Le mercredi 03 mai 2006 à 10:41 +0600, isp@xxxxxxxxxxx a écrit : > I am new here. I am working in an ISP. I like to know that how can I > prevent user to use multiple computer with single internet connection? I > have searched on the web and found nothing. Before preventing, you need to detect. And there's _plenty_ of papers online about that. Imho, the best ways are TTL matching and IPID classes observations. > I think it is only possible by detecting different TTL value that comes > from same IP address. And I didn't get any thing from the web. I like to > know that is it possible to do with IPTABLES? And how can I detect > defferent TTL Value with IPTABLES? iptables -m ttl --help But, what do you think people will do if ISPs are begining to enforce something like this ? Traffic normalization, which is very easy. For instance, you can rewrite TTL field on the fly with Netfilter : iptables -j TTL --help And all your traffic now exhibits the same TTL value, whatever host can send it... <rant> BTW, I don't understand why there's still ISP in this world still losing their time on detecting and preventing connection sharing. For what I could see for some that acutally do this, they really should consider spending their time on improving quality of service... </rant> -- http://sid.rstack.org/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE >> Hi! I'm your friendly neighbourhood signature virus. >> Copy me to your signature file and help me spread!
