Mirrors
/
fluxion
mirror of https://github.com/FluxionNetwork/fluxion.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fixed and optimized iptables ruleset

This commit is contained in:
Tobias Manske 2018-04-05 10:56:56 +02:00
parent 347bab9fce
commit 669e510b44
No known key found for this signature in database
GPG Key ID: 978D99F12D4E041F
1 changed files with 3 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
attacks/Captive Portal/attack.sh
View File

@ -1095,8 +1095,7 @@ captive_portal_unset_routes() {
ip addr del $CaptivePortalGatewayAddress/24 dev $CaptivePortalAccessInterface 2>/dev/null ip addr del $CaptivePortalGatewayAddress/24 dev $CaptivePortalAccessInterface 2>/dev/null
} }
# Set up DHCP / WEB server # Set up DHCP / WEB server / DNS Firewall
# Set up DHCP / WEB server
captive_portal_set_routes() { captive_portal_set_routes() {
# Give an address to the gateway interface in the rogue network. # Give an address to the gateway interface in the rogue network.
# This makes the interface accessible from the rogue network. # This makes the interface accessible from the rogue network.
@ -1112,15 +1111,8 @@ captive_portal_set_routes() {
iptables --table nat --flush iptables --table nat --flush
iptables --delete-chain iptables --delete-chain
iptables --table nat --delete-chain iptables --table nat --delete-chain
iptables -P FORWARD ACCEPT iptables -A INPUT -p tcp --dport 443 -j ACCEPT
iptables -A INPUT -p udp --dport 53 -j ACCEPT
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT \
--to-destination $CaptivePortalGatewayAddress:80
iptables -t nat -A PREROUTING -p tcp --dport 443 -j DNAT \
--to-destination $CaptivePortalGatewayAddress:443
iptables -A INPUT -p tcp --sport 443 -j ACCEPT
iptables -A OUTPUT -p tcp --dport 443 -j ACCEPT
iptables -t nat -A POSTROUTING -j MASQUERADE
} }
captive_portal_stop_interface() { captive_portal_stop_interface() {