[plug] ip address and interface question (new)

William Kenworthy billk at iinet.net.au
Thu Jun 29 18:18:40 WST 2006 

10.0.0.0 is a class A private address - should not be seen on the
Internet.

Check out RFC-1918 - http://www.rfc-archive.org/getrfc.php?rfc=1918

...
3. Private Address Space

   The Internet Assigned Numbers Authority (IANA) has reserved the
   following three blocks of the IP address space for private internets:

     10.0.0.0        -   10.255.255.255  (10/8 prefix)
     172.16.0.0      -   172.31.255.255  (172.16/12 prefix)
     192.168.0.0     -   192.168.255.255 (192.168/16 prefix)
...

However, I have seen reports that some incorrectly setup firewalls can
allow through packets if they have a valid internal IP number that
matches your internal network.  You shouldn't see packets in this range
from outside your network in any case.

BillK


On Thu, 2006-06-29 at 18:07 +0800, Daniel Foote wrote:
> > When I ran that script a few moments ago on my fileserver, I got from it:
> >
> > IP      Hostname        Mac     Granted (UTC)   Expires (UTC)
> > 10.41.61.75     homeinventory.lan       00:50:8b:72:37:8e       1151200333      1151286733
> > 10.41.61.138    moose.lan       00:30:65:17:1d:55       1151208614      1151295014
> > 10.41.61.101    hebridan.lan    00:a0:c9:71:bc:53       1151213509      1151299909
> > 10.41.61.148    velona.lan      00:80:a3:18:09:10       1151266256      1151352656
> > 10.41.61.48     quokka.lan      00:13:72:1a:7a:18       1151273278      1151359678
> > 10.41.61.102    calmah.lan      00:a0:c9:2a:dc:01       1151283490      1151369890
> 
> Replying to my own emails. Must be the first sign of madness...
> 
> Just today I had a bout of paranoia - wondering if the last email I
> posted to this thread could be "misinterpreted". I try to deal with my
> paranoia by going back and explaining my actions, if I felt that it
> needed more explanation. Most people understand when I do this...
> 
> I'm sure a few of you took a double take when reading the message -
> given that I pasted in IP addresses and MAC addresses.
> 
> Let me be clear right now: the IPs and MACs above are not from any
> production network. They are from my internal home network. This might
> not be clear because of the "10.41.61" subnet - at a quick glance, it
> looks like an internet routable address.
> 
> I thought about it before I did it, and couldn't think of any way that
> it could be used to crack into my home network (from the internet, at
> least). Several days later, I can still not think of any way for that
> information to be used to crack into my home network.
> 
> Sorry for the list noise... but I feel better now.
> 
> Thankyou,
> 
> Daniel Foote.
> _______________________________________________
> PLUG discussion list: plug at plug.org.au
> http://www.plug.org.au/mailman/listinfo/plug
> Committee e-mail: committee at plug.linux.org.au
-- 
William Kenworthy <billk at iinet.net.au>
Home!

More information about the plug mailing list