Here are the "interesting" things I've been doing lately:
- Using scapy to emulate a broken LNS
- Using scapy to emulate a PPPoE subscriber (to prove that IP packets sent before IPCP completes are discarded)
- Using one FreeRADIUS server to authenticate for both the LAC and LNS
- Using FreeRADIUS realms and DEFAULTs to minimise config for a wholesale ISP model
- Creating a bunch of scripts for automating RADIUS CoA randomly throughout a given user base
- Using expect scripts to take router health snapshots & statistics throughout a multi-day stability test
- Configuring a very quick-and-dirty LNS using Cisco hardware
- Configuring Ubuntu as a PPPoE client
- Using scripts to keep a pair of redundant RADIUS servers in sync using SCP
- Using byte references to build Wireshark capture filters for MPLS / PPP encapsulated or 802.1Q tagged frames
I will say, though - I am not a programmer so my code will be scruffy and certainly not written with security in mind. I'm definitely not saying my methods are the best way to achieve anything, but they might get you out of a hole when time is short. In short, anything I suggest on here is for lab use only, and should not be considered suitable for live environments!
No comments:
Post a Comment