With the spread of Hackers and Hacking incidents, the time has come, when not only system administrators of servers of big companies, but also people who connect to the Internet by dialing up into their ISP, have to worry about securing their system. It really does not make much difference whether you have a static IP or a dynamic one, if your system is connected to the Internet, then there is every chance of it being attacked.
This manual is aimed at discussing methods of system security analysis and will shed light on as to how to secure your standalone (also a system connected to a LAN) system.
Open Ports: A Threat to Security?
In the Netstat Tutorial we had discussed how the netstat -a command showed the list of open ports on your system. Well, anyhow, before I move on, I would like to quickly recap the important part. So here goes, straight from the netstat tutorial:
Now, the ??a? option is used to display all open connections on the local machine. It also returns the remote system to which we are connected to, the port numbers of the remote system we are connected to (and the local machine) and also the type and state of connection we have with the remote system.
For Example,
C:\windows>netstat -a
Active Connections
Proto Local Address Foreign Address State
TCP ankit:1031 dwarf.box.sk:ftp ESTABLISHED
TCP ankit:1036 dwarf.box.sk:ftp-data TIME_WAIT
TCP ankit:1043 banners.egroups.com:80 FIN_WAIT_2
TCP ankit:1045 mail2.mtnl.net.in:pop3 TIME_WAIT
TCP ankit:1052 zztop.boxnetwork.net:80 ESTABLISHED
TCP ankit:1053 mail2.mtnl.net.in:pop3 TIME_WAIT
UDP ankit:1025 *:*
UDP ankit:nbdatagram *:*
Now, let us take a single line from the above output and see what it stands for:
Proto Local Address Foreign Address State
TCP ankit:1031 dwarf.box.sk:ftp ESTABLISHED
Now, the above can be arranged as below:
Protocol: TCP (This can be Transmission Control Protocol or TCP, User Datagram Protocol or UDP or sometimes even, IP or Internet Protocol.)
Local System Name: ankit (This is the name of the local system that you set during the Windows setup.)
Local Port opened and being used by this connection: 1031
Remote System: dwarf.box.sk (This is the non-numerical form of the system to which we are connected.)
Remote Port: ftp (This is the port number of the remote system dwarf.box.sk to which we are connected.)
State of Connection: ESTABLISHED
?Netstat? with the ??a? argument is normally used, to get a list of open ports on your own system i.e. on the local system. This can be particularly useful to check and see whether your system has a Trojan installed or not. Yes, most good Antiviral software are able to detect the presence of Trojans, but, we are hackers, and need to software to tell us, whether we are infected or not. Besides, it is more fun to do something manually than to simply click on the ?Scan? button and let some software do it.
The following is a list of Trojans and the port numbers which they use, if you Netstat yourself and find any of the following open, then you can be pretty sure, that you are infected.
Port 12345(TCP) Netbus
Port 31337(UDP) Back Orifice
For complete list, refer to the Tutorial on Trojans at: hackingtruths.box.sk/trojans.txt
----
Now, the above tutorial resulted in a number of people raising questions like: If the 'netstat -a' command shows open ports on my system, does this mean that anyone can connect to them? Or, How can I close these open ports? How do I know if an open port is a threat to my system's security of not? Well, the answer to all these question would be clear, once you read the below paragraph:
Now, the thing to understand here is that, Port numbers are divided into three ranges:
The Well Known Ports are those from 0 through 1023. This range or ports is bound to the services running on them. By this what I mean is that each port usually has a specific service running on it. You see there is an internationally accepted Port Numbers to Services rule, (refer RFC 1700 Here) which specifies as to on what port number a particular service runs. For Example, By Default or normally FTP runs on Port 21. So if you find that Port 21 is open on a particular system, then it usually means that that particular system uses the FTP Protocol to transfer files. However, please note that some smart system administrators delibrately i.e. to fool lamers run fake services on popular ports. For Example, a system might be running a fake FTP daemon on Port 21. Although you get the same interface like the FTP daemon banner, response numbers etc, however, it actually might be a software logging your prescence and sometimes even tracing you!!!
The Registered Ports are those from 1024 through 49151. This range of port numbers is not bound to any specific service. Actually, Networking utlites like your Browser, Email Client, FTP software opens a random port within this range and starts a communication with the remote server. A port number within this range is the reason why you are able to surf the net or check your email etc.
If you find that when you give the netstat -a command, then a number of ports within this range are open, then you should probably not worry. These ports are simply opened so that you can get your software applications to do what you want them to do. These ports are opened temporarily by various applications to perform tasks. They act as a buffer transfering packets (data) received to the application and vis-a-versa. Once you close the application, then you find that these ports are closed automatically. For Example, when you type www.hotmail.com in your browser, then your browser randomly chooses a Registered Port and uses it as a buffer to communicate with the various remote servers involved.
The Dynamic and/or Private Ports are those from 49152 through 65535. This range is rarely used, and is mostly used by trojans, however some application do tend to use such high range port numbers. For Example,Sun starts their RPC ports at 32768.
So this basically brings us to what to do if you find that Netstat gives you a couple of open ports on your system:
1. Check the Trojan Port List and check if the open port matches with any of the popular ones. If it does then get a trojan Removal and remove the trojan.
2. If it doesn't or if the Trojan Remover says: No trojan found, then see if the open port lies in the registered Ports range. If yes, then you have nothing to worry, so forget about it.
***********************
HACKING TRUTH: A common technique employed by a number of system administrators, is remapping ports. For example, normally the default port for HTTP is 80. However, the system administrator could also remap it to Port 8080. Now, if that is the case, then the homepage hosted at that server would be at:
http://domain.com:8080 instead of
http://domain.com:80
The idea behind Port Remapping is that instead of running a service on a well known port, where it can easily be exploited, it would be better to run it on a not so well known port, as the hacker, would find it more difficult to find that service. He would have to port scan high range of numbers to discover port remapping.
The ports used for remapping are usually pretty easy to remember. They are choosen keeping in mind the default port number at which the service being remapped should be running. For Example, POP by default runs on Port 110. However, if you were to remap it, you would choose any of the following: 1010, 11000, 1111 etc etc
Some sysadmins also like to choose Port numbers in the following manner: 1234,2345,3456,4567 and so on... Yet another reason as to why Port Remapping is done, is that on a Unix System to be able to listen to a port under 1024, you must have root previledges.
************************
Firewalls
Use of Firewalls is no longer confined to servers or websites or commerical companies. Even if you simply dial up into your ISP or use PPP (Point to Point Protocol) to surf the net, you simply cannot do without a firewall. So what exactly is a firewall?
Well, in non-geek language, a firewall is basically a shield which protects your system from the untrusted non-reliable systems connected to the Internet. It is a software which listens to all ports on your system for any attempts to open a connection and when it detects such an attempt, then it reacts according to the predefined set of rules. So basically, a firewall is something that protects the network(or systen) from the Internet. It is derived from the concept of firewalls used in vehicles which is a barrier made of fire resistant material protecting the vehicle in case of fire.
Now, for a better 'according to the bible' defination of a firewall: A firewall is best described as a software or hardware or both Hardware and Software packet filter that allows only selected packets to pass through from the Internet to your private internal network. A firewall is a system or a group of systems which guard a trusted network( The Internal Private Network from the untrusted network (The Internet.)
NOTE: This was a very brief desciption of what a firewall is, I would not be going into the details of their working in this manual.
Anyway,the term 'Firewalls', (which were generally used by companies for commerical purposes) has evolved into a new term called 'Personal Firewalls'. Now this term is basically used to refer to firewalls installed on a standalone system which may or may not be networked i.e. It usually connects to an ISP. Or in other words a personal firewall is a firewall used for personal use.
Now that you have a basic desciption as to what a firewall is, let us move on to why exactly you need to install a Firewall? Or, how can not installing a firewall pose a threat to the security of your system?
You see, when you are connected to the Internet, then you have millions of other untrusted systems connected to it as well. If somehow someone found out your IP address, then they could do probably anything to your system. They could exploit any vulnerability existing in your system, damage your data, and even use your system to hack into other computers.
Finding out someone'e IP Address is not very difficult. Anybody can find out your IP, through various Chat Services, Instant Messengers (ICQ, MSN, AOL etc), through a common ISP and numerous other ways. Infact finding out the IP Address of a specific person is not always the priority of some hackers.
What I mean to say by that is that there are a number of Scripts and utilities available which scan all IP addresses between a certain range for predefined common vulnerabilities. For Example, Systems with File Sharing Enabled or a system running an OS which is vulnerable to the Ping of Death attack etc etc As soon as a vulnerable system is found, then they use the IP to carry out the attacks.
The most common scanners look for systems with RAT's or Remote Administration Tools installed. They send a packet to common Trojan ports and display whether the victim's system has that Trojan installed or not. The 'Scan Range of IP Addresses' that these programs accept are quite wide and one can easily find a vulnerable system in the matter of minutes or even seconds.
Trojan Horses like Back Orifice provide remote access to your system and can set up a password sniffer. The combination of a back door and a sniffer is a dangerous one: The back door provides future remote access, while the sniffer may reveal important information about you like your other Passwords, Bank Details, Credit Card Numbers, Social Security Number etc If your home system is connected to a local LAN and the attacker manages to install a backdoor on it, then you probably have given the attacker the same access level to your internal network, as you have. This wouls also mean that you will have created a back door into your network that bypasses any firewall that may be guarding the front door.
You may argue with me that as you are using a dial up link to your ISP via PPP, the attacker would be able to access your machine only when you are online. Well, yes that is true, however, not completely true. Yes, it does make access to your system when you reconnect, difficult, as you have a dynamic Internet Protocol Address. But, although this provides a faint hope of protection, routine scanning of the range of IP's in which your IP lies, will more often than not reveal your current Dynamic IP and the back door will provide access to your system.
*******************
HACKING TRUTH: Microsoft Says: War Dialer programs automatically scan for modems by trying every phone number within an exchange. If the modem can only be used for dial-out connections, a War Dialer won't discover it. However, PPP changes the equation, as it provides bidirectional transportmaking any connected system visible to scanners?and attackers.
*******************
So how do I protect myself from such Scans and unsolicitated attacks? Well, this is where Personal Firewalls come in. They just like their name suggests, protect you from unsolicitated connection probes, scans, attacks.
They listen to all ports for any connection requests received (from both legitimate and fake hosts) and sent (by applications like Browser, Email Client etc.) As soon as such an instance is recorded, it pops up a warning asking you what to do or whether to allow the connection to initiate or not. This warning message also contains the IP which is trying to initiate the connection and also the Port Number to which it is trying to connect i.e. the Port to which the packet was sent. It also protects your system from Port Scans, DOS Attacks, Vulnerability attacks etc. So basically it acts as a shield or a buffer which does not allow your system to communicate with the untrusted systems directly.
Most Personal Firewalls have extensive logging facilities which allows you to track down the attackers. Some popular firewalls are:
1.BlackICE Defender : An IDS for PC's. It's available at http://www.networkice.com.
2. ZoneAlarm: The easiest to setup and manage firewall. Get it for free at: www.zonelabs.com
Once you have installed a firewall on your system, you will often get a number of Warnings which might seem to be as if someone is trying to break into your system, however, they are actually bogus messages, which are caused by either your OS itself or due to the process called Allocation of Dynamic IP's. For a details description of these two, read on.
Many people complain that as soon as they dial into their ISP, their firewall says that such and such IP is probing Port X. What causes them?
Well, this is quite common. The cause is that somebody hung up just before you dialed in and your ISP assigned you the same IP address. You are now seeing the remains of communication with the previous person. This is most common when the person to which the IP was assigned earlier was using ICQ or chat programs, was connected to a Game Server or simply turned off his modem before his communication with remote servers was complete.
You might even get a message like: Such and Such IP is trying to initaite a Netbios Session on Port X. This again is extrememly common. The following is an explanation as to why it happens, which I picked up a couple of days ago: NetBIOS requests to UDP port 137 are the most common item you will see in your firewall reject logs. This comes about from a feature in Microsoft's Windows: when a program resolves an IP address into a name, it may send a NetBIOS query to IP address. This is part of the background radiation of the Internet, and is nothing to be concerned about.
What Causes them? On virtually all systems (UNIX, Macintosh, Windows), programs call the function 'gethostbyaddr()' with the desired address. This function will then do the appropriate lookup, and return the name. This function is part of the sockets API. The key thing to remember about gethostbyaddr() is that it is virtual. It doesn't specify how it resolves an address into a name. In practice, it will use all available mechanisms. If we look at UNIX, Windows, and Macintosh systems, we see the following techniques:
DNS in-addr.arpa PTR queries sent to the DNS server
NetBIOS NodeStatus queries sent to the IP address
lookups in the /etc/hosts file
AppleTalk over IP name query sent to the IP address
RPC query sent to the UNIX NIS server
NetBIOS lookup sent to the WINS server
Windows systems do the /etc/hosts, DNS, WINS, and NodeStatus techniques. In more excruciating detail, Microsoft has a generic system component called a naming service. All the protocol stacks in the system (NetBIOS, TCP/IP, Novel IPX, AppleTalk, Banyan, etc.) register the kinds of name resolutions they can perform. Some RPC products will likewise register an NIS naming service. When a program requests to resolve an address, this address gets passed onto the generic naming service. Windows will try each registered name resolution subsystem sequentially until it gets an answer.
(Side note: User's sometimes complained that accessing Windows servers is slow. This is caused by installing unneeded protocol stacks that must timeout first before the real protocol stack is queried for the server name.).
The order in which it performs these resolution steps for IP addresses can be configured under the Windows registry key
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\ServiceProvider.
Breaking Through Firewalls
Although Firewalls are meant to provide your complete protection from Port Scan probes etc there are several holes existing in popular firewalls, waiting to be exploited. In this issue, I will discuss a hole in ZoneAlarm Version 2.1.10 to 2.0.26, which allows the attacker to port scan the target system (Although normally it should stop such scans.)
If one uses port 67 as the source port of a TCP or UDP scan, ZoneAlarm will let the packet through and will not notify the user. This means, that one can TCP or UDP port scan a ZoneAlarm protected computer as if there were no firewall there IF one uses port 67 as the source port on the packets.
Exploit:
UDP Scan:
You can use NMap to port scan the host with the following command line:
nmap -g67 -P0 -p130-140 -sU 192.168.128.88
(Notice the -g67 which specifies source port).
TCP Scan:
You can use NMap to port scan the host with the following command line:
nmap -g67 -P0 -p130-140 -sS 192.168.128.88
(Notice the -g67 which specifies source port).
Hope it help.
May 18, 2008
Apr 11, 2008
Connecting Xbox to your Computer! Simple
I. Introduction
First you'll need a Crossover Cable: A crossover cable is needed to directly connect your computer and Xbox. You would plug one end of the cable to your computer and the other end into the Xbox, there are no devices in between. If you have a hub, switch, or router you will not need a crossover cable though some still will work with one. With connecting to hubs, switches, or routers you should use a straight-through cable. The image below shows the difference between the two:
To easily tell if you have a crossover or not, simply look at the two ends side by side. If all the pins, 1 through 8 on both ends are all the same color in the same order, you have a straight-through cable. If pins 1, 3 and 2, 6 are swapped you have a crossover cable. Notice the TX, RX as well. This shows why in pc to pc connections a crossover is required. Otherwise one pc will be transmitting over the same wire the other pc is trying to transmit on.
This guide currently gives configuration examples for setting up an FTP connection with Evox, Avalaunch, MXM, or UnleashX as your dash. It is also recommended to use FlashFXP as your FTP client though many others will work just fine.
You do not NEED an internet connection to FTP to your Xbox. When you ftp to your Xbox from a computer in your house to the Xbox in your house, no packets (data) need to go out to the internet and they shouldn't even try. The tricky part is when you want to be able to access the internet and ftp to your Xbox at the same time. How this is done and how difficult it is depends on the devices you have.
I will not list every baby step involved for how to set things, like every mouse click required. If you're not sure how to do something I've said to configure, see number 5 below.
If something is said in this guide that you don't understand or don't know how to accomplish it, try google. It is a search engine at http://www.google.com
For example, if I say "Run a command prompt" but don't mention how; don't go immediately posting in the forums asking how you run a command prompt. First, try searching in google, "how to run command prompt windows xp". I'm willing to bet you'll get your answer faster. Another example, just so we're clear, if I say "turn off your winxp firewall", you may search in google, "how to turn off windows xp firewall". Again, I'm betting your answer will come faster.
This guide now has configuration diagrams to help anyone having difficulty understanding the configuration examples I discuss. Some people simply do better with visuals. The key for the diagrams is provided below:
II. Configuration Examples
Find the configuration that best matches what you have. Reading them all anyway could help your understanding.
1. Computer Direct Connection to XboxFirst you'll need a Crossover Cable: A crossover cable is needed to directly connect your computer and Xbox. You would plug one end of the cable to your computer and the other end into the Xbox, there are no devices in between. If you have a hub, switch, or router you will not need a crossover cable though some still will work with one. With connecting to hubs, switches, or routers you should use a straight-through cable. The image below shows the difference between the two:
To easily tell if you have a crossover or not, simply look at the two ends side by side. If all the pins, 1 through 8 on both ends are all the same color in the same order, you have a straight-through cable. If pins 1, 3 and 2, 6 are swapped you have a crossover cable. Notice the TX, RX as well. This shows why in pc to pc connections a crossover is required. Otherwise one pc will be transmitting over the same wire the other pc is trying to transmit on.
This guide currently gives configuration examples for setting up an FTP connection with Evox, Avalaunch, MXM, or UnleashX as your dash. It is also recommended to use FlashFXP as your FTP client though many others will work just fine.
You do not NEED an internet connection to FTP to your Xbox. When you ftp to your Xbox from a computer in your house to the Xbox in your house, no packets (data) need to go out to the internet and they shouldn't even try. The tricky part is when you want to be able to access the internet and ftp to your Xbox at the same time. How this is done and how difficult it is depends on the devices you have.
I will not list every baby step involved for how to set things, like every mouse click required. If you're not sure how to do something I've said to configure, see number 5 below.
If something is said in this guide that you don't understand or don't know how to accomplish it, try google. It is a search engine at http://www.google.com
For example, if I say "Run a command prompt" but don't mention how; don't go immediately posting in the forums asking how you run a command prompt. First, try searching in google, "how to run command prompt windows xp". I'm willing to bet you'll get your answer faster. Another example, just so we're clear, if I say "turn off your winxp firewall", you may search in google, "how to turn off windows xp firewall". Again, I'm betting your answer will come faster.
This guide now has configuration diagrams to help anyone having difficulty understanding the configuration examples I discuss. Some people simply do better with visuals. The key for the diagrams is provided below:
II. Configuration Examples
Find the configuration that best matches what you have. Reading them all anyway could help your understanding.
In this configuration you have your computer and Xbox directly connected. This direct connection can either be with the crossover cable, or with a straight-through cable to a hub/switch and then another straight-through cable from the hub/switch to your Xbox. Both are 'direct' connections.
2. Computer with two NICs
In this configuration you have two NICs. One possibly going to a router or a cable or DSL modem, the other you wish to make a direct connection to your Xbox with. You also have the option of configuring your Xbox for live, xbconnect, or xlink by enabling it to get out to the internet through your computer.
3. Computer with one NIC and a router
In this configuration you should have your computer and Xbox connected to the router. The router's WAN port goes to your cable, DSL modem, or otherwise out to the internet.
PRE SETUP: Before you begin setting up your configurations you should cable everything up properly. Make sure your Xbox is booted up with the dash loaded as well so you can test the settings you will put in. If you are loading your dash from a CD or DVD, any changes you need to make to the evox.ini, avalaunch.xml, config.xml or mxm.xml you will need to re-burn onto the disk then reboot your Xbox with your new boot disk. When making changes to the evox network settings when booting evox from the hard drive, make sure you scroll all the way down when you are finished and select save and exit.
Setting up Configuration 1
This is the simplest setup. Even if you have one of the other configurations, if you are experiencing problems you can always try this to help troubleshoot. This configuration can be setup in two different ways as showed in the Configuration 1a and Configuration 1b diagrams.
Evolution X Dashboard
Basically you can setup the [Network] Section of your evox.ini to look like this:
[Network]
SetupNetwork = Yes
StaticIP = Yes
Ip = 192.168.0.3
Subnetmask = 255.255.255.0
Defaultgateway =
DNS1 = 0.0.0.0
DNS2 = 0.0.0.0
You may also have SkipifNoLink and you can set that to No. Also verify your [FTP] Section looks like this:
[FTP]
Enable = Yes
Password = xbox
IGR = No
MXM Dashboard
If you use MXM as your dash in your MXM.xml file you would want the
Continue...
Connecting Xbox to your Computer! Simple Part (II)
Cont...
Here you've changed static ip back to yes and your gateway address should be the address of your router now. If your router is on a different subnet and by that I mean its ip is 192.168.1.1 and it is giving out dhcp address's of 192.168.1.x then you would make your evox.ini reflect those differences like this:
[Network]
SetupNetwork = Yes
StaticIP = Yes
Ip = 192.168.1.3
Subnetmask = 255.255.255.0
Defaultgateway = 192.168.1.1
DNS1 = 0.0.0.0
DNS2 = 0.0.0.0
MXM Dashboard
If you run MXM as your dash and want to use DHCP then the MXM.xml file's section should look like this:
True
255.255.255.0
Avalaunch Dashboard
If you run Avalaunch as your dash and want to use DHCP then make the section of the avalaunch.xml look like this.
192.168.0.180
255.255.255.0
192.168.0.1
195.159.0.100
195.159.0.200
8080
UnleashX Dashboard
For UnleashX, edit the config.xml file to look like this:
192.168.0.100
255.255.255.0
192.168.0.1
192.168.0.1
192.168.0.7
Yes
For all of the dash's configuration files, whenever you have them set to use DHCP, none of the other values you have defined below that are used. So if you have enabled DHCP then the IP address you see in the configuration file is NOT the one your Xbox will likely get. Also be careful if your router is giving out DHCP, and you want to give your Xbox a static IP so you know the IP address all the time then make sure whatever static IP you pick for your Xbox is not already an IP used by something else on your network given out by the router's DHCP range.
Xbox on the Internet
Do you want to…?
Access RSS news feeds on your Xbox
Successfully browse the internet with Linksboxs
Use a chat client from a dashboard
Anything else that requires the Xbox to get out to the internet
If these things aren’t working for you after setting up FTP to your Xbox following one of the above configurations then there could be a few reasons why. I’ll go over each configuration and describe what you MAY need to modify to get these working.
Configuration 1
With configuration 1a, you can NOT get out to the internet. You would need to either buy a router or another NIC for your PC. Once you’ve purchased one of those, your configuration will follow one of the others. With configuration 1b, you generally can NOT get out to the internet either. If you have this configuration and your PC can get out to the internet then it is probably getting a public IP address from your ISP. This assumes you have a hub or a switch and not a router. You can buy a router and then follow configuration 3, but if you don’t want any new hardware then you can probably only get your Xbox or computer on the internet one at a time. In other words when your computer has the IP from your service provider you can get on the internet. Then maybe you switch it to a private IP in order to FTP to the Xbox. Well to get your Xbox on the internet you’d have to get your Xbox that public IP from your service provider. Set your Xbox to use the same settings as your computer does to get that IP. If you aren’t using DHCP make sure you don’t forget to enter the DNS values otherwise addresses won’t resolve. Remember your computer should either have the private IP values or be turned off in order for your Xbox to successfully get the public IP from your service provider. Some ISPs will give you more than one public IP to use. If that is the case then your computer and Xbox can be on at the same time through the hub or switch.
Configuration 2
The last paragraph in configuration 2 from above describes using ICS to get your Xbox out to the internet. So this is the first step you would need to take. If you are using ICS and you have your Xbox set to use DHCP then it should be done. If, however, you have set your Xbox to a static IP and aren’t able to use linksboks or get the news feeds then chances are you are simply missing the DNS values. Go to a command prompt on your PC that can access the internet and run ‘ipconfig /all’ without the quotes. Look for the NIC that has the connection to the internet and look at the DNS values it has. Whatever they are, use those values in the static configuration of your dashboards network settings. So if you look at the examples I’ve given, most of the DNS values are either blank or set to 0.0.0.0. Just take the DNS IP’s from the ipconfig /all and replace the 0.0.0.0 in the Xbox configuration file with those new values. Save, reboot, and you should be all set.
Configuration 3
This configuration is very easy to get working as well. Again, if you are using DHCP on your Xbox then you shouldn’t be having any problems. If you are using a static IP in this configuration then, just like configuration 2, you are probably only missing the correct DNS values. Follow the same procedure as in configuration 2 to get the DNS values filled into your dash configuration file.
Other ways to Connect
There are a few other ways to connect to your Xbox without using an ftp client. I'd like to mention them here just to cover the 'networking' your Xbox topic but I'll link to the guides/tutorials that I think cover the connection the best. Also, all these other connections still use the ftp protocol, I'll cover telnet later.
You can map a network place on your computer to your Xbox so instead of needing to fire up an ftp app you could just go to windows explorer or a shortcut on your desktop to double-click and there is all your Xbox. Two tutorials have already been written that explain how to do this in Windows XP and Windows 2000.
For winxp: http://www.xbox-scene.com/articles/map-xp.php
For win2000: http://www.xbox-scene.com/articles/evoguide6.php - This guide uses webdrive to accomplish this on Windows 2000. Some other software I think would work as well is Internet Neighborhood Pro and FTP Desktop but I've tried none of them so can't recommend one over the other. If you find any freeware app that will provide this functionality let me know and I will try it out and add it here.
You can ftp to your Xbox direct from your web browser. Basically in your web browser instead of putting in http://www.website.com you would put in something like ftp://xbox:xbox@ and it should open right up to the contents of your Xbox folder structure. Nice and simple, no third party ftp client needed. A good guide for this can be found here: FTP using Internet Explorer and be sure to read the rest of the thread for some tips and answers to questions. There is also a tutorial on the tutorials page here: http://www.xbox-scene.com/articles/ftp-ie.php. Please keep in mind this functionality is not limited to Internet Explorer only. Most browsers support typing in ftp:// instead of http:// if you want to ftp. I use the Opera browser and can connect the same way. If you ever forget the format to use to send the username and password in the address bar you can also (at least with IE and Opera) connect just by typing ftp:// and then you should get a pop up box prompting you for the username and password.
Xbox to Xbox Transfers
If you have two Xbox's and want to transfer directly between them there are a few ways to do it. For any way your Xbox's still need network connectivity between each other. You could set them up just like configuration 1 from above or even hook them up to a router and use DHCP.
If you use Avalaunch as your dashboard then the easiest way for you would be to use the File Manager that is built in. When you launch the file manager click start and select switch to remote. Move over to the right side now (which is the remote side) and hit start again. Now select add FTP Server. Enter the IP address info of your other Xbox. Once this is setup you should then be able to switch back and forth between local and remote sides and transfer your files.
If you don't have Avalaunch as your dash you can run a program called XB-FTP. This program you would launch as an app from one Xbox and it your FTP Client. The other Xbox you would leave booted into whatever dash you run and it would be the FTP Server. There is another application you can run on your Xbox called xToolbox. You can use this app to transfer between two Xbox's as well just go into its file manager once it loads and it should be self explanatory for you. Just make sure you edit the host.ini file with the applicable IP address's for your local and remote Xbox.
You don't have to use XBMP, you can use any dash that supports PASV for this method.
Troubleshooting
First is to verify you are communicating with your Xbox. Run a command prompt and ping your Xbox IP address. In our example that would be 'ping 192.168.0.3'. Also, If you seem to have a connection that gets dropped every so often try to ping like this: 'ping -l 1024 -t 192.168.0.3', this will continuously ping your Xbox with 1024 bytes. Hit ctrl-c to end it. If you get any timed out then maybe you need a new Ethernet cable somewhere. If you can ping try a. and b. below, if you can't ping read that and the rest.
If you can ping but still have problems with FTP, make sure PASV is disabled in your FTP client if evox is your dash. Go to the help for your ftp client to figure out how to do it if you don't know how.
Make sure any firewall programs you run are turned off. Especially if you run Windows XP there is a default firewall that may be on. Its in the advanced properties of your NIC where you can uncheck the box for it to verify it isn't on. Also even if you think you disabled a firewall it could still be blocking ports. Crap Software firewall can behave this way. It does this to ensure no virus or rogue program can disable it. Instead of disabling Crap Software just add the IP address of your Xbox or even the entire subnet as Trusted. Then it will allow packets through.
If you can't ping make sure you check 1b, but also make sure you are using the correct Ethernet cables for your setup. Refer to the basics above about the crossover cable. Try pinging your local computer with these commands: 'ping 127.0.0.1' and 'ping localhost'. If you can ping these it's a good sign your TCP stack and driver for your NIC are loaded properly. If these do not ping correctly the first thing to try is to reload the driver for your NIC or search the manufacturer's website for an updated driver.
Try different ftp clients or make sure you are using the latest version of the client you have, especially if you are using the EvolutionX dashboard make sure you try FlashFXP if you are experiencing any problems.
Make sure you have the video cable plugged into the back of your Xbox (problem experienced by ndiguy). Note: the video cable doesn't have to be connected to your TV but does need to be connected to the back of the Xbox.
Run a sanity check if all else fails... make sure the settings you think are in your evox.ini are actually there. Run a command prompt on your pc and type 'ipconfig /all'. This will list all the settings all the NICs on your computer have. Verify they are all what you think they should be. When posting in the forums for more help try to include these two things in your post, it's a good first step.
If you get No Link! when you boot your Xbox make sure it is set to static ip. Verify the computer or whatever you have it connected to is booted up first and set up correctly. Then boot or reboot the Xbox. Make sure the cable and other hardware you are using is good. As a last resort, maybe your Xbox NIC is bad and needs replacing.
“I have two Xbox’s at home and two separate Xbox live accounts, but when they both try to play live at the same time one always gets booted or disconnected, what’s going on?” There could be a number of things but if you’ve checked everything else and think your network is all good, etc then whatever router you have these connected to could be handling PAT (port address translation) incorrectly. I know for a fact the current Linksys products will not handle this configuration properly. I also know that the Dlink DI-614 does handle this correctly and so would work with this configuration. If you have a different brand router and have this configuration let me know if it works or not for you so I can make a good list of who handles PAT correctly and who doesn’t.
Nothing seems to work for you? Post your problem on the Xbox-scene forums. In your post try giving as much info as needed. Describe how you have things physically connected. Post the network section of your dash’s configuration. Post an ipconfig /all from your computer (or just all IP information). Post any specific error messages you get, especially an FTP log if you can ping your Xbox but just can’t seem to login. Post what software you use on the Xbox and your PC. Finally, make a new thread for your problem, don’t post as a reply to someone else’s problem and don’t just PM someone you think will help.
FTP Speed Issues
Once people start using FTP the next problem they may have is the speed being too slow. The key to addressing this issue is to try everything! Change your configuration, change software, use every combination of my suggestions below. The more you do the better chance something will reveal itself as the culprit to your slow speeds. Here is a common list of things to check to help improve your speed:
Try the extended ping from number 1 in the troubleshooting section. If you get some replies and some timed outs during that ping this could slow down your speed. Replace your cable(s), update driver(s), try different NIC, etc.
In the advanced properties of your NIC you should be able to find the settings for the speed and duplex of your card. Change these settings and see if some combination gives you better speed than others. Start with speed of 100 and full duplex and cycle through 100/half, 10/full, 10/half.
Check how much free space you have on the PARTITION you are ftp'ing to. If you have an 80GB hard drive and it says you have 20GB left, that doesn't mean you have 20GB of free space left on that partition. That partition could have very little space left while another partition has 18GB left. There are some reports that with <2gb>
If you are using a wireless or usb NIC setup try going wired with standard Ethernet to see if that narrows down the problem for you. And if you were using DHCP try assigning a static IP to your Xbox instead. Also try changing the channel that your wireless is currently communicating on. There could be more interference slowing down your speeds on a certain channel. At least try channels 1, 6, and 11.
Try different software on both ends... experiment. All configurations will be different. Try different FTP clients, updating FTP clients and even try using a different ftp server on the Xbox. One post on the forums suggested that switches from Evox to nexgen increased ftp speeds to the F: drive. The Avalaunch dash seems to be a pretty stable and fast FTP Server as well.
Try different hardware... don't overlook this! For example, if you have a hub, try a new one or better yet get a switch.
If you are using FlashFXP (or maybe try this with any client), some forum posts have suggested that by changing the transfer packet size from 4096 to 2048 you could see a speed increase. Some people run fine at 4096 but I know of at least one instance where changing this value to 2048 has helped tremendously.
Suggestions from ILLusionsOfGrander member on xbox-scene:
Make sure the NIC on your PC is not just a 10 mbit NIC but a 10/100 mbit NIC. Using a 10/100 NIC as opposed to just a 10 can definitely increase transfer rates
If you go to the advanced settings of the NIC in your PC, some cards have a "Early TX Threshold" value. Upping this value from its default can also increase speeds. The example given was with a Dlink card and its default value was 8 and changed to 38. This increased the speed from 6500 kBps to 11000 kBps.
Wireless Xbox
I've noticed a few posts about how to get the Xbox on a wireless network so figured I'd touch on the subject here and give my thoughts on hardware to accomplish such a thing. First thing to consider is whether you want to use 802.11b or 802.11g. Discounting any other deciding factor you may have, and focusing solely on Xbox functionality, if you want to use your Xbox for ftp transfers and to play Xbox live then you'll be fine with 802.11b. If you think you'll want to stream movies or music to it and will want to do a lot of large (over 100mb) ftp transfers you'll want to go with 802.11g. With that...
There are two setups you can use to communicate with your Xbox wirelessly. The first and least common way would be in an ad-hoc fashion. This would be the exact same as using a crossover cable from the Xbox to your pc just without the actual cable. Basically your computer would have some sort of a wireless card whether USB, PCI, or if it's a laptop then a PCMCIA or mini-PCI. For your Xbox you would get a wireless to Ethernet bridge (I'll mention brands in the next paragraph) and basically just RTFM for how to set it up in ad-hoc mode to communicate to the wireless card in your computer. Again, this would be like using a crossover cable, only your computer and Xbox would communicate with each other.
The most popular way which most people would want to implement is with a wireless access point/router. From Linksys if you decided to go with 802.11b you could get model BEFW11S4, if you want 802.11g the WRT54G. From Dlink for 802.11b the DI-614+ is a good one and for 802.11g the DI-624. Now to get your Xbox to communicate wirelessly with one of these access point/routers you would need a wireless to Ethernet Bridge for it. From Linksys for 802.11b you could get a WET11 and for 802.11g the WET54G. From Dlink for 802.11b the DWL-810+ and for 802.11g the DWL-G810. From here it's really just a matter of reading the manual's (if you even need to) to get these bridges to associate to the SSID of your access point.
Now I'd like to say don't think these are the only products that work. There are many other companies with products that do the exact same thing. I just listed the most common of the ones I'd recommend using and if you look up the product you'll get an idea of what to look for from other companies. I'm also not a fan of the MS wireless Ethernet bridge devices. Currently, from what I've seen you need to configure it from the MS dash and with a modified Xbox this isn't always a good thing. However, obviously they will work just fine so feel free to check them out too.
Mar 30, 2008
Windows Xp folder Settings Malfunction
If for any reason your Win Xp Folder View does Not Stay To You're Setting.
Grab your registry editor and join in
Why Doesn't Windows Remember My Folder View Settings?
If you've changed the view settings for a folder, but Windows "forgets" the settings when you open the folder again, or if Windows doesn't seem to remember the size or position of your folder window when you reopen it, this could be caused by the default limitation on storing view settings data in the registry; by default Windows only remembers settings for a total of 200 local folders and 200 network folders.
To work around this problem, create a BagMRU Size DWORD value in both of the following registry keys, and then set the value data for both values to the number of folders that you want Windows to remember the settings for. For example, for Windows to remember the settings for 5000 local folders and 5000 network folders, set both values to 5000.
Here is how:
Follow these steps, and then quit Registry Editor:
1. Click Start, click Run, type regedit, and then click OK.
2. Locate and then click the following key in the registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell
3. On the Edit menu, point to New, and then click DWORD Value.
4. Type BagMRU Size, and then press ENTER.
5. On the Edit menu, click Modify.
6. Type 5000, and then click OK.
AND:
1. Locate and then click the following key in the registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam
2. On the Edit menu, point to New, and then click DWORD Value.
3. Type BagMRU Size, and then press ENTER.
4. On the Edit menu, click Modify.
5. Type 5000, and then click OK.
Note:
When you use roaming user profiles, registry information is copied to a server when you log off and copied to your local computer when you log on. Therefore, you may have performance issues if you increase the BagMRU Size values for roaming user profiles.
Grab your registry editor and join in
Why Doesn't Windows Remember My Folder View Settings?
If you've changed the view settings for a folder, but Windows "forgets" the settings when you open the folder again, or if Windows doesn't seem to remember the size or position of your folder window when you reopen it, this could be caused by the default limitation on storing view settings data in the registry; by default Windows only remembers settings for a total of 200 local folders and 200 network folders.
To work around this problem, create a BagMRU Size DWORD value in both of the following registry keys, and then set the value data for both values to the number of folders that you want Windows to remember the settings for. For example, for Windows to remember the settings for 5000 local folders and 5000 network folders, set both values to 5000.
Here is how:
Follow these steps, and then quit Registry Editor:
1. Click Start, click Run, type regedit, and then click OK.
2. Locate and then click the following key in the registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell
3. On the Edit menu, point to New, and then click DWORD Value.
4. Type BagMRU Size, and then press ENTER.
5. On the Edit menu, click Modify.
6. Type 5000, and then click OK.
AND:
1. Locate and then click the following key in the registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam
2. On the Edit menu, point to New, and then click DWORD Value.
3. Type BagMRU Size, and then press ENTER.
4. On the Edit menu, click Modify.
5. Type 5000, and then click OK.
Note:
When you use roaming user profiles, registry information is copied to a server when you log off and copied to your local computer when you log on. Therefore, you may have performance issues if you increase the BagMRU Size values for roaming user profiles.
Labels:
guide,
Help,
Maintenance,
Notes,
Tips,
turorial,
Windows Xp
Subscribe to:
Posts (Atom)