0 Replies Latest reply on Feb 25, 2019 12:02 AM by Michael.R.Taylor-Oracle

    What's this RFC1918 stuff you keep talking about?

    Michael.R.Taylor-Oracle

      See lots of answers mentioning RFC 1918 (and RFC 6598). What is it and why is it a problem?@

      How can I tell if my Internet IP address is one of these IP addresses?

      ---

      RFC 1918 defines a set of 3 IP ranges that are not routed across the Internet and can only be used on local networks. You will sometimes see these used on ISP networks, where the devices can only be accessed from within the ISP's network, not from the rest of the Internet.

      There are 3 IP ranges defined in RFC 1918:

       

      1. 10.0.0.0/8 (10.0.0.0-10.255.255.255)
      2. 172.16.0.0/12 (172.16.0.0-172.31.255.255)
      3. 192.168.0.0/16 (192.168.0.0-192.168.255.255)

       

      There are also the RFC 6598 addresses for Carrier-Grade NAT:

      1. 100.64.0.0/10 (100.64.0.0-100.127.255.255)

      If you ISP or provider allocates one of these IP ranges as your WAN IP then your device can only be reached from within your ISP at best. They are very commonly seen where the provider is part of an academic environment (school, college, hall of residence etc), is part of an apartment complex or a mobile phone network. They are also normally seen where the ISP connected device is an ADSL device and you are connecting a router to that device (discussed briefly here).The problem is that if you visit any of the web pages that claim to tell you your IP address they will tell you the IP address your ISP is NATing you behind. The only way to know is to look at the management pages of your ISP connected device (or if you are connecting with a USB connected modem looking at the IP assigned to that interface - using ipconfig on Windows and ifconfig on Linux and BSD).For over a decade those IP ranges (and the link-local subnet) have been routed to AS112, which is a black hole designed to minimize the impact of people trying to reach those IP addresses across the Internet.There are also a few other special case IP ranges that you may also see, covered in RFC 5735:

      1. 0.0.0.0/8
      2. 127.0.0.0/8
      3. 169.254.0.0/16
      4. 192.0.0.0/24
      5. 192.0.2.0/24
      6. 192.88.99.0/24
      7. 198.18.0.0/15
      8. 198.51.100.0/24
      9. 203.0.113.0/24

      These IP addresses also cannot be routed across the Internet, some (127.0.0.0/8) cannot be routed beyond the local host and the others beyond the local network.

       

      Corrected category from Traffic Management to Remote Access.