[tal ormanda]

Is there a way I can change my ip address. I have DSL.

This post has been edited by Gouki: 04 May 2006 - 09:26 PM

[hankjrfan00]

Depends on your isp.

But most people would rather have a static ip than a dynamic one.....until they get an ip ban from somewhere

[ophiel]

99% of the time with residential dsl you can change your ip simply by logging onto your router and disconnecting/reconnecting.

if you don't use a router, just turn your modem off and back on.

to verify the ip change, simply memorize the last number of your ip address beforehand (i.e. 134) and make sure it's different afterwards.

if you are unsure of your external ip address, check IP Chicken

[Gouki]

hankjrfan00, on May 5 2006, 06:44 AM, said:

Depends on your isp.

But most people would rather have a static ip than a dynamic one.....until they get an ip ban from somewhere

It depends on your ISP how you renew the IP!? All of the ISP's I know assign IPs by DHCP.

--

If you are using an ADSL Router with Ethernet (RJ45) port, you can renew it by doing the following commands on cdm.exe:

ipconfig /release
ipconfig /renew

However, if you are using an USB modem, this will not work.

[Maleko]

Gouki, on May 5 2006, 10:35 AM, said:

If you are using an ADSL Router with Ethernet (RJ45) port, you can renew it by doing the following commands on cdm.exe:

ipconfig /release
ipconfig /renew

However, if you are using an USB modem, this will not work.

Or you can right click the network icon in the system tray and click repair, ths does exactly the same thing
(except for USB modems again)


And yes, ISP's give out IP's by DHCP, even if you turn your modem off its the same IP until the lease expires. (same principle in Windows) it deals via MAC addresses.

Also, static IP's are only really necesary if you require the same IP ALL the time, like for remote access, gaming servers etc. Also, your less prone to attacks if you have a DHCP IP and not static, as your ip address changes with DHCP.

[Gouki]

Just a small correction Maleko, if you don't mind.

Dynamic IP addresses (assigned by DHCP) can also be used for remote access, FTP's, HTTP's, and other Internet services, however, it requires a third party company providing Dynamic DNS service.

This way the IP/IPs of the computer that gets the IP address from the ISP DHCP server is announced to that DDNS company that will keep the domain always up to date with the IP.

The IP is announced to the DDNS Provider, and then updated on the 'routing table'. (NOT! a 'true' routing table!)

P.S: Dohh! Forgot about the Repair option.

[hankjrfan00]

Gouki, on May 5 2006, 04:35 AM, said:

hankjrfan00, on May 5 2006, 06:44 AM, said:

Depends on your isp.

But most people would rather have a static ip than a dynamic one.....until they get an ip ban from somewhere

It depends on your ISP how you renew the IP!? All of the ISP's I know assign IPs by DHCP.

--

If you are using an ADSL Router with Ethernet (RJ45) port, you can renew it by doing the following commands on cdm.exe:

ipconfig /release
ipconfig /renew

However, if you are using an USB modem, this will not work.

What I meant was that if his isp assigned him a static ip address then he can't change it. I have in the past had an isp that did this.

[Gouki]

Really? Cool and weird. Well, If I was in charge of things, I would make IP reservations based on modems MAC addresses, aswell as filtering them. But I 've never heard an ISP doing this.

[tal ormanda]

Hey thanks it worked but when i type in ipconfig into the command mos dos it still says the same thing but on ipchicken it doesnt. why didnt it change on there?

[Gouki]

ipchicken?

[Maleko]

Gouki, on May 5 2006, 04:15 PM, said:

Just a small correction Maleko, if you don't mind.

Dynamic IP addresses (assigned by DHCP) can also be used for remote access, FTP's, HTTP's, and other Internet services, however, it requires a third party company providing Dynamic DNS service.

This way the IP/IPs of the computer that gets the IP address from the ISP DHCP server is announced to that DDNS company that will keep the domain always up to date with the IP.

The IP is announced to the DDNS Provider, and then updated on the 'routing table'. (NOT! a 'true' routing table!)

[5eraph]

Gouki, on May 5 2006, 01:55 PM, said:

If I was in charge of things, I would make IP reservations based on modems MAC addresses, aswell as filtering them. But I 've never heard an ISP doing this.

My ISP does assign IPs by MAC addresses, but there's still a lease. The IP address won't change unless you're offline when the lease expires. My solution is simply to clone a MAC address in my router configuration changing one or two characters. Doing this I get a guaranteed IP address change right after I reset the router. Then I reset the cable modem to break the old IP address association if I don't want the old address anymore.

I can swap between several unique IP addresses within seconds this way; as many as my modem will keep track of.

To see what addresses and how many are tracked can be as simple as accessing your modem's web configuration. It's often at address 192.168.100.1.

This is white-hat info. Use it wisely, otherwise you'll end up having a site ban your ISP's entire IP address range.

This post has been edited by 5eraph: 05 May 2006 - 11:23 PM

[ophiel]

tal ormanda, on May 5 2006, 02:10 PM, said:

Hey thanks it worked but when i type in ipconfig into the command mos dos it still says the same thing but on ipchicken it doesnt. why didnt it change on there?

your internal ip address (i.e. 192.168.1.100) is likely the same.

your external ip address is different.

is this not what you wanted to accomplish?

[Gouki]

5eraph, on May 6 2006, 06:03 AM, said:

Gouki, on May 5 2006, 01:55 PM, said:

If I was in charge of things, I would make IP reservations based on modems MAC addresses, aswell as filtering them. But I 've never heard an ISP doing this.

My ISP does assign IPs by MAC addresses, but there's still a lease. The IP address won't change unless you're offline when the lease expires. My solution is simply to clone a MAC address in my router configuration changing one or two characters. Doing this I get a guaranteed IP address change right after I reset the router. Then I reset the cable modem to break the old IP address association if I don't want the old address anymore.

I can swap between several unique IP addresses within seconds this way; as many as my modem will keep track of.

To see what addresses and how many are tracked can be as simple as accessing your modem's web configuration. It's often at address 192.168.100.1.

This is white-hat info. Use it wisely, otherwise you'll end up having a site ban your ISP's entire IP address range.

That's the problem ... You ISP should filter MAC addresses.
You're saying that if you change 1 or 2 characters on the MAC you get a new IP address, and that shouldn't happen.

Keeping an updated list of 'Accept Only the following MACs' would be the best thing to do in this case. (However, I do understand that you don't wanting a 'static' IP)

[5eraph]

I'm guessing that filtering access by MAC address would be too labor-intensive for my ISP. It spans most metropolitan areas in a fairly large geographical area with potentially thousands of users. Much of the system is automated.

Having a static IP for consumer use invites trouble, in my opinion. How many consumers can afford a good quality hardware firewall if they host their own website or FTP? I'd prefer anonymity at home and would rather pay regular small sums to have someone else do the hosting than pick up a dedicated piece of expensive hardware.

This post has been edited by 5eraph: 06 May 2006 - 10:52 AM

[ophiel]

5eraph, on May 6 2006, 08:59 AM, said:

I'm guessing that filtering access by MAC address would be too labor-intensive for my ISP. It spans most metropolitan areas in a fairly large geographical area with potentially thousands of users. Much of the system is automated.

it's normal for MACs not to be filtered. only nosy little obscure internet providers do that.

the major carriers like earthlink and sbc could care less what your MAC is so long as you provide a valid id & password at login.

i imagine the cost of thousands of MAC-related technical support calls would cancel out -any- sort of benefits that MAC filtering might provide

[Gouki]

ophiel, on May 9 2006, 01:42 AM, said:

the major carriers like earthlink and sbc could care less what your MAC is so long as you provide a valid id & password at login.

So all that talk about multifactor security being a good thing is all wrong?

I will continue with my opinion regarding it.
Something you know and something you have will *always* be more secure than just using one part of the equation.

ophiel, on May 9 2006, 01:42 AM, said:

i imagine the cost of thousands of MAC-related technical support calls would cancel out -any- sort of benefits that MAC filtering might provide

Really? And why would that be?

I know of a company - TVCabo.pt - who has this implementation.
They provide service for thousands of users, and if it was something that would cause them any problem, it would have been removed by now.

I never thought this could end up being something bad for an ISP, but you must have your reasons.

I am interested on what you have to say about it.

[ophiel]

one man's security is another's annoyance.

i've never had an isp account hacked, and if it ever did happen, well i can afford the 13 bucks.

i now see the value of the filtering service, i had never thought of an end user seeing it as a plus, for some reason i was thinking it was beneficial for the ISP somehow.

i guess i've just never been too concerned about my isp accounts. i never use their associated email accounts and i use evil passwords. i figure that's good enough.

[5eraph]

I know this topic has drifted off-topic, but I'm wondering if we're all talking about the same thing...

I've never used DSL so I am not very familiar with it. I've always had cable internet, which may or may not have better resistance to external internet access hacking. This has nothing to do with the ISP provided email or other services. They have separate logins and can be accessed from anywhere, even if you're not on their network. This makes it easy to check email from out of town.

My guess is that with a cable modem, the modem itself has a MAC address which may be registered somewhere upstream. Mine uses standard DOCSIS 2.0 and was provided by my ISP. In this situation the PC or router behind the modem is not verified by MAC; it's not verified at all, which is why changing IP addresses is so easy for me.

If someone patches into the cable line in the yard the cable company can pretty easily detect it. I don't know exactly how, but I've heard of it happening with stolen cable television.

Anyway, what I'm trying to say and can't seem to easily put into words is simply this: The only reason I can see for an ISP to verify whether an internet connection is legitimate is to protect the bandwidth dedicated for paying customers. The only time I can see pirated bandwidth being an issue is if there are too many people sharing a fiber (in the case of my ISP). It is my understanding that bandwidth is audited time and again to see where there are bottlenecks. When they investigate a bottleneck they can check the runs connected to it for "leaks," then consider upgrading their equipment if there are no illegal taps.

Gouki, I'm interested in knowing what other considerations you have in mind on this issue, and why exactly you believe internet service should be locked down by PC or router MAC address, which can be easily changed.

This post has been edited by 5eraph: 09 May 2006 - 06:12 AM

[Gouki]

ophiel, on May 9 2006, 07:52 AM, said:

i've never had an isp account hacked, and if it ever did happen, well i can afford the 13 bucks.

i guess i've just never been too concerned about my isp accounts. i never use their associated email accounts and i use evil passwords. i figure that's good enough.

The problem here is not about the $13. First of all, I don't care how much my ISP charges monthly. My Internet access is mine, therefor, no one else should be able to use it.

Just because you don't use the webhosting space and the e-Mail account, doesn't mean that it's O.K to be hacked. Actually, that's the least of your problems.

If I had a homepage hosted with my ISP and by any chance I (not they) got hacked, reading the e-Mail's and looking at the files I had hosted was not something I was worried about. What would make me pretty afraid was using my account to watch pornography, pedophilia or even hack anyone else. Those are the real problems.

MAC filtering is something invisible for the human eye. If your ISP decided to enable it, you won't even notice, so, there would not be any work dependant on the home user.

5eraph, on May 9 2006, 12:57 PM, said:

I know this topic has drifted off-topic, but I'm wondering if we're all talking about the same thing...

Gouki, I'm interested in knowing what other considerations you have in mind on this issue, and why exactly you believe internet service should be locked down by PC or router MAC address, which can be easily changed.

Yep. It's really off-topic since the last posts.

Just because something can be hacked, doesn't mean it shouldn't be implemented.

I once read an article about wireless being more secure than wired. At first I was completely shocked by the author's title. As I read through the text I realized that he was making a good point.

Wireless has many problems, and most of them are security, or lack of, related. However, and because of that same problem (lack of security) people were so afraid that they would protect their network with all they got, making it sometimes allot more secure than wired, since that technology people have come so used to it, that most of the times they don't mind protecting it.

I know that MAC addresses can be easily spoofed, but why not use it? It's not that hard to implement at an ISP (contrary to what has been said around here) so it would just be an extra that could make things more secure. Even if it's just 1%.