This may not apply, but on cisco you can set ACL's and have it logg them which in effect logs the packet info.
On Tuesday 19 February 2002 04:18 pm, Mat Pearsons wrote: > Kartik, > > You can get to the "command prompt" (kinda unix shell) with option number > 24 and then 8 (i think). I haven't found any way of getting anything like > packet sniffing out of it, however you can enable a syslog server, (again > through option 24) then the logging page, however this appears to only log > restarts/ criticals / authentication etc, not packet sniffing even when you > play with the levels (usual SNMP debug, critical etc.). I doubt that you > will find a way of doing it as netgear sell the FR314 - the same box with > stateful packet inspection and only a web front end. The FR314 is cool for > a real small operation (you need to add licences per ip address and only > the latest firmware allows you to exclude things like print servers). And > it e-mails the log files to a system admin, allthough the licences can gat > a bit pricey. We have just dumped one as the false positives were really > getting on my tits, we've moved up to a cisco2600 with ios firewall. > > Tip: Have a look at the filters, some of the older versions of the RT314 > ship with some wierd access lists (Filters in netgear speak) which block > anything useful. The newer ones have a sensible set of access lists, > inbound telnet, etc on the wan port, and port 137 on the lan port. You can > daisychain them as well, one of our customers has cobbled together a chain > of three of them to provide different small lans access to a DSL > connection. (they wont listen to good network design rules and buy the > correct device!). > > Hope this helps > > Regards > > Mat Pearsons > > -----Original Message----- > From: Kartik Trivedi [mailto:[EMAIL PROTECTED]] > Sent: 19 February 2002 18:16 > To: [EMAIL PROTECTED] > Subject: command execution on router > > > hi guys, > > A sort of newbie question. Any help will be apreciated. > > I split my cable modem connection at home between 3 PCS using a Netgear > RT314 gateway router. > From the manual, I understand that the router has some amount of RAM > (mostly 8MB) > > Now if i telnet to the router, all i get is a menu with 10 options. I can > choose any of them & they do the normal stuff like port forwarding, etc. > > Is their a way to get the prompt on the router. I mean what i may wanna try > is to maybe install a sniffer or something like that on the router. In > other words, can i execute any executable file on the router? > > Thanks in advance > kartik -- Chief Security Engineer | Daniel Fairchild [EMAIL PROTECTED] Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
