How to follow IP changes in LAN to avoid remote connectivity issues

I’ve set up remote access to a computer and had to enter the authorized IPs which can connect remotely to the computer. These IPs change from time to time and I have no control over that, so every time they change I have to go update the authorized IPs list. Usually, a user will let me know that the connection failed.

Is there a way to somehow track this IP changes (happening on a company’s LAN) so I can proactively update my list instead of having to wait until the connection fails to go and see what the new IP is ?

If it’s not possible, how is this usually handled by IT security professionals ?

Go to Source
Author: Trusky

How to ban IP address behind NAT

I am creating WebSocket server with rust and tokio and I want to prevent DDos attacks and spams.

So I thought of creating HashMap and inserting IP address for 1 hour which i suspect is trying to do spamming or DDos Attack but will this also ban other innocent users for 1 hour sharing same NAT network with attacker ?

If I ban IP address and port combination, will the attacker just use other port?

Go to Source
Author: voldimot

Authoritative DNS for subdomain with dynamic IP

Is it possible to have an authoritative dns server that I host on my server that has a dynamic IP?

I use a dynamic dns client to update my IP with namecheap but want to have a DNS server I control as well. Is it possible for my subdomain ns1.sub.example.com to be on my server?

I would use the dynamic dns client to update ns1.sub.example.com

Update:
Looks like it works.
Dynamic DNS updates A record for main.example.com
NS points to subdomain and the name is the A record main.example.com
all queries are being forwarded to my dns server.

Go to Source
Author: uid500

Is it possible to intentionally cause Google and AWS to block my IP address?

It may sound a little weird. I am validating one of my possible research ideas where I want to see if I can intentionally and effectively make websites such as Google and AWS to block my IP. By “block”, I mean it won’t let me directly access the service, but not necessarily blacklist my IP. For example, the website will ask me to solve a ReCaptcha before I can access its service, instead of telling me service is unavailable.

I know if I send a large number of requests in a short time (i.e., using DoS) it is very likely that I can make it work, but I wonder if there is any other “efficient” way to make it happen. From what I have found here: https://support.google.com/websearch/thread/2596872?hl=en, it mentioned Google may block the following:

  • Sending searches from a robot, computer program, automated service, or search scraper
  • Using software that sends searches to Google to see how a website or webpage ranks on Google
  • Using an app, program or script to perform a large number of searches in a short time

Is it possible that I mimic such a request and cause myself to be blocked in just one or a few requests?

Go to Source
Author: dovod74538

What does “localhost name resolution is handled within DNS itself” mean?

I know that the Windows hosts file maps host names to IP addresses. But there is no mapping for localhost. Instead it has a comment that says this:

# localhost name resolution is handled within DNS itself.
#   127.0.0.1       localhost

I don’t understand this. Where is this “DNS” that handles this resolution? Is it a program somewhere in Windows OS? Is it outside of Windows? Does it have a config file? How is this being done?

Go to Source
Author: Liga

metasploit payload

metasploit payload

I’m use the ms f venom to make a payload app for android and i share the app to may another phone with it own network then i install the app but there was no reaction in my listener phone
for host i use my listener IP that was in the info of phone
what IP i have to use and the payload has to be on – t c p – or HTTP
when i use the same network for my phones payload is worked
thanks for Ur react .

Go to Source
Author: Sith fiLe