From owner-freebsd-questions@FreeBSD.ORG Fri Apr 9 07:00:46 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 38DBA16A4CE for ; Fri, 9 Apr 2004 07:00:46 -0700 (PDT) Received: from mta3.adelphia.net (mta3.adelphia.net [68.168.78.181]) by mx1.FreeBSD.org (Postfix) with ESMTP id E027243D58 for ; Fri, 9 Apr 2004 07:00:45 -0700 (PDT) (envelope-from Barbish3@adelphia.net) Received: from barbish ([67.20.101.71]) by mta13.adelphia.net (InterMail vM.5.01.06.08 201-253-122-130-108-20031117) with SMTP id <20040409133545.HNXG13425.mta13.adelphia.net@barbish>; Fri, 9 Apr 2004 09:35:45 -0400 From: "JJB" To: "Rob" , Date: Fri, 9 Apr 2004 09:35:44 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 In-Reply-To: <407643B7.3080308@users.sourceforge.net> Subject: RE: FreeBSD router: Can my internet provider detect my home network? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Barbish3@adelphia.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Apr 2004 14:00:46 -0000 Your assumption is correct. For all practical purposes ISP's can not determine that an customer is using NAT or not. But like all things on the internet, with special custom packet interrogation focused on an particular customer it is possible to technically determine if that customer is using NAT. The cost and effort for an ISP to do that is cost prohibitive when the only result is to terminate the customers account. ISP's have more pressing security and usage abuse matters to invest money in than to look for home users who use NAT. Home Lan environments using Nat are very common, so feel free to join the rest of us who are doing it now. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Rob Sent: Friday, April 09, 2004 2:33 AM To: freebsd-questions@freebsd.org Subject: FreeBSD router: Can my internet provider detect my home network? Hi, I plan to have a FreeBSD (4.9 stable) system serving as a router between my provider and a set of my home computers connected via a home network. My provider does not really like this, but I don't care so much, as long as s/he cannot detect (too easily) my home network. My plan is to use the following setup in my rc.conf: gateway_enable="YES" natd_enable="YES" natd_interface="rl0" firewall_enable="YES" firewall_type="open" (with, of course, the proper options compiled into the kernel). Is it correct, that the combination of firewall and natd divert all requests and thus hide the home network for my provider? Are requests from all other networked home PC's done on behalf of the router, so that my provider will only see requests from my router? Or do I need some better (firewall?) configuration for this? Thanks, Rob. _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"