I'm using a somewhat weird setup which (so I would think) allows me to connect to the subnet while spoofing my IP and MAC (in test environment, doing cyber security college ^^). However, the router does not seem to route any of my requests and I do not understand why.
I'm using this as a guide: https://www.defcon.org/images/defcon-19/dc-19-presentations/Duckwall/DEFCON-19-Duckwall-Bridge-Too-Far.pdf
My setup is as follows:
Ip: 169.254.66.66
route options:
Destination Gateway Genmask Flags
0.0.0.0 169.254.66.1 0.0.0.0 UG
169.254.0.0 0.0.0.0 255.255.0.0 U
Arp options:
Address HWType HWAddress Flags
169.254.66.1 ether xx:xx:xx:xx:xx:xx CM
And then there are some iptables and ebtables rules to rewrite to IP and MAC of outgoing requests (these cannot be the problem I suppose, they have worked for weeks now) But they look something like this:
target prot source destination
SNAT icmp 169.254.66.66 anywhere to:some_legit_ip_from_subnet
With this setup I am able to ping the default gateway (or whatever harware address is in the arp table), but the gateway does not route my requests any further on the subnet. To make things weirder, it does route my requests to the internet. So I'm able to ping 8.8.8.8 for example just fine, but no ips from the subnet.
I do not know if this is clear. Please ask if it is not.
Thank you for your time!