Re: FreeBSD router: Can my internet provider detect my home network?

From: Uwe Doering (gemini_at_geminix.org)
Date: 04/11/04

Next message: Julien Gabel: "Re: Can't *write* to a hard disk, not even a slice using fdisk(8)."

Previous message: Dan Langille: "The FreeBSD Diary: 2004-03-21 - 2004-04-10"
In reply to: Rob: "FreeBSD router: Can my internet provider detect my home network?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Sun, 11 Apr 2004 09:24:37 +0200
To: freebsd-questions@freebsd.org

Rob wrote:
>
> I plan to have a FreeBSD (4.9 stable) system serving as a router
> between my provider and a set of my home computers connected
> via a home network.
>
> My provider does not really like this, but I don't care so much,
> as long as s/he cannot detect (too easily) my home network.
> [...]
>
> Is it correct, that the combination of firewall and natd divert
> all requests and thus hide the home network for my provider?
> Are requests from all other networked home PC's done on behalf of
> the router, so that my provider will only see requests from my router?

If they want to, they can detect that there's more than one computer
using that link. They just need to look at the TCP sequence numbers.
This way they can associate TCP packets with their individual
originating hosts. If they see more than one group of sequentially
increasing TCP sequence numbers they know that you're cheating.

Whether they really care about it as long as you're not causing
excessive network traffic or other trouble is a different matter.

The only way to really hide your computers is to block direct Internet
connections and instead use proxy software on a gateway server for each
and every service. IMHO, quite an effort for probably just a couple of
bucks saved. Larger companies do this, but for security reasons and
also to control what their employees do on the Internet.

Uwe

-- 
Uwe Doering         |  EscapeBox - Managed On-Demand UNIX Servers
gemini@geminix.org  |  http://www.escapebox.net
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

Next message: Julien Gabel: "Re: Can't *write* to a hard disk, not even a slice using fdisk(8)."

Previous message: Dan Langille: "The FreeBSD Diary: 2004-03-21 - 2004-04-10"
In reply to: Rob: "FreeBSD router: Can my internet provider detect my home network?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Re: JAVA PERMISSIONS and webcam - question
... >to the other computers on my home network? ... For some reason, I recall ... The other two PCs are wirelessly connected to it and the router is the ... Could the other computers have just picked it up just ...
(comp.lang.java.programmer)
Re: connecting to home computer through router without direct IP address?
... want to purchase a static IP from my provider. ... > I have a home network with two computers, a dsl router/modem, and wireless ... > externally visible IP address is attached to the router and not the ...
(microsoft.public.win2000.networking)
Netgear WGR614v1 WAP & WG511 card - Success!
... her home network up and running (2 WinXP Home computers). ... DHCP enabled on router. ...
(microsoft.public.windowsxp.network_web)
connecting to home computer through router without direct IP address?
... I have a home network with two computers, a dsl router/modem, and wireless ... connectivity. ... externally visible IP address is attached to the router and not the ...
(microsoft.public.win2000.networking)
FreeBSD router: Can my internet provider detect my home network?
... I plan to have a FreeBSD system serving as a router ... My provider does not really like this, but I don't care so much, ... as long as s/he cannot detect my home network. ...
(freebsd-questions)