0

if I connect through the tunnel to my friend's friend work LAN, will use only his LAN (IP) and will not have my own internet at all, force entry connection and getting their internet to host my internet, is it possible to trace my physical location (address)? The only address government will be able to find is that, that ISP have on file for that particular IP thus my friend's friend work address, and it will be impossible for them to find my location?

user77680
  • 95
  • 5
  • Possible duplicate of [How can you be caught using Private VPN when there's no logs about who you are?](https://security.stackexchange.com/a/121288/87119) – Mark Buffalo Nov 30 '17 at 17:20

2 Answers2

0

The problem with this scenario is that you are relying on Network Address Translation (NAT) to hide your physical location.

This assumes that IP Address = Physical Location.

Large IP address sets like 34. *. *. * are owned by top tier providers, who usually sell an address range like 34. 138. *. * to local providers, who assign ranges like 34. 138. 17. * to a business.

Since there are limited IP Addresses most businesses have an internal network IP Address assigned to their employees separate from any Internet public IP addresses. Then the business keeps track of what internal IP address did which request out to the Internet and routes the response to the internal IP address.

This is called Network Address Translation or NAT for short.

Your friend's work most likely has a log of who logged in over the LAN VPN connection. Therefore the government can ask or serve a warrant to your friend's company to see who was on at a specific time. The trail will lead back to your friend. And because his work likely knows where he lives. It won't be hard to find you.

Also depending on the capabilities of the government, they might have physical address location capabilities that don't require the cooperation of your friend's company.

In order to protect yourself from government spying, try a network anonymizer like Tor ( https://www.torproject.org/projects/torbrowser.html.en ).

NathanC
  • 11
  • 3
  • I'm trying to figure out 100% anonymity + using Qubes + Tor + Whonix + Tails all together. So they won't be able to trace anyone, if the person doesn't know me, and he will tell the agency he doesn't know a thing about anything! There is no records that he gave out anything or an access to anyone to force entry their internet connection, it will be like someone used you Wi-Fi connection, we know they did, but no physical address from where they are getting the signal can be traced? Thanks – user77680 Nov 30 '17 at 02:40
  • I think I didn't explain it clearly before "will use only his LAN (IP) and will not have my own internet at all, force entry connection and getting their internet to host my internet" – user77680 Nov 30 '17 at 02:46
0

The connection between your ISP assigned IP address and the "end of the tunnel" IP address are not secrets and are known by the ISP. Furthermore, if you login to a web service using this secure tunnel which you also login in from, even once, from your ISP assigned IP address, you're privacy may be compromised. There are numerous tracking methods beyond IP addresses as well.

As far as privacy goes: If privacy were measured in a scale from 1 to 10, the extra privacy from tunnel usage may raise the measure from a 5 to a 6.

However, why not just use Tor? The friend of a friend's work place is certainly many degrees closer to you than the nearest Tor entry node.

RubberStamp
  • 669
  • 1
  • 6
  • 9
  • I'm trying to figure out 100% anonymity + using Qubes + Tor + Whonix + Tails all together. So they won't be able to trace anyone, if the person doesn't know me, and he will tell the agency he doesn't know a thing about anything! There is no records that he gave out anything or an access to anyone to force entry their internet connection, it will be like someone used you Wi-Fi connection, we know they did, but no physical address from where they are getting the signal can be traced? Thanks – user77680 Nov 30 '17 at 02:42
  • I think I didn't explain it clearly before "will use only his LAN (IP) and will not have my own internet at all, force entry connection and getting their internet to host my internet" – user77680 Nov 30 '17 at 02:46