LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-30-2005, 07:39 AM   #1
Roger Krowiak
Member
 
Registered: Oct 2004
Distribution: Slackware
Posts: 39

Rep: Reputation: 18
Question Disable passive NAT detection


I've successfully set up the iptables to produce the same TTL value for all outgoing packets, but there is still passive way how to detect NAT using the ID field of IP packets (as described here). There is a possibility to eliminate this by setting the ID of IP packets to the same value (e.g. 0), but this means that I will have to turn the DF (don't fragment) flag to all outgoing packets. And my question is - can I do it safely? I use Internet for mails, www and some games and I'm not sure if this won't break them.

Or, is there any other way how to eliminate NAT detection using ID field? Thank for reactions.

Last edited by Roger Krowiak; 05-30-2005 at 07:41 AM.
 
Old 05-30-2005, 08:05 AM   #2
bramhastra
Member
 
Registered: May 2005
Location: India
Distribution: RHEL 4.0
Posts: 136

Rep: Reputation: 15
you need an IPSpoofer.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to disable sata detection ? Karlsonas Linux - Hardware 2 10-05-2004 04:25 PM
Disable floppy detection on boot? magicvash Mandriva 0 11-18-2003 01:34 AM
iptables and passive ftp behind NAT radix Linux - Security 7 10-21-2003 03:06 PM
iptables and passive FTP behind the nat radix Linux - Security 5 09-16-2003 08:14 PM
vsftpd behind router doing nat - enabling passive alansk Linux - Software 0 07-16-2003 07:13 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:11 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration