Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
04-21-2004, 01:11 PM
|
#1
|
Member
Registered: Aug 2003
Location: New Delhi, India
Distribution: RHEL AS 3/4, Windows XP
Posts: 546
Rep:
|
a question on Masking IP Address
Ok...I've been wanting to ask this question since a long time..so here it goes...
Suppose I have a public IP address 60.10.100.1. Now my question is, If I configure my box as a Proxy server, will I be able to hide my real IP address??
One very important point to note here is - that I want to implement this on my standalone home computer. So that means there is no router/gateway, which can be used as a Proxy server to shield my real IP address...
So, can I have my actual IP hidden from public view ( web sites and hackers) and give them the impression that I have an IP of 50.1.1.1 when in reality I have an IP of 60.10.100.1
Is this possible? If yes, then how? pls suggest...
Regards,
amit
|
|
|
04-21-2004, 04:42 PM
|
#2
|
LQ Guru
Registered: Sep 2001
Location: Montreal, Canada
Distribution: Slackware; Debian; Gentoo...
Posts: 2,163
Rep:
|
you could use a proxy or a NAT.
NAT is like a router, but done by a computer.
Illustration :
----------------
| INTERNET |
----------------
|
|
|
Proxy / Nat ( 60.1.1.1)
|
|
|
Workstation (50.1.1.1)
When Workstation try to reach internet, the "Proxy / Nat" translates his ip address in packet to 60.1.1.1, so everyone on the internet will talk to "60.1.1.1" instead of "50.1.1.1". Only the "proxy / nat" will know the real destination of the packets.
Now the only difference between Proxy and Nat is that Proxy cache requested site (mean save in memory), so site you often use will load faster. Proxy allow you to log trafic going outside your network (could be done with Nat too, but it is somehow harder). Proxy is used for http trafic, mostly.
However Nat is a bit easier to set up, and it will Nat every connection by default (not only Http one). Plus, Nat is transparent, mean you don't have to change (most) applications configuration.
|
|
|
04-21-2004, 11:51 PM
|
#3
|
Member
Registered: Dec 2003
Location: Australia
Distribution: Mandrake 9.2
Posts: 151
Rep:
|
no that is not possible, because eventually the data needs to return back to your computer. the only way this is possible is with what is called ip spoofing, where you change you ip to be incorrect. this means all response to your requests go somewhere else. This is the technique used for DOS attacks.
BUT what you can do is find a publically accessible proxy server. Then configure your browser to use that. This will mean all web pages you view will appear to have come from the public proxy instead of you.
|
|
|
04-22-2004, 12:15 AM
|
#4
|
Member
Registered: Aug 2003
Location: New Delhi, India
Distribution: RHEL AS 3/4, Windows XP
Posts: 546
Original Poster
Rep:
|
Thanx leckie..But do u know of any such proxy server? Will it be safe to use a public proxy server to access the internet? What do u feel ?
Regards,
amit
|
|
|
04-22-2004, 12:47 AM
|
#5
|
Member
Registered: Sep 2003
Location: Raleigh, NC, USA
Distribution: Fedora
Posts: 88
Rep:
|
Is it safe? Well, that is a judgement only you can make. Do you trust the owner of a public proxy to not capture all of your data and look for sensitive data? I personally want as few things as possible between me and the websites that I browse. Fewer eyeballs that could see me.
If you don't use a proxy, then other sites can get your IP address. My feeling is "so what?", but that only applies to me. Again, it is your call.
If you really want safety, buy a big safe. Put your computer in it with the power off. Hire some security guards to protect it. Your computer and everything on it are safe. Useless? yes, but very safe. As soon as you put it on the internet, you add risk because you have added accessibility. The line between risk and safety is one that only you can draw. It all depends on what you want to protect yourself from.
You may want to look at using privoxy. It won't mask your address, but it will protect you against popups, cookies, and many other bad things on the web.
|
|
|
04-22-2004, 03:57 AM
|
#6
|
Senior Member
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
|
If you want to hide your IP from "hackers", then what you're really asking is how do you secure your box from being compromised. What you want in that case is a good firewall, host-IDS, disable all unsafe services, etc...
If you want to hide your IP from the websites you visit, then you want an anonymizer, which like leckie said you could do via public proxies, but then the proxy knows not only your IP, but all the data you're sending, so potentially that could be a real problem (third party viewing your transactions). I personally would not just use a random open proxy I found on a list.
Unless you're doing something illegal, it generally isn't worth the hassle to use open proxies. If you are doing something illegal, well if you aren't bright enough to know how to cover your tracks, then it's already too late and you're going to get nailed--not that I encourage illegal activities when you think you can get away with it, it's always wrong, but if you're going to get caught it doesn't even benefit you.
|
|
|
04-22-2004, 05:58 AM
|
#7
|
Member
Registered: Aug 2003
Location: New Delhi, India
Distribution: RHEL AS 3/4, Windows XP
Posts: 546
Original Poster
Rep:
|
Chill out guys...When I asked that question, I didnt have any malicious ideas in mind. For that matter, I feel if one's got to get involved into such illegal activities, then may be LQ is the wrong place for that person...
Let me tell u why i asked that question...I am trying to set up web server using apache, but I am not too much into iptables...and moreover I only have a standalone PC to play with...no LANs or dummy networks here!...so that means that I dont have much scope to experiment with my setup...Now since, DNS resolution also shows the IP address of the server in the status bar of the browser, I dont wish the public accessing my server to know the real IP address...(which is not in my hand), unless I use another machine as a Proxy!....So thats why i wanted to know if I can mask my real IP so that people can access my site hosted on my server using the domain-name rather than the IP address....
cetialphav, chort .. Thanks for alerting me on the security aspect of this, but I am aware of the security implications of logging on to the Internet....
I agree chort, a strong firewall setup and an IDS will be necessary, so I'll be dwelving into those sometime later...
Anyways, everyone, thanx for the suggestions...
Regards,
amit
|
|
|
04-22-2004, 08:01 AM
|
#8
|
Senior Member
Registered: Dec 2000
Location: Gothenburg, SWEDEN
Distribution: OpenSUSE 10.3
Posts: 1,028
Rep:
|
Well, DNS is only for humans. Computers use IP for addressing together with MAC address in the end.
Hiding the IP of your server is like inviting people to a party without giving the address it will be held. How to find your server if you hide?
Tell people where to find you but put locks in your doors.
|
|
|
All times are GMT -5. The time now is 05:21 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|