Is there a way to get an IP address from a MAC address found? [google search] [management section]
Q: I have the typical Google search for the subject and produced all their suggestions nothing.
What Im trying to do is access the administration section of a switch I bought on ebay. It is a Telco Systems T5C switch model 0530C BTI-N. I got it for LAN parties but I would also like to mess with the learning and the like. When I try to access through HyperTerminal, nothing happens. It requires a password (which I have not), but it seems not matter what I do, stop responding.
Any suggestions?
Best Answer: Copied this from a website i used to frequent.
I am an IT professional with over 15 years of Technology experience. I build and secure networks wordwide. I also conduct e-discovery and forensic data retrieval and wanted just to throw out some info on the myths I have been seeing here.
First of all do not get paranoid. The NCSD ( National Cyber Security Division) is about the only agency worldwide with the resources and abilities to track you down in cyber space. They however spend most of thier time combating virus outbreaks and attacks that threaten the stability of the Internet and worldwide communications. And of course tracking down terrorists!
Local and federal agencies do not have the equipment or resources to pinpoint your location via the internet. Let me quantify that,,,,,
The most common way for people to get busted on the internet is to reveal thier true identity or identifying information somewhere and it is found by a local agency and they come a knockin,,,most likely with warrant in hand for your computers and stroage media. This is how they get the rest of the information to carry a case. (The odds of this happening are highly unlikely)
The second most common way for people to get busted or identified is to be investigated for other charges, they come get your computer, and boom your busted for something totally unrelated. (This is more common)
Internet Browsing:
First and foremost your internet browser habits are pretty safely confined within your computer. You can be hacked and monitored, but this is highly unlikely as in todays Hacking Trends Hackers are targeting businesses and corporations rather than individual homes. Again it will be a hacker that gets you, not the LEO….
If your browsing is a concern to you and you really want to take another measure then use a PROXY SERVER – Proxys mask your IP (internet protocol) address and lets you surf the net worry free. If anyone tries to track you IP they just go back to the free proxy server.
If you want to see if anyone is connected to your computer you could do this:
click start button
click run
type "cmd" (little black box appears)
in the box type netstat -n
this will output all currently connected IP addresses. If you see a wierd one that doesnt go with the rest of them (youll be able to tell) then there is something outside connected to you.
Spyware and viruses can make some connections as well so it may not be someone connected to you, but it might be something on your computer such as a virus or a spyware making an outgoing connection.
The fact that most people are on broadband connections makes tracking someone down via IP harder as well. With connections such as cable or dsl there is two things happening.
1. There is a lease on your IP address defined by your Internet Service Provider, for example 3 days is mine. That means every 3 days the IP address I have expires and I am issued a new one.
2. Your IP address is actually Natted through your ISP.
This means that the IP address you are getting is on thier local network and outside thier network your IP actually is represented as an public IP address. This complicates things more.
LEOS GOT YOUR COMPUTER>>>>>>NOW WHAT?
This is what happens when they come get your computer. They have a warrant to search the contents of the computer for anything "incriminating". They will do a basic search opening files and looking at historys and pictures. They will not be doing any "Forensic" looking at this point.
9 times out of 10 if they find nothing in this "look see" that will be the end of it and it will go no further. WHY?
Well because local law enforcement does not have the equipment to do a "bit level" investigation of the drive contents, They have to send it to a company to look at the drive at the "bit level". These companies charge very heavily for these investigations. The kicker is that they get paid wether they uncover 1000MB or none at all. Thats why the LEO agency has to weigh the importance of it. (Example: The last drive i sent to a forensic data recovery company cost me 9,000.00. and I got 1 file recovered)
If anything is found on the "look see" there is a high probability of them incurring the cost to dig deeper. The weight of the case also has alot to do with it… If there is no sales or distribution, or conspiricy involved then the cost would not be worth it to the state,,,,
The whole point of this is calm down, have fun, grow and POST. Dont worry about LEO's monitoring the site because thats about all they can do. Do not give out any personal information or identify yourself in any way and you can pretty much say anything you want safely.
I would keep a good regimen of computer housekeeping as well. Regualarly clean out your temporary internet files. Take pictures off your computers (the ones that could be damaging to you) and keep them on CD somewhere, instead of your computer.
If i was doing anything i didnt want tracking i'd use xb browser, not that i do cough cough
Knowledge Management Online
Re:Sir,
We do not support a product that is purchased off of eBay.
If you need the switch reset to factory default, we recommend you send the unit in for repair.
Repair can contacted at repair@telco.com or 800-227-0937, option#2.
Regards,
Telco Systems Technical Support
The Overworked Manager’s Rescue Package
Re:http://www.cirt.net/cgi-bin/passwd.pl
I don't see telco systems listed, but here is a nice list.
Appraisal Management Company Directory 2009
Re:I just found the US branch contact info tonight. I'm gonna try to get in touch with them monday. Thanks!
Run Your Own Search Engine and Make Money like Google!
Re:Originally posted by: guy
Well, I got the IP and as I suspected, the password has been changed from default.
The switch itself works fine so worst case is I'll have to use it as an unmanaged unit.
there should be password recover procedures. call them.
C-Section Recovery & Health Guide
Re:Well, I got the IP and as I suspected, the password has been changed from default.
The switch itself works fine so worst case is I'll have to use it as an unmanaged unit.
Time Management Mastery For Busy People
Re:This is what I get through hyperterminal:
BATM Telco Boot Loader
Switch model : T5CN-L2
Loader version : 3.6.3 created Aug 4 2002 – 18:05:24
MAC Address : 00:A0:12:0Re:02:03
Press any key to stop auto-boot…
5
4
3
2
1
0auto-booting…
Starting switch application, please wait………………………………………. ……..
BUILT-IN SELF TEST
——————
CPU Notify RAM Test : Passed
CPU Interface Test : Passed
Testing Switch Core : Passed
Data Buffer Test : Passed
////////////////////////////////////////////////////////////////////
// //
// //
// B A T M A d v a n c e d C o m m u n i c a t i o n s //
// //
// T e l c o S y s t e m s //
// //
// Switch model : T5CN-L2 //
// SW version : 3.8.1 created Aug 11 2002 – 17:01:38 //
// //
// //
////////////////////////////////////////////////////////////////////
#
##
###
####
#####
######
#######
########
#########
##########
###########
############
#############
##############
###############
User Access Verification
Password:
Monologue Manager
Re:I've emailed about 15 times and got zero response.
Top Search Engine Ranking Secrets In Google Revealed.
Re:I looked at thier site an all they had was whitepapers..trying shooting them an email
Management Training: By The Book
Re:if i hit enter at the password prompt, it did nothing. Just sat there.
Google Local Customer Magnet
Re:normally your characters aren't echoed back to you.
but if you press return you should get another password attempt.
most times you can use a DB9/RJ45 serial adapter to your computer and then plug into the RJ45 port on the switch. From there you can try a straight through cable or the more common "rolled" cable (null modem)
Re:I followed the pinout on the T5C manual. It only needed three wires connected.
RJ45 pin 2 to DB9 pin 3, RJ45 pin 3 to DB9 pin 2, and RJ45 pin 5 to DB9 pin 5. Other than that, since i'm not experienced with this I just don't know how it SHOULD react if at all to an incorrect password entry. Should it show or do something while I'm typing?
Re:Originally posted by: guy
No, the console worksa and I can see it boot and everything, but after it asks for the password and I try to enter ANYTHING in, hyperterminal locks up.
that mean's your pinout is probably wrong or speed/terminal settings. happens all the time.
try teraterm if you want, but you'll probably get the same thing.
Re:No, the console worksa and I can see it boot and everything, but after it asks for the password and I try to enter ANYTHING in, hyperterminal locks up.
Re:Originally posted by: guy
I have the manual for it and I've tried the serial interface. It keeps locking up hyperterminal.
It DOES have a web interface that is accessed via the IP, but since I don't know the IP i can't get to it.
you need to get into the console to find the IP or else you could use a hub on the switch, attach a sniffer or PC running ethereal, start the paket capture and reset the switch. You may see the switch send out a gratitous arp for its own address. The source MAC will be that of the switch processor, sometimes this mac is printed on the switch somewhere.
if you're not getting anything through the console then you have the baud settings wrong or more likely an incorrect pin out on the serial cable. The manual should have the proper pinouts and baud settings – normally 9600/8N1
Re:it's called something like reverse arp, forgot the exact name
Reverse ARP is a protocol generally used by netbootable firmware to find it's own IP information, you need a RARP server on your network and even then it works similar to DHCP in that it'll only reply with entries it's configured for.
Re:I have the manual for it and I've tried the serial interface. It keeps locking up hyperterminal.
It DOES have a web interface that is accessed via the IP, but since I don't know the IP i can't get to it.
Re:it's called something like reverse arp, forgot the exact name
someone asked me this on my last phone interview
Re:use the serial interface and try These instructions. (http://66.102.7.104/search?q=cache:CEwzX9JzieIJ:support.batm.com/interface/passfile.php/%3Floc%3D4%26fid%3D303+Telco+Systems+T5C+switch+mo del+BTI-0530C-&hl=en#7)
It is doubtful that anyone changed from the default password.
Re:see if you can reset it or reset the password, otherwise you won't be able to get into it.
its also doubtful it has a web interface.
Re:"arp – a" will show you your current arp entries. If you don't ping or somehow access the mac address you won't be able to show the ip.
Re:I can't pull up anything using a cable. I was just thinking if I could get to the web admin page, it would be easier to try and guess the login info. (even if it took a very long time.)
Re:Well…you need a password to login.
If it is managed you should be able to pull up the routing tables and whatnot to get your IP. Not sure if routing table is the right term for finding the IP/MAC in there.
Related posts
Tags: google search, management section