How can I hide my computer's presence from other system(s) on the same wireless network? Windows allows you to switch off network discovery (though I'm not sure if it affects the visibility on other OSs), and I'm seeking a similar functionality for Ubuntu and Linux.
It seems that many of you are inclined to think that this question has something to do with shares However, this has nothing to do with them, I simply do not want my system to be visible in the Network folder and it's equivalent on other OSs.
Best Answer
One thing you can do is block the protocols on your firewall. The primary protocol is SMB which uses a number of ports: 135, 137, 139, and 445. Mac computers may pick you up using avahi which runs on port 5353.
If you don't have any Samba component installed you don't need to block the SMB ports. These are the tools which handle the SMB protocol, and could make you appear a Windows.
A number of packages depend on avahi components, but unless you install and configure the avahi-daemon you shouldn't appear on anyone's Network list. Without the daemon you shouldn't be announcing your presence. However, if there is no DHCP server you may end up in zero-conf mode in the 169.254.0.0/16 network block. This might make you visible.
The normal network discovery tools on the peoples desktops only discover systems which announce their presence. I think Window is quieter now, but each system used to broadcast their presence and identify every few minutes.
EDIT: Most systems get their address from a DHCP server. This configures them so that they can communicate with larger networks. DHCP data will also provide the address of the router to use and additional information.
Some systems are given static IP address configurations. Servers are usually configured this way, but can get a static IP configuration from DHCP.
The address block 169.254.0.0/16 has been defined for self-configuring autonomous networks. Basically this allows computers to self-discover an address for themselves. The avahi protocol allows hosts to register their name in the
.localdomain. This functionality is often referred to as zero-conf as no configuration is required. Windows (and Apple?) use this as a fall-back option if no other configuration works.The avahi protocol can be used on any address range to announce available services. Apple calls this functionality Bonjour. Linux provides the avahi-daemon to announce and/or relay service lists.
EDIT2: I've done some further research with Windows, and haven't got it to show up in my Avahi browse list. (I don't have plans to run tests on an autonomous network.) This may be because I have DHCP running and Windows didn't fall back, or Windows may not register. Like WINS (Windows Internet Name Service), Zeroconf (avahi or Bonjour) maintains a list of servers and services which can easily be discovered and displayed by clients. Without add-on software Windows systems will not discover systems using Zeroconf.
DNS is not designed to provide the server/service discovery offered by either WINS or Zeroconf. Local networks may allow zone transfers from which some information may be discovered. Servers without zone discovery only provide name lookup services, but not the discovery services offered by WINS and Zeroconf. Additionally, DNS information is often statically defined, and may not include hosts configured by DHCP. DNS servers can be configured for dynamic updates which allows DHCP clients to register their names. Dynamic updates only provide name to IP address lookups. Apple systems do use this mechanism to discover servers and services. (From the documentation I have seen zeroconf is designed to provide discovery for more services than WINS.)
Another mechanism which can be used to discover systems is ARP. This only allows determining that a host is using an IP address, but not its name. ARP is not useful for a network neighborhood list. I do use
arpwatchto discover rouge systems connecting to a network. arpwatch can also discover some configuration problems.