What is IP squat space
I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:
https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks
It is owned by DoD, is this space routable?
https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/
Can an expert explain to me why someone is using this range internally and what the consequences would be?
ip ipv4 subnet network
add a comment |
I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:
https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks
It is owned by DoD, is this space routable?
https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/
Can an expert explain to me why someone is using this range internally and what the consequences would be?
ip ipv4 subnet network
4
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday
add a comment |
I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:
https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks
It is owned by DoD, is this space routable?
https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/
Can an expert explain to me why someone is using this range internally and what the consequences would be?
ip ipv4 subnet network
I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:
https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks
It is owned by DoD, is this space routable?
https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/
Can an expert explain to me why someone is using this range internally and what the consequences would be?
ip ipv4 subnet network
ip ipv4 subnet network
edited yesterday
Cown
6,52931030
6,52931030
asked yesterday
SatishSatish
1,67912259
1,67912259
4
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday
add a comment |
4
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday
4
4
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday
add a comment |
2 Answers
2
active
oldest
votes
IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
add a comment |
What is IP squat space
Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.
"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.
In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.
It is owned by DoD, is this space routable?
It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.
There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.
Can an expert explain to me why someone is using this range internally
Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.
Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.
Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.
and what the consequences would be?
It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.
I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "496"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
add a comment |
IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
add a comment |
IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.
IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.
answered yesterday
Ron TrunkRon Trunk
38k33578
38k33578
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
add a comment |
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?
– Satish
yesterday
4
4
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
@Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.
– Ron Maupin♦
yesterday
add a comment |
What is IP squat space
Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.
"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.
In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.
It is owned by DoD, is this space routable?
It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.
There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.
Can an expert explain to me why someone is using this range internally
Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.
Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.
Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.
and what the consequences would be?
It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.
I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.
add a comment |
What is IP squat space
Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.
"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.
In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.
It is owned by DoD, is this space routable?
It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.
There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.
Can an expert explain to me why someone is using this range internally
Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.
Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.
Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.
and what the consequences would be?
It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.
I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.
add a comment |
What is IP squat space
Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.
"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.
In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.
It is owned by DoD, is this space routable?
It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.
There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.
Can an expert explain to me why someone is using this range internally
Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.
Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.
Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.
and what the consequences would be?
It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.
I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.
What is IP squat space
Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.
"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.
In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.
It is owned by DoD, is this space routable?
It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.
There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.
Can an expert explain to me why someone is using this range internally
Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.
Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.
Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.
and what the consequences would be?
It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.
I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.
edited yesterday
answered yesterday
Peter GreenPeter Green
7,91621229
7,91621229
add a comment |
add a comment |
Thanks for contributing an answer to Network Engineering Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
4
One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.
– Jesse P.
yesterday
They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).
– Jesse P.
yesterday
My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.
– Criggie
yesterday