8
zemaitis
160d

my ISP provides me an external IP address. what is the easiest way to hide that external IP and show only my local ip lets say 192.168.1.113 to the outside world?

Comments
  • 18
    😁 nice joke 😁
  • 7
    Shut down internet and send them a letter
  • 0
    @netikras So basically it depends on ISP. Thanks for informative answer
  • 12
    @zemaitis oh, I indeed thought that's a joke :o

    since now I see it's not -- you cannot exposr your lan ip to the world. It's just not possible.

    What you COULD do to "hide" your IP is to use some proxy server or a vpn as a proxy. That way the outside world would see your proxy's address, not you actual ext ip**.

    ** the proxy host will still see your actual IP. But since you delegate all your calls to the proxy, the rest of the world will "think" it's the proxy server making those calls.
  • 1
    @netikras I see, thanks
  • 1
    There is no way to do this on IP level because e.g. 192.168.1.113 is a private network IP, and external routers will not even forward that.
  • 1
    @netikras and it's still possible that the actual ip leaks if some program decides to leak it
  • 1
    Well. It is possible.

    But don't expect any replies, and you risk your ISP blocking your account!

    Do not try this at home:
    Any decent firewall on the edge router can do a simple sourcea ddress override with a packet mangle op.
  • 0
    @magicMirror Even if you did that - how would the other side be able to reply, given that private network IPs have no public routing?
  • 4
    @Fast-Nop As I wrote:
    "don't expect any replies".

    😉
  • 0
    @magicMirror Ah I didn't get that it was this kind of reply. *ooops* ^^
  • 0
    @magicMirror possible? How?
  • 0
    You could use a VPS you controll as gateway and Route all your traffic through it using either openVPN or in Linux simple SSH. Note however the public IP of that VPS will be known.
  • 1
    @netikras
    read this:
    https://mellowhost.com/blog/...

    I did not say it is a good idea, or that it will work. because it won't. but you can spoof the source ip.
  • 0
    @magicMirror overwriting src_ip field in an outgoing ip packet? I doubt it would pass through ISP's infra. Even to the outside..
  • 2
    @netikras 🤦‍♀️
    thats why it was a joke! a joke! ffs.
  • 0
    @magicMirror I thought a joke was that the receiver will not know where to return the package 😁 [mirror attack?]

    anyway, the "joke" will not "show" the custom ip as OP asked for as the package won't get out far
  • 1
    @netikras But not all ISP drop outgoing packets based on weird source IPs.
    So... it is possible that the target server will get the packets. It just will not be able to send a reponse back.

    And this is called an "amplification" attack, done on the spoofed Ip, with the idea to ddos it. And thats why most ISPs will drop the packets.
  • 0
Add Comment