Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Tech and Talk » OS and Software » PPPoE » wiretap a LAN through ethernet bridging of DSL modem
Search Topic:
Uniqs:
980		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·dslreports PPPoE Info Page ·RASPPPoE Homepage ·
Carrick Solutions Site Links
AuthorAll Replies

patcat88

join:2002-04-05
Jamaica, NY

wiretap a LAN through ethernet bridging of DSL modem


Let say someone has purchased 5 IP addresses from a DSL provider using PPPOE. To get at his 5 IP addresses, he needs to dial 1 PPPOE connection per computer. He has 5 computers.He also does Windows LAN File sharing/SMB/CIFS/NetBeui/NetBIOS. Netbeui and Windows File sharing and TCPIP and PPPOE are bound to the Ethernet adaptors of the 5 computers. Just TCPIP is bound to the PPPOE dialup/modem adaptors. The DSL modem is plugged into a switch with the 5 computers. There is no NAT/Router in this setup.

As far as I know, there is a layer 2 ethernet bridge going through the DSL modem to the Access Concentrator/DSLAM, connecting the layer 2 ethernet LAN of the above case, to the telephone company. AFAIK, it is required, otherwise the PPPOE packets wont have anything to ride over to the telco side.

On my ATT DSL connection, using Wireshark, one of the PPPOE packet's MAC address belongs Siara Networks (which was bought by Redback networks), the access concentrator's name is something-Rback-something, so yeah, Im pretty sure im seeing the MAC address of the DSLAM. The MAC address that the DSL modem has when I access it through Telnet is different, and it belongs to the range of the manufacturer of the modem (Efficient Networks), and its different from the PPPOE MAC address.

Now my question is, how easy it is for ATT/Telephone company/DSLAM owner/DSLAM tech/Law Enforcement, to sniff/see/"become a NIC on"/"plug into the layer 2" of the LAN described in the beginning, and then go on Network Neighborhood/My Network Places, and since this guy didn't password protect anything, read/write whatever they want on this guy's LAN? And is this done already for wiretapping?

I realize this would rarely work, since a router will block layer 2 of the LAN, from the layer 2 of the DSL modem, and almost everyone today uses a router, but is this a perfectly valid attack vector, or is there some standard in a DSL modem that mandates MAC filtering except for the Access Concentrator MAC? or does layer 2 really die in the DSL modem and never goes out over ADSL link?
to forum · permalink · · 2008-01-09 02:08:24 · Reply to this
Forums » Tech and Talk » OS and Software » PPPoE

Tuesday, 10-Nov 12:04:26 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [89] Verizon Keeps Swinging At AT&T
· [85] VoIP Over 3G Still Not Working For iPhone
· [62] Moto Sold About 100,000 Droids
· [33] Bill Would Force ISPs To Block Financial Scams
· [24] Mediacom Hints At 50, 100 Mbps Speeds
· [24] Government Will Release Some Telco Wiretap Lobbying Documents
· [17] Clearwire To Get Another $1.5 Billion
· [12] Monday Evening Links
· [10] 15 States Have Now Gotten Broadband Mapping Money
· [10] Google Offers Free Holiday Airport Wi-Fi
Most people now reading
· Google Has Acquired Gizmo5 [VOIP Tech Chat]
· House inspector failed to find major gas leak [Home Repair & Improvement]
· A fishy CRTC tarriff filed by bell? [TekSavvy]
· Windows 7 boot manager editing questions [Microsoft Help]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Slow speed lately? [TekSavvy]
· Replace entry door [Home Repair & Improvement]
· How in the world am I going to get into college? [General Questions]
· Please Help, I think my computer is being monitored [Security]