Hello ! Please help me to solve this problem: I try to ping from HoneyWall to honeypot but it is not accepted. I think my configuration got mistake but I don’t know where it is. Thanks you in advance.
I’m using HoneyWall 1.4 (newest) and VMWare 7.1.2 with: Vmnet0 : auto bridged Vmnet1 : Host Only with subnetmask 192.168.44.0 Here is my configuration of HoneyWall : Honeypot IP address : 192.168.44.130 The Honeynet network in CIDR : 192.168.44.0/24 The broadcast address for honeypots public IP addresses : 192.168.44.255 The IP address of the management interface : 192.168.1.66 The network mask of the management interface IP : 255.255.255.0 The default gateway for the management interface IP : 192.168.1.1 The IP addresses of DNS server that management interface will use : 192.168.1.1 Servers to which honeypots must have unlimited access : 192.168.1.1 Gateway IP address for destination IP address of sebek packets : 192.168.44.253 its default port : 1101 Then I add IP for each NIC: - eth0 : 192.168.1.100 - eth1 : 192.168.44.1 - eth2 : 192.168.1.66 accessible at https://192.168.1.66/ I use 1 honeypot with WindowXP ( I call it Pot1) and installed sebek client - NIC : Host Only 192.168.44.130 The rule for HoneyWall: #echo 1 > /proc/sys/net/ipv4/ip_forward #iptables –t nat –A PREROUTING –i eth1 –d 192.168.44.130 –j DNAT –-to-detination 192.168.1.104 #iptables -A FORWARD -i eth1 -j ACCEPT #iptables -A FORWARD -i eth0 -j ACCEPT When I ping: - From HostPC to Pot1 : OK - From Pot1 to eth1 ( HoneyWall) : OK (ping 192.168.44.1) - From HostPC to Pot1 : OK (ping 192.168.44.130) - From HoneyWall to Pot1: it’s not accepted! -- HEDSPI K52-IS3 Thiều Tuấn Anh Tel : 01696068694 - 0934443137 Skype : tuananhis3 Email : tuananh.hed...@gmail.com
_______________________________________________ Honeywall mailing list Honeywall@public.honeynet.org https://public.honeynet.org/mailman/listinfo/honeywall
