Главная » Linux

Mikrotik mac telnet linux

На чтение 11 мин Просмотров 1 Опубликовано
Содержание
  1. MAC access
  2. Contents
  3. Specifications
  4. MAC Telnet Server
  5. Property Description
  6. Notes
  7. MAC WinBox Server
  8. Property Description
  9. Notes
  10. Monitoring Active Session List
  11. Property Description
  12. Example
  13. MAC Scan
  14. Property Description
  15. MAC Telnet Client
  16. Example
  17. Mikrotik mac telnet linux
  18. Updates
  19. About
  20. Differences
  21. Use Cases
  22. Embedded Systems
  23. The Datacenter
  24. Download
  25. Binary Packages
  26. Source Packages
  27. Installation
  28. Configuration
  29. Usage
  30. mactelnet
  31. Usage
  32. Examples
  33. mactelnetd
  34. Usage
  35. Examples
  36. macping
  37. Usage
  38. Examples
  39. mndp
  40. Usage
  41. Examples
  42. Troubleshooting
  43. Credits
  44. License

MAC access

MAC telnet is used to provide access to a router that has no IP address set. It works just like IP telnet. MAC telnet is possible between two MikroTik RouterOS routers only.

Contents

  • 1 Specifications
  • 2 MAC Telnet Server
    • 2.1 Property Description
    • 2.2 Notes
    • 3.1 Property Description
    • 3.2 Notes
    • 3.3 Monitoring Active Session List
    • 3.4 Property Description
    • 3.5 Example
    • 4.1 Property Description
    • 5.1 Example

    Specifications

    • Packages required: system
    • License required: Level1
    • Submenu level: /tool, /tool mac-server
    • Standards and Technologies: MAC Telnet
    • Hardware usage: Not significant

    MAC Telnet Server

    Property Description

    • interface (name | all; default: all) — interface name to which the mac-server clients will connect

    Notes

    There is an interface list in this submenu level. If you add some interfaces to this list, you allow MAC telnet to that interface. Disabled (disabled=yes) item means that interface is not allowed to accept MAC telnet sessions on that interface. all interfaces iss the default setting to allow MAC teltet on any interface. Example

    To enable MAC telnet server on ether1 interface only:

    [admin@MikroTik] tool mac-server> print Flags: X - disabled # INTERFACE 0 all [admin@MikroTik] tool mac-server> remove 0 [admin@MikroTik] tool mac-server> add interface=ether1 disabled=no [admin@MikroTik] tool mac-server> print Flags: X - disabled # INTERFACE 0 ether1 [admin@MikroTik] tool mac-server>

    MAC WinBox Server

    Property Description

    • interface (name | all; default: all) — interface name to which it is alowed to connect with Winbox using MAC-based protocol

    Notes

    There is an interface list in this submenu level. If you add some interfaces to this list, you allow MAC Winbox to that interface. Disabled (disabled=yes) item means that interface is not allowed to accept MAC Winbox sessions on that interface. Example

    To enable MAC Winbox server on ether1 interface only:

    [admin@MikroTik] tool mac-server mac-winbox> print Flags: X - disabled # INTERFACE 0 all [admin@MikroTik] tool mac-server mac-winbox> remove 0 [admin@MikroTik] tool mac-server mac-winbox> add interface=ether1 disabled=no [admin@MikroTik] tool mac-server mac-winbox> print Flags: X - disabled # INTERFACE 0 ether1 [admin@MikroTik] tool mac-server mac-winbox>

    Monitoring Active Session List

    Property Description

    • interface (read-only: name) — interface to which the client is connected to
    • src-address (read-only: MAC address) — client’s MAC address
    • uptime (read-only: time) — how long the client is connected to the server

    Example

    To see active MAC Telnet sessions:

    [admin@MikroTik] tool mac-server sessions> print # INTERFACE SRC-ADDRESS UPTIME 0 wlan1 00:0B:6B:31:08:22 00:03:01 [admin@MikroTik] tool mac-server sessions>

    MAC Scan

    This command discovers all devices, which support MAC telnet protocol on the given network.

    Property Description

    MAC Telnet Client

    Command name: /tool mac-telnet Property Description (MAC address) — MAC address of a compatible device

    Example

    [admin@MikroTik] > /tool mac-telnet 00:02:6F:06:59:42 Login: admin Password: Trying 00:02:6F:06:59:42. Connected to 00:02:6F:06:59:42 MMM MMM KKK TTTTTTTTTTT KKK MMMM MMMM KKK TTTTTTTTTTT KKK MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK MikroTik RouterOS 3.0beta10 (c) 1999-2007 http://www.mikrotik.com/ Terminal linux detected, using multiline input mode [admin@MikroTik] >

    Источник

    Mikrotik mac telnet linux

    MAC-Telnet / MAC-SSH Client & Server for connecting to Mikrotik RouterOS and Linux Boxes via MAC Address

    Updates

    About

    Open source MAC Telnet client and server for connecting to Mikrotik RouterOS routers and Linux machines via MAC address.

    Based on MAC-Telnet the original work of haakonnessjoen ( Håkon Nessjøen ); forked the upstream version to add forwarding mode for tunneling a TCP connection through MAC-Telnet protocol, and implemented MAC-SSH client and server functionality for tunneling SSH protocol instead of implementing shell interface directly.

    Unless you will be using any of the additional functionalities, I recommend using the Original Version from haakonnessjoen ( Håkon Nessjøen ) instead.

    For information on other projects you can check my GitHub Personal Page and GitHub Profile.

    Differences

    The original version implements the following:

    • A Linux console tool for connecting to MikroTik RouterOS devices via their Ethernet address.
    • Linux daemon that implements the MAC-Telnet server to permit connecting to Linux machines via their ethernet address.

    The forked version implements additional functionality for forwarding a TCP connection through the MAC Telnet protocol. The main use case is connecting to Linux machines via their Ethernet address using the SSH protocol for security. Take note that the clients and servers running in the forwarding mode are not compatible with existing MAC-Telnet clients and servers implementing the standard mode of operation.

    The forked version of the server supports two modes of operation: * Standard MAC-Telnet Server Mode * TCP Connection Forwarding Mode: Tunnels a TCP connection to a local port on the client to a specific local port on the server side through MAC-Telnet protocol. This mode of operation is used for forwarding SSH connections through the MAC-Telnet protocol.

    The client supports three modes of operation: * Standard MAC-Telnet Client Mode * TCP Connection Forwarding Mode: Tunnels a specific local port on the client to the serverthrough MAC-Telnet protocol. * SSH Forwarding Mode: Apart from setting up the tunnel, the client takes care of launching the SSH client.

    Standart MAC-Telnet Mode [MAC-Telnet Cli] ---UDP---> [MAC-Telnet Srv] TCP Connection Forwarding Mode ---TCP---> [MAC-Telnet Cli] ---UDP---> [MAC-Telnet Srv]---TCP---> SSH Forwarding Mode [SSH Cli] --->TCP---> [MAC-Telnet Cli] ---UDP---> [MAC-Telnet Srv] ---TCP---> [SSH Srv]

    The SSH Forwarding Mode has the following advantages in comparison to standard MAC-Telnet:

    • The_mactelnet.users_ configuration file is not needed. Instead of maintaining another set of user passwords for MAC-Telnet, the authentication mechanisms implemented ssh are used.
    • Public Key Authentication works seamlessly permiting passwordless logins.
    • The communication between client and server is encrypyted by SSH.
    • The daemon does not require root privileges and can be run by a non-privileged user for additional security. In case the -n option is used, the server or client must be launched as root user, but the-U option can be used to drop privileges once the initial setup phase ends.
    • The server relies on the security model of SSH, instead of creating a shell environment itself.

    Use Cases

    Embedded Systems

    It can be used for initial provisioning and for maintenance purposes in situations where a valid IP configuration is not available.

    Might be a useful addition to the rescue mode especially of embedded systems without screens; connecting using MAC-Telnet / MAC-SSH is much more convenient then fetching and connecting a serial cable.

    The Datacenter

    It can be used for initial provisioning of physical and virtual servers and might serve as a rescue system, when the IP configuration of a server gets messed up for any reason.

    Download

    Binary Packages

    The original version of the MAC-Telnet has been packaged for Debian GNU/Linux by the original author haakonnessjoen ( Håkon Nessjøen ). You can download the deb packages for the original version from the Downloads Page of the Upstream Project.

    Source Packages

    The original version of the MAC-Telnet by haakonnessjoen ( Håkon Nessjøen ) can be download from the project page of the Upstream Project.

    You can download the latest development version of this code that is hosted at GitHub either in ZIP or TAR format.

    You can also get the latest development version of the code by cloning the Git repository for the project by running:

    git clone git://github.com/aouyar/MAC-Telnet

    Installation

    The binary packages of the original version of the code can be installed using the packaging tools of the distribution.

    Once the source code is cloned or downloaded it can be installed as follows:

    Configuration

    Sample upstart configuration files can be found in the config directory of the distribution:

    • Use mactelnetd.init for starting / stopping MAC-Telnet in standard mode.
    • Use macsshd.init for starting / stopping MAC-Telnet in MAC-SSH mode.

    Usage

    mactelnet

    Usage

    $ mactelnet -h Usage: mactelnet [-v] [-h] [-q] [-n] [-l] [-S] [-P ] [-t ] [-u ] [-p ] [-c ] [-U ] Parameters: MAC MAC-Address of the RouterOS/mactelnetd device. Use mndp to discover it. identity The identity/name of your destination device. Uses MNDP protocol to find it. -l List/Search for routers nearby. (using MNDP) -n Do not use broadcast packets. Less insecure but requires root privileges. -t Amount of seconds to wait for a response on each interface. -u Specify username on command line. -p Specify password on command line. -U Drop privileges by switching to user, when the command is run as a privileged user in conjunction with the -n option. -S Use MAC-SSH instead of MAC-Telnet. (Implies -F) Forward SSH connection through MAC-Telnet and launch SSH client. -F Forward connection through of MAC-Telnet without launching the SSH Client. -P Local TCP port for forwarding SSH connection. (If not specified, port 2222 by default.) -c Path for ssh client executable. (Default: /usr/bin/ssh) -q Quiet mode. -v Print version and exit. -h Print help and exit. All arguments after '--' will be passed to the ssh client command.

    Examples

    Establish standard MAC-Telnet session with remote box:

    $ mactelnet -F -P 4001 aa:bb:cc:dd:ee:ff

    Establish SSH connection with remote box:

    $ mactelnet -S -u root aa:bb:cc:dd:ee:ff

    Establish SSH connection with remote box, forwarding additional ports using SSH Port Forwarding:

    $ mactelnet -S -u root aa:bb:cc:dd:ee:ff -- -L8080:127.0.0.1:80 -L443:127.0.0.1:8443

    mactelnetd

    Usage

    $ mactelnetd -h Usage: mactelnetd [-v] [-h] [-n] [-f] [-S] [-P ] [-U ] Parameters: -f Run process in foreground. -n Do not use broadcast packets. Just a tad less insecure. -S / -F Forwarding of TCP connections through MAC-Telnet protocol, instead of using the standard MAC-Telnet remote terminal. -P Local TCP port used for forwarding connections to SSH Server. (If not specified, port 22 by default.) -U Drop privileges by switching to user, when the command is run as a privileged user in conjunction with the -n option. Standard MAC-Telnet is not compatible with this option. -v Print version and exit. -h Print help and exit.

    Examples

    Launch MAC-Telnet Daemon for receiving Standard MAC-Telnet protocol connections:

    Launch MAC-Telnet Daemon for forwarding connections to local SSH Daemon listening on port 22:

    Launch MAC-Telnet Daemon for forwarding connections to local SSH Daemon listening on non-standard port 2222:

    macping

    Usage

    $ macping -h Usage: macping [-h] [-f] [-c ] [-s ] Parameters: MAC MAC-Address of the RouterOS/mactelnetd device. -f Fast mode, do not wait before sending next ping request. -s Specify size of ping packet. -c Number of packets to send. (0 = unlimited) -h This help.

    Examples

    mndp

    Usage

    Examples

    Troubleshooting

    Disable firewalls both on the client and server side for testing. Firewalls can block the forwarding of packets with broadcast addresses even when they are not blocking any ports.

    The server can be run in the foreground (commanline option: -f) for testing.

    Credits

    MAC-Telnet has originally been developed by haakonnessjoen ( Håkon Nessjøen ).

    The code published on this page is a fork with some experimental features for establishing SSH connections via MAC Address. The additional features have been implemented
    by Ali Onur Uyar ([aouyar @ GitHub] (https://github.com/aouyar)).

    License

    MAC-Telnet is copyrighted free software made available under the terms of the GPL License Version 3 or later.

    See the file LICENSE that acompanies the code for full licensing information.

    MAC-Telnet maintained by aouyar @ GitHub
    Last Update: 2015-03-25 21:55:42 +0000

    Источник

    Читайте также:  Nfs share linux debian
Оцените статью
© 2023 Posetke
Adblock
detector