this post was submitted on 08 May 2024
405 points (96.6% liked)

Steam Deck

14894 readers
62 users here now

A place to discuss and support all things Steam Deck.

Replacement for r/steamdeck_linux.

As Lemmy doesn't have flairs yet, you can use these prefixes to indicate what type of post you have made, eg:
[Flair] My post title

The following is a list of suggested flairs:
[Discussion] - General discussion.
[Help] - A request for help or support.
[News] - News about the deck.
[PSA] - Sharing important information.
[Game] - News / info about a game on the deck.
[Update] - An update to a previous post.
[Meta] - Discussion about this community.

Some more Steam Deck specific flairs:
[Boot Screen] - Custom boot screens/videos.
[Selling] - If you are selling your deck.

These are not enforced, but they are encouraged.

Rules:

Link to our Matrix Space

founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] Telorand@reddthat.com 1 points 6 months ago (1 children)

Good to know. Got any specific sources for the scripting, or should I just search for something like "option 121 mitigation?"

[–] Buelldozer@lemmy.today 2 points 6 months ago* (last edited 6 months ago) (1 children)

I don't know if there's any pre-built scripting out there (yet) for this but it's relatively straight forward in Windows to use powershell and either look in the registry for the assigned dhcp options ( HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dhcp\Parameters\Options) or check the routing table for illogical routes.

Assuming that you aren't using split tunneling you could also have powershell check your external IP address for the expected result.

Another possibility is to grab the dhcp test tool from Github, run it in non-interactive mode and then parse it's output. Something I find VERY interesting is that Andrey Baranov specifically added Option 121 to that tool in March of 2023!

With any of those it's a matter of what you want to have happen when you detect the problem such as warning the user and disconnecting the vpn or attempting to mitigate the problem by reconfiguring the routing table.

I should point out that Option 121 is a legit thing and it does have valid uses so you can't assume something nefarious just because it's being used.

I'll probably be scripting up a remediation over the next few days, I'll try and remember to come back and share what I did.

[–] Telorand@reddthat.com 1 points 6 months ago

I'd appreciate it! It's interesting, if nothing else.

I'll have to read more about Option 121, because multiple sources said that Option 121 is used for "legitimate things," and yet Android doesn't implement it. Makes me wonder why Android doesn't have it, but other implementations do.