IPv6 doesn't work outside the LAN #105
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This likely has to do with our Netgear RAX45 router. I suspect it's firewalling incoming IPv6 traffic to exozyme.
This is why: https://community.netgear.com/t5/Nighthawk-WiFi-Routers/IPv6-Firewall/td-p/1153899
I'll have to remove our domain's AAAA entry for now, since the router doesn't have any alternative custom firmware available at the moment and I don't know how to enable telnet for it.
https://openwrt.org/inbox/toh/netgear/netgear_rax40 doesn't support it 😭
Time to hack the router? https://www.tomsguide.com/news/netgear-router-patches-nov21
Here's some example code for the CVE: https://github.com/grimm-co/NotQuite0DayFriday/blob/trunk/2021.11.16-netgear-upnp/upnp_uuid_exploit.py
We have a RAX45 with firmware 1.0.0.30, so we can try modifying that code above to work with this router. We'll probably have to use a disassembler on the firmware to extract the location of the gadgets.
I tried the same technique in this article but the router is probably too new and no longer has the Telnet backdoor.
Maybe I'll try hacking the router over this break...
I'm giving it a try!
Welp TelnetEnable doesn't work even with the lowest firmware.
Here are some interesting articles:
https://github.com/grimm-co/NotQuite0DayFriday has a lot of helpful resources too.
My ISP also has unreliably sketchy IPv6 support so this issue might be pretty difficult to deal with.
I'm updating the router to the latest version of the firmware because it's being wonky right now. Labelling this as wontfix for now and closing and I'll revisit this in the future if I have time.
We have a new router now. Let's try this again.
Alright, I disabled the new router's IPv6 firewall 😱 so this should be fixed now!