[Netkit.users] Making netkit communicate with honeyd

Deependra Singh Shekhawat deepsa at fedoraproject.org
Fri Jun 12 09:15:39 CEST 2009 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I have been using netkit for quite a few months now and its been a
amazing experience so far. I have simulated couple of good scenarios in
netkit with netkit installed in backtrack 3.

Now I am stuck with a situation where I would like to communicate with
honeyd which is running in backtrack 3. The scenario is something like this:

Backtrack 3 - Acts as host to both netkit as well as honeyd

honeyd - works on subnet 10.0.0.0/8
netkit - works on subnet 192.168.3.0/24

Backtrack 3 interfaces

tap0 - 192.168.3.254
eth0 - 172.16.109.132
lo   - 127.0.0.1

Now Backtrack 3 is able to ping any host which I had simulated in honeyd
via the lo interface because I did the following before starting honeyd

# route add -net 10.0.0.0 netmask 255.0.0.0 lo

Backtrack 3 can also communicate to netkit via tap0 which is in the same
network as netkit.

I would like backtrack 3 to act as the media for the communication
between honeyd and netkit. The situation I would like to have is this:

Honeyd simulates multiple routers which are connected in following way:

router 1 - 10.0.0.1 (this is the entry router)
router 2 - 10.1.0.1 connected to router 1
router 3 - 10.2.0.1 connected to router 2
router 4 - 10.3.0.1 connected to router 3
router 5 - 10.4.0.1 connected to router 4
router 6 - 10.5.0.1 connected to router 4

Now router 5 and router connects to the first machine in netkit that is
192.168.3.1

This makes 2 possible paths to the netkit VM (192.168.3.1) via the
honeyd network. Now when I ping 192.168.3.1 it should go through the
honeyd network first (kind of like honeyd , entry router, acting as my
default gateway) and then to the netkit VM,

this requires communication of netkit as well as honeyd which I was not
able to achieve, any ideas are welcome , please let me know how I can
simulate this kind of situation.

Many thanks in advance

Deependra Singh Shekhawat
- -- 
RHCE/RHCSS Certificate number: 804006843818597
Type: pub
bits/keyID: 1024D/483B234C
Date: 2007/06/29
Key Server: pgp.mit.edu
User ID: Deependra Singh Shekhawat (Fedora Project)
<jeevanullas at gmail.com> <deepsa at fedoraproject.org>
Key fingerprint: ED45 62EA A4D7 53FB 44C7  774A D55B F3F0 483B 234C
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkoyAJsACgkQ1Vvz8Eg7I0yi0wCgsSMJTFd2McWaTMlAh3v8s/k3
TeMAnjOUhnTp+ETkdB3fV/3veT6o2WvR
=sQVQ
-----END PGP SIGNATURE-----

More information about the Netkit.users mailing list