42
lopu
6y

so my isp assigned all of our devices WAN ip's instead of giving our router a WAN ip and letting us handle our own lan.

so our subnet is x.x.15.255

but when I subnet scan x.x.255.255 I get 1337 results, no joke 1337

so I can access windows servers, ip cameras, sure a lot of them are locked, I'm scanning 0.0.0.1 - 255.255.255.255 now to see what else there is.

wwyd?

Comments
  • 7
    Lol!!!
    Thats is greatt
  • 1
    @Linux does it actually mean anything?? like it feels like a bad thing but I'm not experienced enough to know more, the ISP should only be managing router/public ip assignment right and not devices?
  • 4
    @lopu that is.... dumb? Security nightmare? ISP will run out of public IP addresses?

    It is not the ISP fault, but whoever configured your internal LAN. there should not be a DHCP passthrough to the internal network.
  • 2
    @magicMirror I'm up to 0.5.151.150 and counting no active ip's found yet.

    I'm guessing I won't start finding any again until 100.x.x.x ish
  • 2
    Holy shit
    That's the worst thing that you can do as an ISP
  • 0
    @magicMirror you are absolutelu right! You should handle these things yourself.
  • 0
    @magicMirror well the isp reconfigured the router remotely so :')
  • 0
    @iKameo there's a technician coming out tomorrow. The ISP is telstra in australia, melbourne btw :'D
  • 1
    Epic ISP fail 🤣🤣🤣
  • 0
    I think that maybe....... I'm a bit confused because I'm getting heaps of results from scanning 1.0.0.0 to 255.255.255.255 but those results include pings like 1.0.0.1 which is some dns provider

    So I'm not sure if my subnet is actually private and any results I'm getting are normal internet ipv4 addresses, but why would telstra have given us 3825 ipv4 addresses???? or like, I'm so confused about this situation, it might actually not be so bad because the results I got might just be normal public ipv4 addresses???
  • 0
    but that means I wouldn't be able to access public ip's within my x.x.15.255 subnet???

    I wonder wtf is going on
  • 0
    my device's ip address is 121.2xy.7.96 ..... according to wiki that's in the public ipv4 range, private is

    10.0.0.0 10.255.255.255 16777216

    172.16.0.0 172.31.255.255 1048576

    192.168.0.0 192.168.255.255 65536

    so................ how the fuck does that even work, my device is literally public on the internet.... with only my own firewall for protection???????
  • 1
    like how, what in the actual fuck, my hostname was actually changed to something like cpe-121-211-16-77.bwui-cr-001.ken.nsw.bigpond.net.au

    so I changed it back to my original one

    but like, wtf, they gave my device and all my family's devices public ip addresses??????
  • 0
    @iKameo in my subnet I get 3 responding ip's, my dad's phone, his laptop, and my laptop
  • 0
  • 0
    we've been assigned public ip addresses for private ip addresses, idek how the lan networking works for that....? like we have no private dns we're just using the internet's dns....????
  • 0
    sorry tracert results

    Traceroute has started…

    traceroute to 121.2xy.7.96 (121.2xy.7.96), 64 hops max, 72 byte packets

    1 cpe-121-211-7-96.bwui-cr-001.ken.nsw.bigpond.net.au (121.2xy.7.96) 0.571 ms 0.090 ms 0.062 ms
  • 0
    sorry that tracert was my own ip I'm retarded
  • 0
    @iKameo yeah cause it was my own ip I'm fully retarded

    I'm doing one on another ip in my subnet, it's taking a lot longer
  • 0
    @iKameo yep we have a router but even the tech support of the isp couldn't figure out the router ip, I was told to try 192.168.0.1, it didn't work, and after that they gave up........

    how does the whole /x thing work with ips, cause htere's like 1.2.3.4/5 ????? is it a way to extend ipv4 or what?
  • 0
    my computer is it's own router............? wut
  • 0
    something extremely fucky is going on
  • 0
    @lopu on an unrelated note, what is, version and patch do you run? ....just curious?
  • 0
    @iKameo 127.0.0.1 brings up my nginx

    well I mean like... idk, my machine is like some server with a public ip, or even more fucky like it's pure device on the internet or some shit

    the tracert is at 50 jumps right now for my dads laptop.........
  • 2
    @lopu ok. your router does not route (L3), it only works as a switch (L2). you are using whatever was provided in the dhcp config for gateway and dns. It is very easy to solve - when you control your own damn router. If you are using the router provided by your ISP as is, then it is thier problem. take down whatever devies you have up, before they get remotly hacked, and stop ping scanning the entire internet. Use Shodan FFS, if you really have too.

    Also, you might already be hacked.
  • 0
    @magicMirror I don't doubt that

    I had these ports open

    Open TCP Port: 53 domain

    Open TCP Port: 445 microsoft-ds

    Open TCP Port: 631 ipp

    Open TCP Port: 3233 whisker

    Open TCP Port: 4644

    Open TCP Port: 4645

    Open TCP Port: 5432 postgresql

    Open TCP Port: 15292

    Open TCP Port: 17500

    Open TCP Port: 17600

    Open TCP Port: 17603

    Open TCP Port: 27017

    Open TCP Port: 31742

    Open TCP Port: 31743

    + some 50xxx ones I think but the scan is taking too long

    and yeah lol when I realised I was just pinging the whole internet..........
  • 0
    yep here's my machine out in the open

    https://shodan.io/host/...
  • 0
    I thought something was fishy when one night my hostname changed from lopu-pro to cpe-121-211-7-96.bwui-cr-001.ken.nsw.bigpond.net.au ......
  • 1
    @lopu I don't know what's more concerning: the fact that they would leave you exposed like this, or the fact you are literally broadcasting your IP like that.

    It's almost too easy.
  • 0
    That is an amazing thing! Be thankful to get an entire subnet until they notice, or pentest the other devices under their (your?) network, choices are difficult indeed! Oh well. The only thing that I'd take away from it is that that ISP is as incompetent as it can be. Other than that, follow your ethical compass really.
  • 0
    Actually, come to think of it.. probing the ISP network you can probably do regardless of whether you got that subnet.. so don't bother. You can however use it to probe the internet and use it to hide your tracks to remotes' sysadmins (your ISP will have logs though) and confuse remote IDS systems. Or you can use this newly acquired subnet to host a bunch of internet-facing services... Depends on your hat really.
  • 2
    @Condor hehehe

    I did have a 15*255 size public subnet all to myself, they sent a new router and I set that up. Funny story though lmfao
  • 1
    @lopu so why exactly did you censor your IP with '2xy' and in the same sentence told us your hostname, which contains the uncensored IP '211'?
  • 0
    @EaZyCode retardation
  • 0
    @irene it's long changed :)
Add Comment