What is IP squat space












6















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question




















  • 4





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    yesterday











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    yesterday











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    yesterday


















6















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question




















  • 4





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    yesterday











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    yesterday











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    yesterday
















6












6








6


1






I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question
















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?







ip ipv4 subnet network






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited yesterday









Cown

6,52931030




6,52931030










asked yesterday









SatishSatish

1,67912259




1,67912259








  • 4





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    yesterday











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    yesterday











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    yesterday
















  • 4





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    yesterday











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    yesterday











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    yesterday










4




4





One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

– Jesse P.
yesterday





One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

– Jesse P.
yesterday













They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

– Jesse P.
yesterday





They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

– Jesse P.
yesterday













My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

– Criggie
yesterday







My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

– Criggie
yesterday












2 Answers
2






active

oldest

votes


















13














IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






share|improve this answer
























  • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    yesterday






  • 4





    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    yesterday





















7















What is IP squat space




Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




It is owned by DoD, is this space routable?




It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




Can an expert explain to me why someone is using this range internally




Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




and what the consequences would be?




It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






share|improve this answer

























    Your Answer








    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "496"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: false,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    noCode: true, onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














    draft saved

    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    2 Answers
    2






    active

    oldest

    votes








    2 Answers
    2






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    13














    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer
























    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      yesterday






    • 4





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      yesterday


















    13














    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer
























    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      yesterday






    • 4





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      yesterday
















    13












    13








    13







    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer













    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.







    share|improve this answer












    share|improve this answer



    share|improve this answer










    answered yesterday









    Ron TrunkRon Trunk

    38k33578




    38k33578













    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      yesterday






    • 4





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      yesterday





















    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      yesterday






    • 4





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      yesterday



















    You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    yesterday





    You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    yesterday




    4




    4





    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    yesterday







    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    yesterday













    7















    What is IP squat space




    Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



    "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



    In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




    It is owned by DoD, is this space routable?




    It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



    There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




    Can an expert explain to me why someone is using this range internally




    Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



    Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



    Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




    and what the consequences would be?




    It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



    I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






    share|improve this answer






























      7















      What is IP squat space




      Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



      "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



      In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




      It is owned by DoD, is this space routable?




      It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



      There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




      Can an expert explain to me why someone is using this range internally




      Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



      Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



      Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




      and what the consequences would be?




      It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



      I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






      share|improve this answer




























        7












        7








        7








        What is IP squat space




        Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



        "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



        In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




        It is owned by DoD, is this space routable?




        It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



        There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




        Can an expert explain to me why someone is using this range internally




        Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



        Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



        Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




        and what the consequences would be?




        It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



        I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






        share|improve this answer
















        What is IP squat space




        Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



        "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



        In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




        It is owned by DoD, is this space routable?




        It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



        There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




        Can an expert explain to me why someone is using this range internally




        Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



        Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



        Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




        and what the consequences would be?




        It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



        I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.







        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited yesterday

























        answered yesterday









        Peter GreenPeter Green

        7,91621229




        7,91621229






























            draft saved

            draft discarded




















































            Thanks for contributing an answer to Network Engineering Stack Exchange!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid



            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.


            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            Popular posts from this blog

            Plaza Victoria

            Puebla de Zaragoza

            Musa