Your assumption is correct. For all practical purposes ISP's can not determine that an customer is using NAT or not. But like all things on the internet, with special custom packet interrogation focused on an particular customer it is possible to technically determine if that customer is using NAT.
The cost and effort for an ISP to do that is cost prohibitive when the only result is to terminate the customers account. ISP's have more pressing security and usage abuse matters to invest money in than to look for home users who use NAT. Home Lan environments using Nat are very common, so feel free to join the rest of us who are doing it now. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Rob Sent: Friday, April 09, 2004 2:33 AM To: [EMAIL PROTECTED] Subject: FreeBSD router: Can my internet provider detect my home network? Hi, I plan to have a FreeBSD (4.9 stable) system serving as a router between my provider and a set of my home computers connected via a home network. My provider does not really like this, but I don't care so much, as long as s/he cannot detect (too easily) my home network. My plan is to use the following setup in my rc.conf: gateway_enable="YES" natd_enable="YES" natd_interface="rl0" firewall_enable="YES" firewall_type="open" (with, of course, the proper options compiled into the kernel). Is it correct, that the combination of firewall and natd divert all requests and thus hide the home network for my provider? Are requests from all other networked home PC's done on behalf of the router, so that my provider will only see requests from my router? Or do I need some better (firewall?) configuration for this? Thanks, Rob. _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"