[PLUG] mangle rule to foil idiot ISPs
Carla Schroder
carla at bratgrrl.com
Thu Sep 28 19:42:05 UTC 2006
On Thursday 28 September 2006 11:13, Aaron Burt wrote:
> On Thu, Sep 28, 2006 at 10:38:45AM -0700, Carla Schroder wrote:
> > iptables -t mangle -A OUTPUT -j TTL --ttl-set 125
> >
> > The idea is to foil idiot ISPs who don't want users sharing their Internet
> > connections by setting all TTLs to the same value.
>
> Aroo? I remember some theoretical analyses counting the number of NATed
> devices using portnums and suchlike, but TTL varies anyway, dunnit?
Good question. I figured there must be more than one way to hunt down fiendish
scofflaws. It's not something I'm familiar with, since I've always had good
ISPs. I heard about this via a couple of different sources.
>
> > At any rate, does it look right?
>
> Works for me, all outgoing packets get the selected TTL.
Thanks for checking.
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Carla Schroder
check out my "Linux Cookbook", the ultimate Linux user's
and sysadmin's guide! http://www.oreilly.com/catalog/linuxckbk/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
More information about the PLUG
mailing list