What is IP squat space












7















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question




















  • 5





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    Mar 14 at 16:02











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    Mar 14 at 16:04











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    Mar 14 at 20:42


















7















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question




















  • 5





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    Mar 14 at 16:02











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    Mar 14 at 16:04











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    Mar 14 at 20:42
















7












7








7


1






I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?










share|improve this question
















I came across this article and I'm trying to understand what is going on here, I found some packets on my network containing 22.0.0.0/8 and 29.0.0.0/8 IP range and It's based on:



https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks



It is owned by DoD, is this space routable?



https://teamarin.net/2015/11/23/to-squat-or-not-to-squat/



Can an expert explain to me why someone is using this range internally and what the consequences would be?







ip ipv4 subnet network






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Mar 14 at 15:01









Cown

6,63331031




6,63331031










asked Mar 14 at 14:45









SatishSatish

1,72012259




1,72012259








  • 5





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    Mar 14 at 16:02











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    Mar 14 at 16:04











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    Mar 14 at 20:42
















  • 5





    One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

    – Jesse P.
    Mar 14 at 16:02











  • They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

    – Jesse P.
    Mar 14 at 16:04











  • My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

    – Criggie
    Mar 14 at 20:42










5




5





One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

– Jesse P.
Mar 14 at 16:02





One of the contracts I maintain does this. I've advised against it, and they are in process of moving away from it, but basically what their logic is, is that the public IP addresses they're using as private blocks belong to a government agency in a state they are 100% certain they'll never need to interact with, and feel it's safe (enough) to use those IP addresses internally. While they're technically right, it's just a bad practice and should be avoided unless absolutely no other option is available.

– Jesse P.
Mar 14 at 16:02













They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

– Jesse P.
Mar 14 at 16:04





They route the network over BGP internally but they aren't advertising it publicly so there's no harm outside of this contract's network (as long as nobody else on the MPLS cloud needs to access the rightful owner of that IP address space, either).

– Jesse P.
Mar 14 at 16:04













My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

– Criggie
Mar 14 at 20:42







My company uses real public IPs internally and NATs them at the local office internet routers. It feels wasteful, but saves on VPN problems where you might have a 192.168.x.x network in multiple places and have to fiddle with netmasks to get to the right one. Yes these IPs are allocated to my employer.

– Criggie
Mar 14 at 20:42












2 Answers
2






active

oldest

votes


















14














IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






share|improve this answer
























  • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    Mar 14 at 15:32






  • 5





    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    Mar 14 at 17:06





















8















What is IP squat space




Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



"squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




It is owned by DoD, is this space routable?




It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




Can an expert explain to me why someone is using this range internally




Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




and what the consequences would be?




It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






share|improve this answer

























    Your Answer








    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "496"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: false,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    noCode: true, onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














    draft saved

    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    2 Answers
    2






    active

    oldest

    votes








    2 Answers
    2






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    14














    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer
























    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      Mar 14 at 15:32






    • 5





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      Mar 14 at 17:06


















    14














    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer
























    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      Mar 14 at 15:32






    • 5





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      Mar 14 at 17:06
















    14












    14








    14







    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.






    share|improve this answer













    IPv4 address space is in short supply, so some people decide to use IP space ( allocated, but not advertised) that doesn't belong to them. The consequences are pretty well described in the article you quote.







    share|improve this answer












    share|improve this answer



    share|improve this answer










    answered Mar 14 at 14:54









    Ron TrunkRon Trunk

    38.6k33679




    38.6k33679













    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      Mar 14 at 15:32






    • 5





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      Mar 14 at 17:06





















    • You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

      – Satish
      Mar 14 at 15:32






    • 5





      @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

      – Ron Maupin
      Mar 14 at 17:06



















    You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    Mar 14 at 15:32





    You are saying they are using that range behind their NAT gateway as a private range ( like rfc1918)?

    – Satish
    Mar 14 at 15:32




    5




    5





    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    Mar 14 at 17:06







    @Satish, yes. The problem is that the space will probably start being used at some point, then the users will never be able to access Internet addresses in that space. We acquired a company that used squat space that is now advertised on the Internet, and we had to scramble to change the addressing.

    – Ron Maupin
    Mar 14 at 17:06













    8















    What is IP squat space




    Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



    "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



    In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




    It is owned by DoD, is this space routable?




    It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



    There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




    Can an expert explain to me why someone is using this range internally




    Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



    Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



    Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




    and what the consequences would be?




    It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



    I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






    share|improve this answer






























      8















      What is IP squat space




      Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



      "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



      In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




      It is owned by DoD, is this space routable?




      It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



      There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




      Can an expert explain to me why someone is using this range internally




      Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



      Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



      Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




      and what the consequences would be?




      It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



      I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






      share|improve this answer




























        8












        8








        8








        What is IP squat space




        Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



        "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



        In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




        It is owned by DoD, is this space routable?




        It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



        There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




        Can an expert explain to me why someone is using this range internally




        Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



        Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



        Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




        and what the consequences would be?




        It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



        I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.






        share|improve this answer
















        What is IP squat space




        Space that someone uses to number their networks even though it is either allocated to someone else or may be allocated to someone else in the future.



        "squat space" is generally not routed on the public internet by the squatter. Doing so would be considered a hijack which is a much more serious matter. Instead it is generally used behind a network address translator or for stuff that doesn't need to communicate directly with the Internet.



        In the past if an unallocated range was widely squatted on the allocation authorities would hold back on making allocations from that block. However with the IPv4 address crunch this is no longer possible.




        It is owned by DoD, is this space routable?




        It is routable on the public Internet if the DoD wants to, but as far as I can tell it is not currently routed on the public Internet.



        There is a graph showing how much of each /8 is advertised at https://ipv4.potaroo.net/fig05.png , unfortunately it's a bit tricky to interpret because some of the strips seem to be two pixels wide and others three but it doesn't look like any addresses from those blocks are advertised on the internet.




        Can an expert explain to me why someone is using this range internally




        Some organizations run out of private space internally, either because they weren't stingy enough with their internal allocation policies or because they are just so freaking big that private space doesn't cover their needs.



        Others just do it out of ignorance, they don't understand how IP addressing works, so they just make something up.



        Still others squat because they are trying to avoid their private network conflicting with customers private networks. This often comes up with things like VPN services.




        and what the consequences would be?




        It means that if/when the legitimate owners of that IP space start using it on the Internet their services will be unreachable for the squatter and the squatters customers.



        I ran into this for a while with a server I run. The server has an address in 5.0.0.0/8 which was widely squatted on in the past. Notably by Hamachi and by T-Mobile USA. Things did seem to improve over time, Hamachi moved to squatting on a different network, I'm not 100% sure what happened on the T-Mobile side but I stopped seeing complaints coming from there so presumably they did something.







        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Mar 14 at 16:12

























        answered Mar 14 at 15:46









        Peter GreenPeter Green

        8,03421229




        8,03421229






























            draft saved

            draft discarded




















































            Thanks for contributing an answer to Network Engineering Stack Exchange!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid



            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.


            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fnetworkengineering.stackexchange.com%2fquestions%2f57648%2fwhat-is-ip-squat-space%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            Popular posts from this blog

            How to change which sound is reproduced for terminal bell?

            Title Spacing in Bjornstrup Chapter, Removing Chapter Number From Contents

            Can I use Tabulator js library in my java Spring + Thymeleaf project?