0% found this document useful (0 votes)

66 views

Source Routing: A Simple Explanation of The Dangers

The document describes how source routing works in computer networks and the security risks it poses. It uses a scenario with four nodes - Ivan, Alice, Bob, and Eddie - to illustrate how source routing allows Eddie to spoof his location and send packets that appear to come from other nodes, potentially enabling man-in-the-middle attacks. By specifying the path a packet should take, source routing gives senders control over routing and allows spoofing of source addresses.

Uploaded by

alaadeen100

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

66 views

Source Routing: A Simple Explanation of The Dangers

Uploaded by

alaadeen100

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 37

Source Routing

A Simple Explanation of the Dangers

The Players

Ivan

Alice

Bob

Eddie

The Setup
Backbone

Ivan

Linksys

10.2.1.8
Alice
10.5.0.1

Bob

Eddie

10.5.0.2
3

Who Controls What

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob

Linksys
?
Eddie

10.5.0.2
4

The Setup...
Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

10.27.1.7
Linksys
10.5.0.50

Bob

Eddie

10.5.0.2

10.5.0.2
5

Eddie Sends a Packet

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
6

Eddie Sends a Packet

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
6

Eddie Sends a Packet

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
6

Eddie Sends a Packet

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

Unreachable
10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
6

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

What if we spoofed it?

Backbone

Ivan
10.2.1.8
Bob
Alice
Reset!
10.5.0.1
10.5.0.2

10.5.0.1

10.27.1.7
Linksys
192.168.1.1
Eddie
192.168.1.100
7

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

> 10.27.1.7

10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
8

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

> 10.27.1.7

10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
8

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
> 10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
9

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
> 10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
9

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
> 10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
9

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
> 10.2.1.8
10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
9

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

Source Routing Magic

2 Way
Spoofed
Communication!

Backbone

Ivan
10.2.1.8
Alice
10.5.0.1

Bob
10.5.0.2

10.27.1.7
10.2.1.8
> 10.5.0.1

10.27.1.7
Linksys
10.5.0.50
Eddie
10.5.0.2
10

IR21 - CANBM - Bell Mobility Inc. - 20201027140751
No ratings yet
IR21 - CANBM - Bell Mobility Inc. - 20201027140751
53 pages
Accenture Contact Center of The Future Smart Selective Human Touch 170725024356
No ratings yet
Accenture Contact Center of The Future Smart Selective Human Touch 170725024356
26 pages
Chapter 4 - Lab 4-1 - Configuring BGP With Default Routing
No ratings yet
Chapter 4 - Lab 4-1 - Configuring BGP With Default Routing
20 pages
Chapter 9 2 NE 6e
No ratings yet
Chapter 9 2 NE 6e
39 pages
Unit 7 Notes
No ratings yet
Unit 7 Notes
15 pages
Dokumen - Tips Routing Operations in Cisco Ios Routers Operations in Cisco Ios Routers Rick
No ratings yet
Dokumen - Tips Routing Operations in Cisco Ios Routers Operations in Cisco Ios Routers Rick
115 pages
CCNA 2 v503 v60 Chapter 1 Exam Answers 2018 100 Full
No ratings yet
CCNA 2 v503 v60 Chapter 1 Exam Answers 2018 100 Full
23 pages
2.BGP 2
No ratings yet
2.BGP 2
54 pages
Allowas in BGP Config Example
No ratings yet
Allowas in BGP Config Example
5 pages
ROS IPRouting Solihin
No ratings yet
ROS IPRouting Solihin
10 pages
IP Spoofing and Web Spoofing
No ratings yet
IP Spoofing and Web Spoofing
11 pages
Basic of IP Routing Explained With Example
No ratings yet
Basic of IP Routing Explained With Example
216 pages
Networking
100% (1)
Networking
40 pages
Routing Introduction in BGP
No ratings yet
Routing Introduction in BGP
48 pages
12+Routing+Principle
No ratings yet
12+Routing+Principle
17 pages
Finding The Faulty or Malicious Router: K.Prakash R.Aneesh Kumar Mepco
No ratings yet
Finding The Faulty or Malicious Router: K.Prakash R.Aneesh Kumar Mepco
23 pages
EROU01 Routing Basics
No ratings yet
EROU01 Routing Basics
37 pages
Adda Ad
No ratings yet
Adda Ad
39 pages
Cis185 BSCI Lecture8 BGP Part2
No ratings yet
Cis185 BSCI Lecture8 BGP Part2
88 pages
IP Routing Lecture
No ratings yet
IP Routing Lecture
16 pages
Chapter 6 Lab 6-1, Configuring BGP With Default Routing: Topology
No ratings yet
Chapter 6 Lab 6-1, Configuring BGP With Default Routing: Topology
13 pages
SANOG26 - Tutorial - Ipv4 - Ipv6 - Routing - Sreenath
No ratings yet
SANOG26 - Tutorial - Ipv4 - Ipv6 - Routing - Sreenath
318 pages
Routing 2007
No ratings yet
Routing 2007
21 pages
Understanding The Routing: Part 1: The Routing Table Structure Part 2: The Lookup Process Rick Graziani Cabrillo College
No ratings yet
Understanding The Routing: Part 1: The Routing Table Structure Part 2: The Lookup Process Rick Graziani Cabrillo College
38 pages
4.2. Routing Overview - Static Route - ICMP - Traceroute
No ratings yet
4.2. Routing Overview - Static Route - ICMP - Traceroute
19 pages
Cisco Press - Ccie - Cisco Bgp-4 Command and Configuration Handbook
100% (1)
Cisco Press - Ccie - Cisco Bgp-4 Command and Configuration Handbook
382 pages
EthicalHacking Ch2 081321
No ratings yet
EthicalHacking Ch2 081321
14 pages
14956-route-to-null-interface (1)
No ratings yet
14956-route-to-null-interface (1)
7 pages
ROUTING
No ratings yet
ROUTING
23 pages
BGP-4 Case Studies: Nenad Krajnovic
No ratings yet
BGP-4 Case Studies: Nenad Krajnovic
60 pages
Common Routing Problem With OSPF Forwarding Address
No ratings yet
Common Routing Problem With OSPF Forwarding Address
8 pages
Routing Operation
No ratings yet
Routing Operation
124 pages
BGP Design Options
No ratings yet
BGP Design Options
24 pages
BGP As Path Manipulation
No ratings yet
BGP As Path Manipulation
16 pages
Lab Diagram: Internet
No ratings yet
Lab Diagram: Internet
13 pages
Networking Tutorial - TCPIP Over Ethernet
100% (24)
Networking Tutorial - TCPIP Over Ethernet
8 pages
Inter-Domain Routing Basics: Exterior Routing Protocols Created To
No ratings yet
Inter-Domain Routing Basics: Exterior Routing Protocols Created To
14 pages
EIGRP
No ratings yet
EIGRP
43 pages
Ing de Sistemas Autocalificable - Semana 4
No ratings yet
Ing de Sistemas Autocalificable - Semana 4
2 pages
SR Ip
No ratings yet
SR Ip
22 pages
BGP GUIDE
No ratings yet
BGP GUIDE
2 pages
Ch.9 Static and Dynamic Routing
No ratings yet
Ch.9 Static and Dynamic Routing
27 pages
SOP For Cisco Router Troubleshoot
100% (1)
SOP For Cisco Router Troubleshoot
13 pages
Erouting Chapter 2 - Ccna Exploration: Routing Protocols and Concepts (Version 4.0) (100%)
No ratings yet
Erouting Chapter 2 - Ccna Exploration: Routing Protocols and Concepts (Version 4.0) (100%)
11 pages
Routing
No ratings yet
Routing
38 pages
Rouing Concepts
No ratings yet
Rouing Concepts
211 pages
Unit 3
No ratings yet
Unit 3
59 pages
Troubleshooting Load Balancing Over Parallel Links Using Cisco Express Forwarding
No ratings yet
Troubleshooting Load Balancing Over Parallel Links Using Cisco Express Forwarding
8 pages
Mastering BGP Made Easy With This Cheat Sheet
No ratings yet
Mastering BGP Made Easy With This Cheat Sheet
2 pages
Chapter 1B Routing Concepts
No ratings yet
Chapter 1B Routing Concepts
35 pages
BGP Cheat Sheet PDF
No ratings yet
BGP Cheat Sheet PDF
2 pages
Introduction To Routing
No ratings yet
Introduction To Routing
39 pages
Chapter 5
No ratings yet
Chapter 5
33 pages
Introd Uction To IP Routing
No ratings yet
Introd Uction To IP Routing
14 pages
Static Routing Exercise
No ratings yet
Static Routing Exercise
23 pages
Female Force: Barbara Walters
From Everand
Female Force: Barbara Walters
Robert Schnakenberg
No ratings yet
GK Call Routing
No ratings yet
GK Call Routing
14 pages
Whatec
No ratings yet
Whatec
20 pages
Amazon: Analysis of Two "First-Movers" That Lasted, in The E-Commerce Space
No ratings yet
Amazon: Analysis of Two "First-Movers" That Lasted, in The E-Commerce Space
33 pages
Hardware Networking Interview Guide
No ratings yet
Hardware Networking Interview Guide
9 pages
10 Troubleshooting F5 LTM
No ratings yet
10 Troubleshooting F5 LTM
15 pages
Lab6 Exercise IPv6 6PE Per POD
No ratings yet
Lab6 Exercise IPv6 6PE Per POD
35 pages
06 OSPF Basics
No ratings yet
06 OSPF Basics
48 pages
Industrial Automation Communication Protocols
No ratings yet
Industrial Automation Communication Protocols
7 pages
CSEE 4119 - An Introduction To Computer Networks (Spring 2022)
No ratings yet
CSEE 4119 - An Introduction To Computer Networks (Spring 2022)
2 pages
User - Manual GW-DLMS-232-SL7 - 5.102 - en
No ratings yet
User - Manual GW-DLMS-232-SL7 - 5.102 - en
16 pages
Active Directory Interview Questions and Answers 391
No ratings yet
Active Directory Interview Questions and Answers 391
25 pages
Day 2 - MSP Bootcamp Training 201
No ratings yet
Day 2 - MSP Bootcamp Training 201
71 pages
Java Network Programming
100% (1)
Java Network Programming
17 pages
Subnetting Basics
No ratings yet
Subnetting Basics
30 pages
2 PRACTICAL TASK. Packet Tracer Program As A Network Design and Implementation Tool
No ratings yet
2 PRACTICAL TASK. Packet Tracer Program As A Network Design and Implementation Tool
10 pages
Configuration
No ratings yet
Configuration
7 pages
gc_2025_01_01
No ratings yet
gc_2025_01_01
13 pages
EIGRP Over The Top Routing (OTP)
No ratings yet
EIGRP Over The Top Routing (OTP)
52 pages
GSM Signalling Procedure
No ratings yet
GSM Signalling Procedure
60 pages
Ats1809 1 en Admin
No ratings yet
Ats1809 1 en Admin
2 pages
Firewall
No ratings yet
Firewall
63 pages
CVP 211
No ratings yet
CVP 211
3,213 pages
Manual - IE CS MBGW 2TX 1COM - V1.3.1 - 2023 02 20
No ratings yet
Manual - IE CS MBGW 2TX 1COM - V1.3.1 - 2023 02 20
51 pages
CN Regulations
No ratings yet
CN Regulations
8 pages
Chapter 4 - Communication
No ratings yet
Chapter 4 - Communication
22 pages
Dsasw0053242 1783-Etapf1
No ratings yet
Dsasw0053242 1783-Etapf1
230 pages
RCS (Rich Communication Suite)
100% (1)
RCS (Rich Communication Suite)
3 pages
Lez.b-03 Infiniband
No ratings yet
Lez.b-03 Infiniband
31 pages
Wireshark Network Packet Analysis
No ratings yet
Wireshark Network Packet Analysis
30 pages
Notes Advance Java
No ratings yet
Notes Advance Java
12 pages
Soal Ch9 S.D 17
No ratings yet
Soal Ch9 S.D 17
24 pages
69 Datasheet Datasheet Systems Ont Gpon G420i
No ratings yet
69 Datasheet Datasheet Systems Ont Gpon G420i
2 pages