#288790 - 25/10/2006 00:11
Access point "feature"
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
There is some yahoo out there who has decided to brodcast "HTTP GET /" requests on a 5-10 min. cycle. 67.181.106.255 (a comcast address).
It seems my D-link DI-524 access point will "NOT" allow blocking of incoming traffic to port 80 from any address that ends with 255. Rats.
_________________________
Glenn
|
Top
|
|
|
|
#288791 - 25/10/2006 00:26
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 25/12/2000
Posts: 16706
Loc: Raleigh, NC US
|
Is 67.181.106.255 the source or destination IP?
_________________________
Bitt Faulk
|
Top
|
|
|
|
#288792 - 25/10/2006 00:35
Re: Access point "feature"
[Re: wfaulk]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
That is the source. according to my access log.
Edited by gbeer (25/10/2006 00:36)
_________________________
Glenn
|
Top
|
|
|
|
#288793 - 25/10/2006 01:32
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote: There is some yahoo out there who has decided to brodcast "HTTP GET /" requests on a 5-10 min. cycle. 67.181.106.255 (a comcast address).
It seems my D-link DI-524 access point will "NOT" allow blocking of incoming traffic to port 80 from any address that ends with 255. Rats.
Mmm.. maybe a bug in the "multicast" routing feature. Turn it off in the firmware setup and see if that helps.
Otherwise.. I love the DI-524 and am looking for another one..
|
Top
|
|
|
|
#288794 - 25/10/2006 12:45
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 30/04/2000
Posts: 3810
|
Maybe you could accept the connection and just camp on it, either blasting data out or maybe just dribbling one byte every few seconds. They want to annoy you, you can annoy them back.
|
Top
|
|
|
|
#288795 - 25/10/2006 12:54
Re: Access point "feature"
[Re: DWallach]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote: Maybe you could accept the connection and just camp on it, either blasting data out or maybe just dribbling one byte every few seconds. They want to annoy you, you can annoy them back.
I don't think that will have much effect, since x.x.x.255 is not normally a valid host address (EDIT: from the point of view of the DI-524 with an 8-bit submask).
Edited by mlord (25/10/2006 12:55)
|
Top
|
|
|
|
#288796 - 25/10/2006 14:59
Re: Access point "feature"
[Re: mlord]
|
carpal tunnel
Registered: 25/12/2000
Posts: 16706
Loc: Raleigh, NC US
|
Quote: I don't think that will have much effect, since x.x.x.255 is not normally a valid host address (EDIT: from the point of view of the DI-524 with an 8-bit submask).
I assume you mean "24-bit subnet mask."
Even before CIDR, though, 67.181.106.255 was a perfectly valid host address, as 67 was a Class-A network whose only well-known broadcast address was 67.255.255.255. (Not to say it couldn't have been subnetted so that 67.181.106.255 was a broadcast address for the subnet.) But no computer anywhere should assume that that is a broadcast address without specific knowledge of the network involved.
In other words, there should be zero problem with responding to the address. However, it's possible that it's some weird variation on a smurf attack. I can't think how an attacker could spoof a network address long enough to set up a TCP channel, but I suppose it's possible.
_________________________
Bitt Faulk
|
Top
|
|
|
|
#288797 - 25/10/2006 15:39
Re: Access point "feature"
[Re: wfaulk]
|
addict
Registered: 11/11/2001
Posts: 552
Loc: Houston, TX
|
Quote:
I assume you mean "24-bit subnet mask."
I've run into home routers that were hard coded to only let you change the last 8 bits of the subnet mask, the 255.255.255 part was assumed. It's been a while since I've run into that though.
_________________________
--Ben 78GB MkIIa, Dead tuner.
|
Top
|
|
|
|
#288798 - 26/10/2006 02:17
Re: Access point "feature"
[Re: BAKup]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
Quote:
Quote:
I assume you mean "24-bit subnet mask."
I've run into home routers that were hard coded to only let you change the last 8 bits of the subnet mask, the 255.255.255 part was assumed. It's been a while since I've run into that though.
I'm not sure how that plays here. I can set the entire subnet mask for the LAN side (currently 255.255.255.0). The subnet mask for the WAN (comcast) side is set via DCHP and is 255.255.252.0. It still won't let me block 67.181.106.255.
Mlord, I too like this gadget, It just sits there and works.
Edited by gbeer (26/10/2006 14:36)
_________________________
Glenn
|
Top
|
|
|
|
#288799 - 26/10/2006 11:18
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 25/12/2000
Posts: 16706
Loc: Raleigh, NC US
|
Not that this will help you solve your problem, but those two network masks apply to only those two networks. Unless 67.181.106.255 is inside one of them, you still don't have any information about whether it's a broadcast address or not.
It always weirds me out how often networking devices are built by people who apparently don't understand networking, placing these weird arbitrary limitations.
_________________________
Bitt Faulk
|
Top
|
|
|
|
#288800 - 26/10/2006 14:33
Re: Access point "feature"
[Re: wfaulk]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
So it seems I'm destined to buy another peice of hardware. It's too bad, this D-link is trouble free. Works well as long as the basic rules are all that are needed.
Any recommendations?
|
Top
|
|
|
|
#288801 - 26/10/2006 14:35
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote: So it seems I'm destined to buy another peice of hardware. It's too bad, this D-link is trouble free. Works well as long as the basic rules are all that are needed.
Any recommendations?
The obvious choice is a WRT54G-v3, which can be used "as is", or enhanced with various free/commercial third-party firmware featuresets.
Meanwhile, I want your old rig!
|
Top
|
|
|
|
#288802 - 26/10/2006 14:45
Re: Access point "feature"
[Re: mlord]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
Sorry, I has one of the linksys w-something units that was a POS. It had that buggy ethernet chip in it that caused it to lockup after some number of MB transited. It was binned. If Linksys had recalled those units, instead of selling them at bargin prices, I'd have more confidence in buying from them.
_________________________
Glenn
|
Top
|
|
|
|
#288803 - 26/10/2006 14:48
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 13/07/2000
Posts: 4180
Loc: Cambridge, England
|
Quote: Sorry, I has one of the linksys w-something units that was a POS. It had that buggy ethernet chip in it that caused it to lockup after some number of MB transited. It was binned.
Got a reference for that? My current Linksys (WRT54G, I think) is a POS, and I guess I assumed it was being a POS on entirely its own whim, but if those things are being a POS systematically it might encourage me to bin it...
Peter
|
Top
|
|
|
|
#288804 - 26/10/2006 14:56
Re: Access point "feature"
[Re: mlord]
|
pooh-bah
Registered: 12/02/2002
Posts: 2298
Loc: Berkeley, California
|
I'm recommending the Buffalo ones that are compatible with Open-WRT, currently. They're a little more difficult to flash the first time, as you've got to use tftp, but they don't charge more for the "linux version" and I feel like they're a bit higher quality. You can get into details about the processor speed and amounts of ram, and I think the Buffalo ones win on that front too. The most interesting is the Asus router that has USB host ports for hard drives built in, and is compatible with Open-WRT. I'd love to hang a raid array off one, thought I suspect the throughput might be an issue.
Matthew
|
Top
|
|
|
|
#288805 - 26/10/2006 17:06
Re: Access point "feature"
[Re: peter]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
I recall reading the details in the main forum where the Satori software was developing. I don't have the link to that forum any more. I lost interest when I found the "W" wasn't going to work right nomatter what soft or firmware was loaded on it.
_________________________
Glenn
|
Top
|
|
|
|
#288806 - 27/10/2006 23:14
WRTSL54GS
[Re: mlord]
|
old hand
Registered: 16/02/2002
Posts: 867
Loc: Oxford, UK
|
Quote: The obvious choice is a WRT54G-v3, which can be used "as is", or enhanced with various free/commercial third-party firmware featuresets.
I made a mental note some time ago to visit this subject and, prompted by this thread, I've now decided that I need a Linksys WRTSL54GS WAP/Router with USB to replace my energy-inefficient Smoothwall firewall appliance PC. The only real problem is it doesn't appear to be available in the UK. Posts on www.linksysinfo.org suggest that it's discontinued and the only UK retailer who even mentions it (www.broadbandstuff.co.uk) is claiming that it has been discontinued.
I can't quite fathom why it's not on general sale here in the UK. It was released late 2005 but there's no evidence of it having been retailed over 'ere, ever. Amazon.com (who list it) are telling me to buy from Amazon.co.uk (who don't recognise it). I'm on the verge of buying it from this US eBayer for $108 + $42 postage which is all fine and dandy and heck, the £ is strong against the $ right now but I'd still far sooner buy locally in case of any problems -- am I missing something here? Should I be considering other non-UK suppliers?
Edit: Changed message title Edit edit: a [ url ] tag got 'munged' by 'the BBs' edit
Edited by AndrewT (27/10/2006 23:21)
|
Top
|
|
|
|
#288808 - 31/10/2006 21:21
Re: WRTSL54GS
[Re: mlord]
|
old hand
Registered: 16/02/2002
Posts: 867
Loc: Oxford, UK
|
After a lot of digging around on the web I'm practically out of options here. If it's not a shipping policy that gets me it's a payment method restriction. Amazon.com initially looked very promising - they recognised my Amazon.co.uk account but the 'gotcha' that got me was that they couldn't provide an international warranty and they couldn't/wouldn't sell without a warranty. No doubt I'd have had payment method problems a few clicks further along if I had got that far! Quote: Price CAD$119 + tax, for comparism. I could buy/reship, but the CAD$taxes would likely negate much of any savings.
Mark, if that's an offer to purchase and reship then I'd be very grateful for your help here. Amazon.com looked pretty good at USD$104+local shipping but since that's not even an option for me CAD$119+tax+shipping sounds like a pretty good option!
|
Top
|
|
|
|
#288809 - 31/10/2006 22:06
Re: WRTSL54GS
[Re: AndrewT]
|
pooh-bah
Registered: 12/02/2002
Posts: 2298
Loc: Berkeley, California
|
Can you get the ASUS WL-500G? Any reason the Linksys is better?
Matthew
|
Top
|
|
|
|
#288810 - 01/11/2006 00:59
Re: WRTSL54GS
[Re: AndrewT]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote:
Quote: Price CAD$119 + tax, for comparism. I could buy/reship, but the CAD$taxes would likely negate much of any savings.
Mark, if that's an offer to purchase and reship then I'd be very grateful for your help here. Amazon.com looked pretty good at USD$104+local shipping but since that's not even an option for me CAD$119+tax+shipping sounds like a pretty good option!
As long as you're not in a huge hurry -- I can order it tomorrow, likely have it by Friday, and first-class post it to you by Saturday. Post takes about five business days from here to the UK usually, and costs about CAD$40 (international small packet). [EDIT] Correction, the post site quoted me about CAD$28 for air parcel.[/EDIT]
There's also 14% local tax on the unit. In theory we could get it back, but in practice it's not worth the accounting hassle for me to do it.
What about the PSU? It'll be a 2-prong USA/Canada plug on the power brick. The back of the unit says "12V 1A" (the User Guide for it says "12V 0.5A"), so an empeg PSU might work if the plugs match.
Email me if you want to proceed with this. mlord at pobox duht com.
Cheers
Edited by mlord (01/11/2006 01:06)
|
Top
|
|
|
|
#288811 - 01/11/2006 20:30
Re: WRTSL54GS
[Re: mlord]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Hello? Quote:
Quote:
Quote: Price CAD$119 + tax, for comparism. I could buy/reship, but the CAD$taxes would likely negate much of any savings.
Mark, if that's an offer to purchase and reship then I'd be very grateful for your help here. Amazon.com looked pretty good at USD$104+local shipping but since that's not even an option for me CAD$119+tax+shipping sounds like a pretty good option!
As long as you're not in a huge hurry -- I can order it tomorrow, likely have it by Friday, and first-class post it to you by Saturday. Post takes about five business days from here to the UK usually, and costs about CAD$40 (international small packet). [EDIT] Correction, the post site quoted me about CAD$28 for air parcel.[/EDIT]
There's also 14% local tax on the unit. In theory we could get it back, but in practice it's not worth the accounting hassle for me to do it.
What about the PSU? It'll be a 2-prong USA/Canada plug on the power brick. The back of the unit says "12V 1A" (the User Guide for it says "12V 0.5A"), so an empeg PSU might work if the plugs match.
Email me if you want to proceed with this. mlord at pobox duht com.
Cheers
|
Top
|
|
|
|
#288812 - 01/11/2006 20:35
Re: WRTSL54GS
[Re: mlord]
|
old hand
Registered: 16/02/2002
Posts: 867
Loc: Oxford, UK
|
Quote: Hello?
Sorry, I haven't been able to read here until just now. You have mail!
|
Top
|
|
|
|
#288813 - 05/11/2006 15:58
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote:
It seems my D-link DI-524 access point will "NOT" allow blocking of incoming traffic to port 80 from any address that ends with 255. Rats.
Mmm... have you tried flashing it into a DI-624 yet? If it's a Rev.C (or Rev.D, apparently), then it's identical inside to a DI-624, and the DI-624 firmware seems better all around than the DI-524 stuff.
It works for me, YMMV.
Cheers
|
Top
|
|
|
|
#288814 - 06/11/2006 00:35
Re: Access point "feature"
[Re: mlord]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
Mine is a rev C so the crossflash should work.
After reading that thread on broadband, I don't see the need to try flashing to 624 firmware. The items complained about work fine for me, DHCP, time, no rebooting....
I currently have the 524 firmware v 3.02. I did try fixing something that wasn't broke by loading 3.20. Didn't work well at all.
_________________________
Glenn
|
Top
|
|
|
|
#288815 - 06/11/2006 01:40
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Most of the people in that thread seem to be suffering from older firmware (the current is 2.76, and is rock solid for many), and simply from the fact that D-Link gear (every single piece of it I've ever owned) tends to overheat and then lock-up. Regardless of firmware.
If one reads betwix the lines from that thread, some of the lock-ups were triggered by torrent streaming, which would warm up the innards a fair bit. But also, near the end, one can discover that most lockups were probably due to the internal log filling up (out of memory error/crash), and the solution for that is to just turn off the internal logging (click, click, done.). Pretty solid with the newest 2.76 DI-624 firmware.
I found that the DI-524 (latest firmware, even) has issues with "WPA2-Auto" -- it uses a half and half combo of TKIP and CCMP(AES) in that mode, which confuses my D-Link DWL-G730AP unit. But the 624 2.76 firmware has full/proper WPA2 support (pure CCMP/AES), and everything around here seems to work well with it.
But hey, if it ain't broke, don't fix it, eh!
Cheers
PS: My solution for heat management: stand it on edge with some space underneath.
Edited by mlord (06/11/2006 02:12)
|
Top
|
|
|
|
#288816 - 06/11/2006 02:39
Re: Access point "feature"
[Re: mlord]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
Quote:
PS: My solution for heat management: stand it on edge with some space underneath.
That must be why I never saw that problem. Mine has always been vertical using the included feet.
_________________________
Glenn
|
Top
|
|
|
|
#288817 - 06/11/2006 03:20
Re: Access point "feature"
[Re: mlord]
|
carpal tunnel
Registered: 17/12/2000
Posts: 2665
Loc: Manteca, California
|
This weekend I've been trying to track down another problem. I recently bought an HP media center pc from Best Buy. It was a display model. Normally I wouldn't touch such a beast but the bonus for buying it was a $600 cash card. Which I used to buy a wide screen monitor and an additional 2GB of ram. It also seems to have qualified for the free Vista upgrade. I just hope free won't be too high a price to pay for Vista.
Any way, the problem seems to be getting it and my laptop to do a few simple things like file share, or even see each other reliably as members of the same windows workgroup.
So far turning off windows firewall (both ends) and disabling nod (both ends) doesn't seem to help. I've got to find that hub I stored away somewhere. And try without using the wireless.
Strangeness includes sometimes seeing the file shares without seeing the computer in the workgroup. Seeing both computers in the workgroup without being able to open them and see the shares. On occassion everything seems to work as it should.
Could all this be related to the distance the HP is away from the AP? The HP's signal strength is low.
_________________________
Glenn
|
Top
|
|
|
|
#288818 - 06/11/2006 03:28
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 29/08/2000
Posts: 14493
Loc: Canada
|
Quote:
Could all this be related to the distance the HP is away from the AP? The HP's signal strength is low.
If the HP can reliably surf the web via the AP, then you know that the distance is okay.
|
Top
|
|
|
|
#288819 - 06/11/2006 07:42
Re: Access point "feature"
[Re: gbeer]
|
carpal tunnel
Registered: 20/12/1999
Posts: 31597
Loc: Seattle, WA
|
Quote: o do a few simple things like file share, or even see each other reliably as members of the same windows workgroup
This has become one of the harder things to do in recent versions of windows. Back in the old days of win95 it Just Worked, but lately it's tricky. The last time I tried to make it happen on freshly configured systems, I gave up and sneakernetted the stuff I needed to transfer.
Perhaps somewhere there's an online guide to getting that working? Ask uncle google.
|
Top
|
|
|
|
|
|