_timeout => 60 > > Option added: collect-modified-files => true > > Option added: different_vm_revert_delay => 24 > > Option added: group_size => 20 > > Option added: revert_timeout => 120 > > Option added: same_vm_revert_delay => 6 > > Option added: send-exclusion-lists => false > > Option added: terminate => true > > Option added: vm_stalled_after_revert_timeout => 120 > > Option added: vm_stalled_during_operation_timeout => 300 > > ExclusionList: file - FileMonitor.exl: File not found > > ExclusionList: process - ProcessMonitor.exl: File not found > > ExclusionList: registry - RegistryMonitor.exl: File not found > > [192.168.46.1:902] VM added > > [6월 19, 2010 7:44:16 오후-192.168.46.1:902-4669910] VMSetState: > WAITING_TO_BE_REVERTED > > PARSING PREPROCESSOR > > n is null > > Waiting for input URLs... > > [6월 19, 2010 7:44:18 오후-192.168.46.1:902-4669910] VMSetState: REVERTING > > *[6**월 19, 2010 7:44:19 오후 192.168.46.1:902-4669910] VMware error > -1073741515* > > [6월 19, 2010 7:44:19 오후-192.168.46.1:902-4669910] VMSetState: ERROR > > Reverting different VM...waiting considerably > > [6월 19, 2010 7:44:43 오후-192.168.46.1:902-4669910] Finished processing VM > item: revert > > Waiting for input URLs... > > [6월 19, 2010 7:46:19 오후-192.168.46.1:902-4669910] VM stalled, reverting VM > > [6월 19, 2010 7:46:26 오후-192.168.46.1:902-4669910] VMSetState: > WAITING_TO_BE_REVERTED > > [6월 19, 2010 7:46:28 오후-192.168.46.1:902-4669910] VMSetState: REVERTING > > [6월 19, 2010 7:46:29 오후 192.168.46.1:902-4669910] VMware error -1073741515 > > [6월 19, 2010 7:46:29 오후-192.168.46.1:902-4669910] VMSetState: ERROR > > Reverting same VM...just waiting a bit > > [6월 19, 2010 7:46:35 오후-192.168.46.1:902-4669910] Finished processing VM > item: revert > > .... > > > ---------------------------------------------------------------------------------------------- > > (above message, I think it is not correct...) > > > > > > This is my config.xml of capture-server(host) > > ============================================================ > > <config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; > > xsi:noNamespaceSchemaLocation="config.xsd"> > > <!-- version 2.5 --> > > > > <global collect-modified-files="true" > > client-default="iexplorebulk" > > client-default-visit-time="20" > > capture-network-packets-malicious="true" > > capture-network-packets-benign="false" > > send-exclusion-lists="false" > > terminate="true" > > group_size="20" > > vm_stalled_after_revert_timeout="120" > > revert_timeout="120" > > client_inactivity_timeout="60" > > vm_stalled_during_operation_timeout="300" > > same_vm_revert_delay="6" > > different_vm_revert_delay="24" > > /> > > > > <exclusion-list monitor="file" file="FileMonitor.exl" /> > > <exclusion-list monitor="process" file="ProcessMonitor.exl" /> > > <exclusion-list monitor="registry" file="RegistryMonitor.exl" /> > > > > <virtual-machine-server type="vmware-server" address=" > *192.168.46.1*" port="902" username="doovoo" password="doovoo0706"> > > <virtual-machine vm-path="D:\download\Virtual > Machines\Windows XP Professional.vmx" > > > client-path="C:\Progra~1\capture\CaptureClient.bat" > > > username="vmware_winXP" > > > password="doovoo0706"/> > > </virtual-machine-server> > > </config> > > ============================================================ > > > > > > *I think that capture server's running message is not correct.* > > *I don't know that what problem it is in my capture setting.* > > *Can you help me? I don't have so much time.. **L*** > > *I'll wait for your reply... **J*** > > * * > > *Thanks! * > > *From Doovoo,* > > > > > -- ---- Web: http://www.ecs.vuw.ac.nz/Main/GradChristianSeifert PGP key http://homepages.ecs.vuw.ac.nz/~cseifert/pgpkey.txt Primary key fingerprint: E979 0D9A 9187 D821 F86F B712 C8DB 0583 B046 BAEF
_______________________________________________ Capture-HPC mailing list Capture-HPC@public.honeynet.org https://public.honeynet.org/mailman/listinfo/capture-hpc
