• 0

Controlling your entire network - limiting bandwidth


Question

Heya, ive found this strange program called p2pOver, (p2p终结者in chinese) that has the ability to control the bandwidth of all computers on your network. for example, if your not so friendly tenant decides to go a 24/7 download rampage, you can fire this program up and limit his speed to a measly 5kb/s

Its like the program NetLimiter, but with access to all computer on the network! not just your computer.

My question is, how is this possible without installing anything on the other computers? Furthermore, i would think that you would also need access to the router(ie admin name + pass) to be able to control the router. But the program works!

Any ideas?

I can provide a download link for those who are interested

10 answers to this question

Recommended Posts

  • 0

Sorry but its IMPOSSIBLE for some software running on 1 machine to control the bandwidth other machine use -- IMPOSSIBLE.

Basic understanding of how tcp/ip works is all that is required to understand this.

So unless this software is acting as a proxy for the other machines on the network, or is controlling them or the gateway -- what your saying it impossible.

Now would it be possible to trick the other machines into thinking the machine running the software is the gateway.. sure this could be done a few different ways.

Would it be possible to flood the network with so much traffic that the other machines don't get any -- sure that too would be possible.

Please provide link to this software.

  • 0
  BudMan said:
Sorry but its IMPOSSIBLE for some software running on 1 machine to control the bandwidth other machine use -- IMPOSSIBLE.

Basic understanding of how tcp/ip works is all that is required to understand this.

So unless this software is acting as a proxy for the other machines on the network, or is controlling them or the gateway -- what your saying it impossible.

Now would it be possible to trick the other machines into thinking the machine running the software is the gateway.. sure this could be done a few different ways.

Would it be possible to flood the network with so much traffic that the other machines don't get any -- sure that too would be possible.

Please provide link to this software.

Second that, I was a bit lazy to write the explanation ;P

  • 0

hm... strange then. Cos ive actually got a linksysg5GL router at home. I was thinking that it would have saved me buying this router if i found this program first.

personally, i think its impossible too.

anywayz here is the link so you guys can test it out. if there is any translation problems, i can help out.

*ttp://rapidshare.com/files/80460512/p2pover3.rar.html

  • 0

Well I sure an the F am not going to install something I downloaded from rapidshare ;)

But I did extract the contents.. Can not make heads are talls of the help file. But with the wpcap.dll an wanpacket and packet.dlls an a exe called "arp"over.exe. An there is a screen in the help asking something about a switch or hub.

An this screen from the help

post-14624-1199199128_thumb.jpg

Which would seem to be your adding some IP address to the machine running the software, with specific macs

I would guess that what its doing is acting as the gateway to the other machines on the network.. Like I said if you are the gateway off the network then you can control bandwidth no problem..

So either your setting the other machines to use your box running this software as the gateway -- or your tricking them into using you as the gateway.. This can be done with a simple arp spoof..

Here is info on that

--

http://en.wikipedia.org/wiki/ARP_spoofing

ARP spoofing, also known as ARP poisoning, is a technique used to attack an Ethernet network which may allow an attacker to sniff data frames on a local area network (LAN), modify the traffic, or stop the traffic altogether (known as a denial of service attack).

The principle of ARP spoofing is to send fake, or 'spoofed', ARP messages to an Ethernet LAN. Generally, the aim is to associate the attacker's MAC address with the IP address of another node (such as the default gateway). Any traffic meant for that IP address would be mistakenly sent to the attacker instead. The attacker could then choose to forward the traffic to the actual default gateway (passive sniffing) or modify the data before forwarding it (man-in-the-middle attack)

--

Can you translate this page of the help?

post-14624-1199199164_thumb.jpg

How does it say it works in the help file??

  • 0

BudMan, thats for the explanation. Rapidshare is not that evil, i uploaded the file myself, cos other wise you have to go to a chinese site, which is even worse.

My computer is not a gateway, all the computers on my network connects to the router directly. I guess its doing the spoofing.

My chinese is terrible. Even worse is my translation. Sorry about that. I think i got most of it. Anyways here is how it goes

post-169881-1199231139_thumb.jpg

post-169881-1199231324_thumb.jpg

  • 0

heheeh -- no I agree rapidshare is not that evil, what I meant was I would not be installing something from a "untrusted" source, etc.

But I might install this on a virtual machine to see, than capture the traffic it sends out to show you how it spoofs the gateway mac so that you send your traffic to the machine running the software.

To be honest this just just plain asinine to expect people to run something like this.. If its YOUR network, then you clearly would have control over the gateway off the network, etc.

To spoof the gateway mac so that traffic is sent to the machine running this software is just plain WRONG. So in China this common to do? For what possible reason?? There are many many ways to control the flow of traffic when you control the gateway device, ie the network in general.. If you do not want to do it on the gateway itself -- then there are many many legit proxies you could run, be it transparent or not to control traffic. Running some software on some machine to act as the gateway via a spoof of the gateways mac would not be one of them ;)

  • 0
  BudMan said:
heheeh -- no I agree rapidshare is not that evil, what I meant was I would not be installing something from a "untrusted" source, etc.

But I might install this on a virtual machine to see, than capture the traffic it sends out to show you how it spoofs the gateway mac so that you send your traffic to the machine running the software.

To be honest this just just plain asinine to expect people to run something like this.. If its YOUR network, then you clearly would have control over the gateway off the network, etc.

To spoof the gateway mac so that traffic is sent to the machine running this software is just plain WRONG. So in China this common to do? For what possible reason?? There are many many ways to control the flow of traffic when you control the gateway device, ie the network in general.. If you do not want to do it on the gateway itself -- then there are many many legit proxies you could run, be it transparent or not to control traffic. Running some software on some machine to act as the gateway via a spoof of the gateways mac would not be one of them ;)

heya BudMan. I dont know if its very common in China, but from what i can gather it is a popular software - there is even a reverse-p2pover, to counter it. I guess most people have no idea how to manage their networks, myself included. That is why this program is so convient - you dont have to install anything on other machines, or set any thing else up. its totally transparent. I had to by myself a 54GL to control bandwidth at home.

Im actually in australia and we dont have any unlimited plans, once you go over your limit, internet speed is capped to a horrible 10kb/s or so. If there is a crazy downloader sharing your internet, its pretty scary.

Can you point me to some other ways to control traffic?

cheers

  • 0

if your running a router that supports 3rd party -- both dd-wrt an tomato support bandwidth limiting an or QOS. Or just plain monitoring the amounts of traffic an then blocking them.

If those methods are not enough for you, then you should look into a one of the linux router distros an run on some old PC hardware. Something like pfsense, ipcop or clarkconnect for example -- or Astaro, etc.. etc.. etc..

As to running proxy to control traffic/bandwidth -- Squid comes to mind, FREE will run on linux or Windows.

In the windows world you could run ISA (not free), etc.. etc..

If you have a wrt54gl -- I would look to dd-wrt or tomato first, or openwrt is another option.

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • I see the Winblows 11 BETA testing continues. This is just Windows 10 all over again. Oh well, everything is still smooth sailing over here on Windows 10 21H2 LTSC. You unpaid sheep BETA testers be sure to let us know when you get done BETA testing Winblows 11 for the rest of us. 🤣
    • What do you expect? Windows 11 is still in BETA. This is Windows 10 all over again. M$ doesn't hire people to do BETA testing anymore. They just let all the dumb sheep with FOMO do all the BETA testing for them. It's the same dumb sheep who use self-checkout at the store and do someone else's job for FREE! All while the worker who's getting paid just stands there and watches them. 🤣 🤡
    • Pet peeve: Microsoft using scaling options to get around the fact they removed font size settings, as if that's somehow acceptable to do. Thankfully third party apps still can adjust font sizes just fine, even though it often randomly resets on OS updates. And the funny thing is that not only are the scaling options horrible crutches, but they only work in some applications. And, ironically enough, even some apps from Microsoft themselves have hardcoded tiny fonts in certain dialogs in them. Example - certain parts of MS Office apps UI.
    • Unofficial script does the most useful official Windows 11/10 repairs you want automatically by Sayan Sen IT admins and system admins, and even home users have to run various Windows diagnostic runs from time to time in order to iron out or work around system problems. Last year, Microsoft published a guidance piece about various such native Windows apps, tools and utilities they include the like of Task Manager, Registry Editor, and more. Aside from them, Windows also comes with SFC (System File Checker) and DISM (Deployment Image Servicing and Management) to scan and fix corrupt and missing system files. Besides those, various other ways to help and diagnose network issues related to DNS (Domain Name System), among others, also exists. In order to save time running these, a Reddit user has created a new tool that automates all of these into a single package. The author writes that the Batch script (.BAT file) they have developed is "basically a one-stop script that can help clean up your system, run built-in diagnostics, fix common network issues, and generate system reports." The script is based on native Windows tools like netsh, ipconfig, systeminfo, among others, and the idea behind this is essentially to save time. The tool can be of help with Windows Update repairs, among others, something we all know is pretty common, and even Microsoft's own support articles may not prove to be helpful. Here is everything the utility can do for you: Run SFC, DISM, CHKDSK from a single menu Restart network adapters with auto-detection Flush or set DNS (Google, Cloudflare, or custom) Windows Update repair (resets services + cache) Generate system reports (saved as .txt files on Desktop) Show installed drivers Clean up temp files Registry backup and restore (manual) The latest version of the utility is now available for download on GitHub. The new version fixes issues related to admin privileges. As the script requires it to be run as an admin, it now restart itself to work in admin mode even if a user forgot to run it as an administrator. To download it, head over to its GitHub page here. The utility is named Windows Maintenance Tool. As always, though, make sure to back up your PC as this is an unofficial third-party app, and it's better if you test it first in a VM. Source: Lil_Batti (Reddit)
    • Come the hell on, do we need clickbait titles? "Overwatch 2" - 11 characters "a popular multiplayer hero shooter" - 34 characters What's the purpose here - delivering news or titles for clicks? I think we all know the answer. You're straying into "Number 7 on this list will SHOCK you" territory and while it may work on some crappy sites, this is why they are crappy sites. Just tell the story! Go back and look at popular articles that made Neowin what it was. Did they have headlines of "New OS from major technology conglomerate has astonishing new feature" or is it likely to tell the story succinctly and then elaborate within the content?
  • Recent Achievements

    • One Month Later
      CoolRaoul earned a badge
      One Month Later
    • First Post
      Kurotama earned a badge
      First Post
    • Collaborator
      Carltonbar earned a badge
      Collaborator
    • Explorer
      MusicLover2112 went up a rank
      Explorer
    • Dedicated
      MadMung0 earned a badge
      Dedicated
  • Popular Contributors

    1. 1
      +primortal
      508
    2. 2
      ATLien_0
      270
    3. 3
      +FloatingFatMan
      246
    4. 4
      +Edouard
      201
    5. 5
      snowy owl
      168
  • Tell a friend

    Love Neowin? Tell a friend!