how to hide the public ip address from network users so if any user visited google or any websites like let say “whatismyip.com” he gets his local ip on the network.
i don’t know how to do it and not sure if it can be done by a script or the proxy of the mikrotik server.
in simple english “hidden public ip” …how?
you cannot hide it.
these sites will always show the address of your NAT-Router, your Proxy, or simply the public-address given to the user.
You can make an address list with all websites that provides this service and make a drop rule to this list.
Yes, but even gmail shows the last and current address accessed from, are you going to block that?
what is the problem if the user show this ip ???
u can use external proxy,then user show ip of proxy
i am sure that a script can do the job ,just remember guys everything is possible in the pc world,just how to do it,or how it can be done?
i am thinking to redirect codes that include the the word “your ip address” into a local page with some scary words about safety!
can it be done?
http://www.whatismyip.com/faq/automation.asp
html code:
<div id="ip">Your IP Address Is: <span id="203">4</span><span id="145">1</span>.<span id="63">2</span>34.<label class="135">1</label><label id="144">4</label><!--Do not scrape your IP from here, go to www.whatismyip.com/faq/automation.asp for more information on our automation rules.-->5.1<label id="22">0</label>5<br></div>
wth?
i found this while googling
http://groanmyip.com/
Not possible. Every site will use different wording. Other site will not use “your ip address” but will use “Current IP”, “Your IP” or any other combination of words, or maybe even in a different language. You can’t block half the internet just for this.
/ip firewall layer7 add name=ip regexp="your Real IP"
/ip firewall filter add action=drop layer7-protocol=ip
But this code have problen, not all browser can open websites content your ip
Like I said, you will need many such rules, for each language, different expression and word order. Plus, L7 rules will slow down your router, as they inspect every packet.
Also what if the page doesn’t use a URL that obviously marks it as a “What’s my ip” site or some such and then uses SSL?
the L7 rule above will inspect all content, not just URL.
and your L7 cannot look into encrypted packets. So going to block all TLS/SSL? traceroute also should be banned.
That’s what I was getting at just phrased poorly as I was tired.
lets do it for the decrypted then !
hiding the IP is not the security thing, it is not true logically and will no help to secure your network!
study the network security essentials, and train the real world security issues will helpful, i think this the right but hide the public IP address behind the nat? (if it possible) like erase the problem and no solve!
firewall chain is forward correct?
can i use the true static ip address"bla.bla.bla.bla" instead of the phrase “your Real IP”?
of course i didn’t try this idea,but i think it will be a mess
I’m not saying that this applies to the original poster, but as far as I know, this kind of wish (to hide public IP address) is used by illegal ISPs that just share an residential internet conection from another ISP to its customers. They just purchase a regular ADSL link in downtown and set up a backhaul to bring internet where the big telcos don’t have coverage.
Here in Brazil this is very common (despite the act this is a crime here) and what the legitimate ISP do is campaings teaching how users can see their public address and identify the real company providing the internet service.
may be in Brazil there are lots of criminals ,but in our situation we need that option to limit users that are not on our network from trying get the identity of the network runing in the air.
You can hide the ip address easily using the hide ip address software.You can search in Google and Download it.You can also use the proxy server to hide the Ip-address…It hide the original ip address and display fake ip address.You can check ip-address before and after hiding ip at Ip-Details.com it shows location and details of your ip address…