Is it possible to:OpenVPN + Mac Address Clone + DHCP Disable

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
3wheels1life7
DD-WRT Novice


Joined: 15 Nov 2013
Posts: 16

PostPosted: Fri Nov 15, 2013 19:06    Post subject: Is it possible to:OpenVPN + Mac Address Clone + DHCP Disable Reply with quote
Hi everyone,

I have a question.
Is it possible to use DD-WRT Mega V24 to do the following simultaneously?

1. Connect to a VPN server using OpenVPN and have all traffic from any connected devices flow through the VPN.

2. Clone MAC address of a computer and use it for the router.

3. Disable DHCP so IP addresses are not forwarded into the network (thus making it look like one computer).

Anything else to make the router difficult to detect on a network (so it looks like a regular computer).
Sponsor
eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 8034

PostPosted: Sat Nov 16, 2013 19:14    Post subject: Reply with quote
1. Yes, you need to configure it w/ a gateway directive (that’s usually on the UI, although I use tomato, not dd-wrt, so the latter may be different).
2. Yes, as long as the router has the cloning feature, you can use whatever MAC address you like, so long as it’s a valid MAC address and not in use elsewhere on the same local network.
3. Sure, you can disable DHCP and manually/statically assign IP addresses.

Note, I can see why changing the MAC address might help (e.g., it might suggest it’s a wireless client adapter instead of a router). But disabling the DHCP server is meaningless since that traffic only travels BEHIND the WAN, on your local network. The provider (school?!) would never see this traffic anyway. The only DHCP traffic the provider sees is your router’s own DHCP request to configure its WAN. And yes, MAC cloning *might* help hide the fact it’s a router since the provider would see that.

Truth is, if the traffic monitoring is sufficiently sophisticated enough (and that just depends on the resources the provider is willing/able to bring to the table), they will more than likely detect a router based on BEHAVIOR PATTERNS, and less so on technical details. That’s MUCH harder to hide, and thus where you’re most vulnerable. But again, that’s a resource intensive effort and not likely to be undertaken just to keep a college student’s router off the network (at least I wouldn’t think so).
3wheels1life7
DD-WRT Novice


Joined: 15 Nov 2013
Posts: 16

PostPosted: Sat Nov 16, 2013 20:55    Post subject: Reply Reply with quote
Thanks for your response eibgrad.
You guessed right. It's for college.
I appreciate your advice.
Any more suggestions? (I know to: hide SSID, enable NAT, Filter MAC addresses, use WPA2).
Thanks.

-3wheels1life7
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum