When a glinet router is connected to a WiFi and NOT using VPN, is it possible for the WiFi owner to know which devices are connected?
e.g. the WiFi owner can see the number of MAC Adresses which should result in the number of devices?
Is there a way to hide the traffic, e.g. all traffic would come from the router only (from the WiFi perspective), specifically NOT using a VPN?
Let's call the upstream Wi-Fi provider JoesCornerCafe. Their AP would know, at a minimum, the MAC & hostname of the GL.iNet router. That's assuming it is as simple/dumb Wi-Fi hot spot as it gets.
On a cruise ship & more advanced networks that use captive portals/splash web pages before connecting (ie: MacDonalds), deep packet inspection (DPI) it is entirely possible to get info from the packets/HTTP/TLS headers flowing through any router right down to the size of web browser window you're using.
Proton VPN has a free tier. Compartmentalize browser usage.
In normal situations, no they cannot.
But they are able to know if you are behind another router, if they have rules against travel routers they make the ttl smaller so that devices with more than one hop gets blocked, but you can manipulate it.
The only other ways is when there is a misconfiguration, one very easy one is when you install avahi for chromecast routing but you forgot to deny interfaces for wan, the default configuration would leak multicast to the outside.
And ipv6 as non NAT that can be quite risky, since ipv6 has originally not a NAT implementation, it will either use the gua or the local ula prefix, there are many ways that can go wrong if not behind a NAT and when following the gua for local clients.
Yup. IPv6 is a security nightmare. I have it completely disabled LAN-side. One should always know what's flowing thru their subnet.
This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.