• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 418
  • Last Modified:

ADSL Router Restricted IPs


Hi ..
I'm the network administrator for an ADSL Service Provider.we use Speedtouch 530 ADSL Routers in our networks. the problem is :
the router accepts any user with any ip to access internet. some users on our network put switches in their houses and allow other users to connect through our network illegaly.
I'd like to restrict the access on the router to specified IPs only to prevent the users from connecting others without permission.
the ip of the router is real ip : 81.10.48.142
the ips of the users on the LAN are like : 10.0.0.X
can any one tell me how to configure the router to accept only a list of ips (about 5 ips or 6 ) and block all other unauthorized IPs ?
note : sometimes we use PLANET ADE-3110 Routers instead of speedtouch
Thank You.

0
HaithamEgy
Asked:
HaithamEgy
  • 4
  • 2
2 Solutions
 
Fatal_ExceptionCommented:
That won't work.  Any user that buys a router will be able to NAT right past your ADSL router into the your provider's network (internet).  As you know, some providers tried using MAC addresses to limit the ability of there customers to connect networks, but it just does not work since even these can be spoofed.

The deal is, as long as you cannot control what is lying behind your routers, you cannot limit the usage of your connections.  As long as I have a connection to the internet through you, you cannot stop me from sharing it if I have the right equipment (and knowledge).

Now, regarding retricting IP addresses, if you want to bump up the devices to something like Cisco Routers, you can certainly program them with Access Lists that will prevent any IP Address (range) from getting through it.  But again, as long as I can spoof my IP, you still won't stop me from getting through.  And think how much it would cost to do this.  You would have to double your subscription rates just to afford the deployment.  Just not worth it in the long run, financially or the admin headaches that could certainly come from it.

Sorry!

FE
0
 
pseudocyberCommented:
I agree with FE.  Also, I understand ya'll want the extra revenue from those "illegally attached" users - but it's not really "illegal".  I'm sure it's against your acceptable use policy, and there's probably things you could do, like cut off the person subscribing, but are there actual LAWs against it, no.

So, do you care if one user downloads massive files night and day - effectively using up as much bandwidth as you give them?  No, you usually don't.  So, what difference does it make if its one user or 10 users?  They're still paying for X amount dollars for Y amount of the maximum bandwidth you give them.

Perhaps a better model would be to charge by how much data (bytes, MB, GB) is downloaded from the Internet to the user.  Then, the users will be disinclined to allow their friends and/or neighbors to use their connection because it is going to cost THEM more - if they don't mind, then you make more revenue.  Right now, they have no disincentive to share.  What you need to do is to approach the problem from a business perspective instead of a technological one.
0
 
Fatal_ExceptionCommented:
Yep...  I think we answered this one, unless he found a better way..  :)
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
pseudocyberCommented:
:)
0
 
HaithamEgyAuthor Commented:
Sorry .... but I found a better way myself ... Thank You All
0
 
Fatal_ExceptionCommented:
Interesting..  would you like to elaborate?
0
 
Fatal_ExceptionCommented:
Thanks!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now