自己的怎样才能让别人查不到自己的IP地址

怎样才能让别人查不到自己的IP地址

The ARP principle: A machine A will send A message to host B,which will query the local ARP cache table, find the IP addressof B, and then transfer the data. If it is not found, thenbroadcast A an ARP request message (the IP address Ia, whichcarries host A' s IP address, Pa) , requesting the IP address asthe host B of Ib to answer the physical address Pb. All hostson the web, including B, receive ARP requests, but only hostB recognizes its IP address, and sends an ARP response messageto A host. It contains the MAC address of B, which will updatethe local ARP cache when A receives the response to B. The MACaddress is then sent using the MAC address, which is attachedto the MAC address. Therefore, this ARP table cached locallyis the basis of local network traffic, and this cache isdynamic.

The ARP protocol does not receive the ARP reply only when theARP request is sent. When the computer receives the ARP replypacket, it updates the local ARP cache, storing the IP and MACaddresses in the ARP cache. Therefore, when A machine B to Ain local area network (LAN) to send A fake ARP reply, and ifthe response is B as C forged, the IP address is C IP, and theMAC address is fake, when after A received B faked ARP reply,will update the local ARP cache, so it seems to A C IP addressdoes not change, but its MAC address is not the same. Becausethe network traffic is not based on an IP address, it istransmitted on a MAC address. So, the forged MAC address waschanged to an unexistent MAC address on A, which caused thenetwork to fail, causing A not to Ping C! This is a simple ARPcheat.

That' s what the Internet commissioner is using!

In the network marshals, must want to limit a machine to theInternet, just click on "network card" menu of "authority",choose the specified nic or click the line network CARDS, inthe user list from the right-click menu select "rights", in thepop-up dialog box can limit the user permissions. Forunregistered card, can limit their online like this: as longas the set of all known users (registration) , network card' sdefault permissions to prohibit online can stop all unknownnetwork cardonline. Use these two functions to limit the user' saccess to the Internet. Its principle is through the ARPdeception to attack the computer a fake gateway IP address ofthe corresponding MAC, make its can't find the gateway real MACaddress, so that you can prohibit its access to the Internet.Change the MAC address to break the Internet enforcementblockade

Based on the above analysis, it is not difficult to concludethat a modification of the MAC address can lead to a scan ofthe Internet enforcement officer to achieve the goal ofbreaking the blockade. Here' s how to change the MAC address:Enter regedit in the "start"menu, open the registry editor andexpand the registry to: HKEY_LOCAL_

The MACHINE/System/CurrentControl

Set/Control/Class / {4D36E972 -bfc1-08002BE103

Under 18} key, the key in the son in the branch such as 0000000,1000, 2 find DriverDesc (if you have more than a piece of card,there are 0001000 2. . . here to save the information about yournetwork card, the DriverDesc content is network cardinformation description, such as my card is Intel 210In this case, you will assume that your network card is on 0000keys.

A string is added under the 0000 subkey, named"NetworkAddress",and the keyvalue is the modified MACaddress, which is requiredto be a continuous 12 hexadecimal digits. Then in NDI/paramsunder the "0000" subkey, a subkey called NetworkAddress isadded under the subkey to a string called "default" and the keyvalue is the modified MAC address.

A string named "ParamDesc" continues under the subkey ofNetworkAddress, which is used to specify Network

The Address of the description,

The value can be "MAC Address". So after open networkneighborhood "properties", double click on the correspondingcard will find there is a "senior" Settings, its existing MACAddress option, it is in the registry to join your new item"NetworkAddress, " as long as after this change MAC Address isok.

Close the registry, restart, and your network card address haschanged. To open the properties of the network neighbor,double-click the corresponding network card entry to find the

advanced Settings item for the MAC Address to modify the MACAddress directly.

MAC addresses are also called physical addresses, hardwareaddresses, or link addresses, which are written by networkequipment manufacturers in hardware. This address has nothingto do with the network, that is, no matter with the address ofthe hardware (e.g. , network CARDS, hubs, routers, etc. ) whereaccess to the network, it has the same MAC address, MAC addressgenerally cannot be changed, are not set by the users themselves.MAC address is usually expressed as 12 hexadecimal number, eachseparated by a colon between two hexadecimal number, such as:

08:00:20:0 a: 8 c: 6 d is aMAC address, the first 6 hexadecimalnumber, 08:00:20 the number represents the network hardwaremanufacturers, it is assigned by the IEEE, then threehexadecimal number 0 a: 8 c: 6 d on behalf of the manufacturershave made a network of products, such as network card serialnumber. Each network manufacturer must ensure that everyEthernet device it makes has the same first three bytes anddifferent three bytes. This ensures that every Ethernet devicein the world has a unique MAC address.

In addition, the principle of web enforcement is to use ARP tocheat the MAC address of a fake gateway IP address to a computer,so that it can' t find the actual MAC address of the gateway.Therefore, as long as we modify IP to MAC maps, we can invalidatethe ARP of the network deacon, separated by the limitation thatbreaks through it. You can Ping the gateway in advance, and thenuse ARP - a command to get the MAC address of the gateway, thelast ARP -s IP network card MAC address using the commandgateway IP address and MAC address mapping it is ok.

Find someone who can't get on the Internet

Marshals blockade lifted the network, we can use Arpkiller"Sniffer killer" scanning the entire LAN IP segment, and thenf ind the "mixed"mode in computer, can find each other. Specif icmethod is: run Arpkiller (figure 2) , then click "Sniffermonitoring tools", in the event of a "Sniffer killer" windowstart and stop input detection in IP (figure 3) , click the"start test".

When the test is complete, if the IP is a green hat icon, theIP is in a normal mode, and if it is a red hat, the network cardis in a hybrid mode. It' s our goal, this guy is messing aroundwith the Internet law enforcement officer.

Scanning time oneself also is in mixed mode, oneself cannotcalculate in among them!

How do you deal with him when you find the other person, forexample, you can use the Internet commissioner to block theother person