Private Network Scan

Is there a way using fingbox, let's say my own private network, I can prevent other clients from scanning the network for details like IP address and MAC? Only I as the owner can do this and fingbox will prevent anybody from doing so if they do not have permission.

VioletChepilMemaw

Answers

  • Marc
    Marc Moderator, Beta Tester Posts: 2,665
    1,000 Likes 2500 Comments 100 Answers 250 Awesomes
    ✭✭✭✭✭✭
    edited November 26, 2019 #2
    Hi @nicholaskids, this is something Fing can’t do, though it can block someone from entering your network from the start.  Is this your home network?  Do you currently have consumer grade networking equipment?  If so those generally don’t support that either. @Ciaran, is this something that is feasible from Fing and if so can this be moved to feature request section?  @kltaylor, @Crowgrandfather, @Pixelpopper, @Hronos , have you ever heard of a third party product that can do this?
    Thats Daphnee, she's a good dog...
    VioletChepil
  • Hronos
    Hronos Member, Beta Tester Posts: 289
    100 Likes 100 Comments Second Anniversary 25 Awesomes
    ✭✭✭✭
    edited November 26, 2019 #3

    No, for example: to not have a MAC Address on a device, the device first can deny access to its ARP table (like an iPhone does) but if there is access, the 2nd is make that ARP table blank, this is not possible, every device that make a conversation (connection) with another share their MAC Address. To reduce the table items maybe you can block ICMP (PING, some firewalls/routers do this) but there is always a way...

    Keep looking up!
    VioletChepil
  • Hronos
    Hronos Member, Beta Tester Posts: 289
    100 Likes 100 Comments Second Anniversary 25 Awesomes
    ✭✭✭✭

    As @Marc mention, with enterprise grade gear you con block better, with VLANs and rules...

    You can try in a home grade router, to isolate the clients (no one see each other in the network, like a guest Wi-Fi network) but is bidirectional the "owner" also can't see other devices)

    Keep looking up!
    MarcvulcansheartVioletChepil
  • Ciaran
    Ciaran Administrator Posts: 1,180
    1000 Comments 250 Likes 50 Answers 100 Awesomes
    admin
    @Marc thats correct it is not something that Fingbox can do. Anybody connected to a network can scan the network. From a feasability point of view I am not sure, however we can certainly raise a feature request to and get engineering viability input.
    Ciaran (Admin at Fing)

    VioletChepilHronos
  • vulcansheart
    vulcansheart Member, Beta Tester Posts: 117
    100 Comments 25 Awesomes 5 Answers 25 Likes
    ✭✭✭
    edited November 26, 2019 #6
    As @Hronos said, your best solution on consumer grade gear is to enable guest mode client isolation and VLANs if that is an option. Once a device is on your network, there is no way to stop it from broadcasting ARP, UPnP, and echo requests. You can only try to isolate the device.
    41 4c 4c 20 59 4f 55 52 20 42 41 53 45 20 41 52 45 20 42 45 4c 4f 4e 47 20 54 4f 20 55 53
    VioletChepilHronos
  • Crowgrandfather
    Crowgrandfather Member, Beta Tester Posts: 70
    5 Answers 25 Likes 10 Comments First Anniversary
    ✭✭✭

    I'm not sure of anything outside of vlans that could prevent scanning like that.

  • VioletChepil
    VioletChepil London, UKMember Posts: 2,471
    100 Answers 500 Likes 1000 Comments 100 Agrees
    ✭✭✭✭✭✭
    @Marc I could move to feature requests but I'm not sure it is feasible. 
    Maybe better to start a discussion up on how VLANs could prevent scanning like that? As mentioned by @Crowgrandfather?
    What do you think @crowgrandfather @marc @nicholaskids

    Community Manager at Fing

  • Marc
    Marc Moderator, Beta Tester Posts: 2,665
    1,000 Likes 2500 Comments 100 Answers 250 Awesomes
    ✭✭✭✭✭✭
    +1 for a new discussion...  could even be a subset of a broader topic on how to harden and secure your home network.
    Thats Daphnee, she's a good dog...
  • VioletChepil
    VioletChepil London, UKMember Posts: 2,471
    100 Answers 500 Likes 1000 Comments 100 Agrees
    ✭✭✭✭✭✭
    @Marc feel free to start that up and I'll gladly promote it! 

    Community Manager at Fing

  • Marc
    Marc Moderator, Beta Tester Posts: 2,665
    1,000 Likes 2500 Comments 100 Answers 250 Awesomes
    ✭✭✭✭✭✭
    @VioletChepil , done!
    Thats Daphnee, she's a good dog...
    Ciaran