From owner-freebsd-questions@FreeBSD.ORG  Thu Apr  8 23:49:10 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6567C16A4CE
	for <freebsd-questions@freebsd.org>;
	Thu,  8 Apr 2004 23:49:10 -0700 (PDT)
Received: from priv-edtnes51.telusplanet.net (outbound04.telus.net
	[199.185.220.223])
	by mx1.FreeBSD.org (Postfix) with ESMTP id ECA8C43D45
	for <freebsd-questions@freebsd.org>;
	Thu,  8 Apr 2004 23:49:09 -0700 (PDT)
	(envelope-from viktorlazlo@telus.net)
Received: from byx0rm.mr-clevver.com ([206.116.67.130])
	by priv-edtnes51.telusplanet.netESMTP
	<20040409064909.BPZF2223.priv-edtnes51.telusplanet.net@byx0rm.mr-clevver.com>;
	Fri, 9 Apr 2004 00:49:09 -0600
Date: Thu, 8 Apr 2004 23:50:14 -0700 (PDT)
From: Viktor Lazlo <viktorlazlo@telus.net>
X-X-Sender: viktorlazlo@byx0rm.mr-clevver.com
To: Rob <nospam@users.sourceforge.net>
In-Reply-To: <407643B7.3080308@users.sourceforge.net>
Message-ID: <20040408234018.N66437@byx0rm.mr-clevver.com>
References: <407643B7.3080308@users.sourceforge.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: freebsd-questions@freebsd.org
Subject: 
	Re: FreeBSD router: Can my internet provider detect my home network?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Apr 2004 06:49:10 -0000

On Fri, 9 Apr 2004, Rob wrote:

> Is it correct, that the combination of firewall and natd divert
> all requests and thus hide the home network for my provider?
> Are requests from all other networked home PC's done on behalf of
> the router, so that my provider will only see requests from my router?

Your firewall and natd ensure that anyone outside of your network,
including your ISP, will only be aware of your external, routable IP
address.  What will be visible to the world are the ports accessible on
that IP that are being redirected to the RFC 1918 addresses on your local
network.  The only way to conceal those is to lock them down when you
don't need to allow a connection through them, or to reassign them to
non-standard ports, as most ISP's are only bothered about ports 25 and 80.
I'm not aware of any ISP's that have done any major crackdown on customers
merely for having those ports open, generally they monitor traffic and
check on ones generating a lot of throughput on the assumption they are
hosting porn, warez or a commercial site.

Cheers,

Viktor