核心背景:华为HN8145x6电信版内置了三个容器,其中一个是openwrt。这个openwrt加载了一个overlay的rootfs,它的upper dir是可写的,所以可以玩。, W2 Y& v2 l( N
: v* l+ Q+ v$ O2 F3 s( d3 T首先,要telnet或者ssh进去光猫,补全shell,登录之后执行su、shell,再su一次得到root权限,然后执行下列命令
; E6 Z" i8 O' Q& I; }
6 C. q" m- T+ a; c#拷贝iptables套件到openwrt容器
. S0 K6 E; Q/ E5 _WAP(Dopra Linux) # cd /opt/upt/apps/apps/9 `5 N/ f. S* ~6 [1 U
WAP(Dopra Linux) # mkdir -p sbin) e0 W+ Y9 I9 D- @ ^
WAP(Dopra Linux) # chmod 755 sbin- ]* c5 Y* n! m8 { W$ ]' v
WAP(Dopra Linux) # cd sbin
6 B3 a6 k0 H+ f$ M, fWAP(Dopra Linux) # cp -a /sbin/*tables* .
3 Q5 ~9 F* J# {5 q: H( NWAP(Dopra Linux) # chown root:root *# T7 d1 }; p: Y$ K8 N2 |+ c
WAP(Dopra Linux) # chown root:root -h *
' E5 h# n. y2 ~: r
B4 L0 B2 J6 F: @#创建你自己的iptables规则,这里只是举例,切勿照抄- e3 V! ?4 ]- `8 p
WAP(Dopra Linux) # cd /opt/upt/apps/apps/etc
5 c* X0 K, D# L; M! F gWAP(Dopra Linux) # echo "#!/bin/sh" > rc.local1 `- X( L& r, {. L+ F# I
WAP(Dopra Linux) # echo "" >> rc.local
% A5 O/ j2 ]5 b+ cWAP(Dopra Linux) # echo "ip6tables -N FWD_PKU" >> rc.local
: o; g/ ^) s* AWAP(Dopra Linux) # echo "ip6tables -A FWD_PKU -s 2001:da8:201::/48 -j ACCEPT" >> rc.local( ~/ G# _ J0 _6 Y) a5 t
WAP(Dopra Linux) # echo "ip6tables -I FORWARD -j FWD_PKU" >> rc.local; i8 E6 K% [ w% ?; h6 y3 q+ }
WAP(Dopra Linux) # chmod 755 rc.local* ~# }( m$ O4 o3 N2 `
. g+ w& h3 ~- a* [2 c$ ^#重启,OK
9 `4 t% r$ h- j! t, v8 ?* R7 ?WAP(Dopra Linux) # cd /; K" k p1 _5 E: c
WAP(Dopra Linux) # reboot& L: S8 Y+ z# X: Q! X! ^
' c, ~7 G" B& ~1 |8 A5 E* m思路来自于大佬achaoge的帖子[光猫] 玩机:激活华为光猫的小宇宙-openwrt |
粤公网安备44152102000001号 
发表于 2022-1-25 15:54:04