Linux.com

mfillpot

mfillpot

  • Moderator
  • Posts: 2188
  • Member Since: 21 Apr 09
  • Last Logged In: 2 days ago

Latest Posts

Posted by
Topic
Post Preview
Posted
  • mfillpot
    RE: Monitoring (W)LAN
    [quote]Hello fellow Ubuntu users, I am running 32-bit Xubuntu 12.10 and I am curious how to monitor my home network. I have few questions: 1. How can I see all the devices currently connected to my Wi-Fi? (And can I? Since I am using computer that is connected over ethernet cord) 2. How can I shut them off the my network? 3. Is there any way to protect myself from possible MITM attacks? 4. Does any GUI-based app for full network monitoring exists? [/quote] ===================================================================================== 1. As you are trying to track connected computers, it may be possible with port scanners but a good firewall will always return negative results as my computers are invisible to nmap and other tools. The easiest and best solution is to monitor the router and dhcp tables on the router(s) which will show all wired and wireless connections. 2. On most routers you can set an mac exclusion list that will prevent the listed devices from connecting to your router, you can also setup an approved mac list that will block all others and offer better protection. The only thing to remember is that mac addresses can eb faked, so and allow list is offers better control than an exclusion list but is not a perfect solution. 3. Encrypted network protocols are the best protection from MITM attacks and it is hard to decrypt, modify and encrypt traffic in real-time without a noticeable lag. 4. Full network traffic monitoring can be established by changing the architecture of your network and adding an IDS such as snort between the routing devices and the hosts. What you are attempting to accomplish is a general lab in most computer security classes and is not that difficult to accomplish if you have the correct resources. I regularly perform these steps on my personal network. One of the best things you can do to maintain logging and control is to have separate servers for the network services such as a dns server, a dhcp server and a routing server. Things can be enabled such as tracking for new routes then sending e-mails to the admin to notify of the new connections for real-time tracking.
    Link to this post 03 Nov 13

    Hello fellow Ubuntu users, I am running 32-bit Xubuntu 12.10 and I am curious how to monitor my home network.
    I have few questions:
    1. How can I see all the devices currently connected to my Wi-Fi? (And can I? Since I am using computer that is connected over ethernet cord)
    2. How can I shut them off the my network?
    3. Is there any way to protect myself from possible MITM attacks?
    4. Does any GUI-based app for full network monitoring exists?

    =====================================================================================

    1. As you are trying to track connected computers, it may be possible with port scanners but a good firewall will always return negative results as my computers are invisible to nmap and other tools. The easiest and best solution is to monitor the router and dhcp tables on the router(s) which will show all wired and wireless connections.

    2. On most routers you can set an mac exclusion list that will prevent the listed devices from connecting to your router, you can also setup an approved mac list that will block all others and offer better protection. The only thing to remember is that mac addresses can eb faked, so and allow list is offers better control than an exclusion list but is not a perfect solution.

    3. Encrypted network protocols are the best protection from MITM attacks and it is hard to decrypt, modify and encrypt traffic in real-time without a noticeable lag.

    4. Full network traffic monitoring can be established by changing the architecture of your network and adding an IDS such as snort between the routing devices and the hosts.

    What you are attempting to accomplish is a general lab in most computer security classes and is not that difficult to accomplish if you have the correct resources. I regularly perform these steps on my personal network.

    One of the best things you can do to maintain logging and control is to have separate servers for the network services such as a dns server, a dhcp server and a routing server. Things can be enabled such as tracking for new routes then sending e-mails to the admin to notify of the new connections for real-time tracking.

  • mfillpot
    RE: Can't find a distro to work
    Due to licensing issues with broadcom the drivers cannot be included in any live or installation cd, once you get a distro installed you can check their package management system for broadcom and in most cases the drivers are then available to be installed.
    Link to this post 01 Nov 13

    Due to licensing issues with broadcom the drivers cannot be included in any live or installation cd, once you get a distro installed you can check their package management system for broadcom and in most cases the drivers are then available to be installed.

  • mfillpot
    RE: We are students of the University General Gerardo Barrios in the country of El Salvador, we implemen
    There are plenty of groups that are working on building educational applications and suites, some good places to start the search at at https://wiki.gnome.org/EducationSuite and http://edu.kde.org/
    Link to this post 01 Nov 13

    There are plenty of groups that are working on building educational applications and suites, some good places to start the search at at https://wiki.gnome.org/EducationSuite and http://edu.kde.org/

  • mfillpot
    RE: using find command for multiple files and then manipulating the results
    I am glad that it worked, are there any portions of the command that you do not understand?
    Link to this post 01 Nov 13

    I am glad that it worked, are there any portions of the command that you do not understand?

  • mfillpot
    RE: Redirect Traffic
    Have you tried using routing redirects in the routing table for addresses or address ranges in your router to accomplish the task?
    Link to this post 01 Nov 13

    Have you tried using routing redirects in the routing table for addresses or address ranges in your router to accomplish the task?

  • mfillpot
    RE: Can't find a distro to work
    I do not think there are any distros that carry the proprietary driver by default due to licensing reasons. However from the command line you can put in the command "sudo apt-get install nvidia-current" to install the nvidia drivers from the online repos for either of those distros as Zorin is based upon ubuntu. Since you have been using only ubuntu based distros I recommend trying some others out like fedora or magea to see if they are having the same problems.
    Link to this post 30 Oct 13

    I do not think there are any distros that carry the proprietary driver by default due to licensing reasons. However from the command line you can put in the command "sudo apt-get install nvidia-current" to install the nvidia drivers from the online repos for either of those distros as Zorin is based upon ubuntu.

    Since you have been using only ubuntu based distros I recommend trying some others out like fedora or magea to see if they are having the same problems.

Who we are ?

The Linux Foundation is a non-profit consortium dedicated to the growth of Linux.

More About the foundation...

Frequent Questions

Join / Linux Training / Board