search

redteaminfra / redteam-infra

100 stars 25 forks source link

SSH Dynamic Forwards not working with ipv6 in linode #73

Open willk opened 10 months ago

willk commented 10 months ago

ipv6 was still enabled which was preventing our SSH Dynamic Forwards.

We need to ensure https://github.com/redteaminfra/redteam-infra/blob/master/external/sketch/ansible/sketch-playbook.yml works

Example tcpdump of the linode trying to do ipv6

root@edge-pt02-dev-us-west-01:/home/sketchssh# sudo tcpdump -i eth0 -v port 80
tcpdump: listening on eth0, link-type EN10MB (Ethernet), snapshot length 262144 bytes
21:54:42.318948 IP6 (flowlabel 0xbe3eb, hlim 64, next-header TCP (6) payload length: 40) edge-pt02-dev-us-west-01.53736 > 2600:1901:0:b2bd::.http: Flags [S], cksum 0xa980 (incorrect -> 0x4ab3), seq 843911414, wi
n 64800, options [mss 1440,sackOK,TS val 2338698764 ecr 0,nop,wscale 7], length 0
21:54:43.333877 IP6 (flowlabel 0xa4f17, hlim 64, next-header TCP (6) payload length: 40) edge-pt02-dev-us-west-01.53736 > 2600:1901:0:b2bd::.http: Flags [S], cksum 0xa980 (incorrect -> 0x46bc), seq 843911414, wi
n 64800, options [mss 1440,sackOK,TS val 2338699779 ecr 0,nop,wscale 7], length 0
21:54:45.349888 IP6 (flowlabel 0x7467e, hlim 64, next-header TCP (6) payload length: 40) edge-pt02-dev-us-west-01.53736 > 2600:1901:0:b2bd::.http: Flags [S], cksum 0xa980 (incorrect -> 0x3edc), seq 843911414, wi
n 64800, options [mss 1440,sackOK,TS val 2338701795 ecr 0,nop,wscale 7], length 0
21:54:49.381883 IP6 (flowlabel 0x6cb55, hlim 64, next-header TCP (6) payload length: 40) edge-pt02-dev-us-west-01.53736 > 2600:1901:0:b2bd::.http: Flags [S], cksum 0xa980 (incorrect -> 0x2f1c), seq 843911414, wi
n 64800, options [mss 1440,sackOK,TS val 2338705827 ecr 0,nop,wscale 7], length 0
willk commented 10 months ago

Steps to fix:

all works

devzspy commented 10 months ago

I'm currently working on this and will have this submitted soon.