nanog mailing list archives

Re: Using private APNIC range in US

From: Owen DeLong <owen () delong com>
Date: Thu, 18 Mar 2010 11:25:15 -0700


On Mar 18, 2010, at 9:34 AM, Fred Baker wrote:

Are they using them only within their domain(s), and ARIN addresses outside, or are they advertising them to their 
upstream(s) to be readvertised into the backbone?

If they are using them internally and NAT'ing to the outside, they're not hurting themselves or anyone else. I would 
personally let them alone.

Except you're missing a keyword on the "not hurting themselves" part of that... It's "YET".

Once 1.0.0.0/8 starts getting used in the wild for legitimate sites, it means that this
customer won't be able to reach the legitimate 1.0.0.0/8 sites from within their
environment and it won't be immediately intuitive to debug the failures.

If they are advertising them outside, it adds a small prefix in the ARIN domain that doesn't get aggregated by the 
upstream. Among 300K such prefixes it is probably noise, but gently suggesting that they use something aggregatable 
into their upstream's allocation would help a little bit in that regard. What they are most likely hurting is 
themselves, really; a datagram sent to the address from an ISP outside themselves probably travels via Australia or 
an Australian ISP.

The route announcement notwithstanding, they're using space that does not
belong to them and will belong to someone else in the near future. If you
think that is OK, please let me know what your addresses are so that I can
start re-using them.

Owen

On Mar 18, 2010, at 8:52 AM, Jaren Angerbauer wrote:

Hi all,

I have a client here in the US, that I just discovered is using a host
of private IPs that (as I understand) belong to APNIC (i.e.
1.7.154.70, 1.7.154.00-99, etc.) for their web servers.  I'm assuming
that the addresses probably nat to a [US] public IP.  I'm not familiar
enough with the use of private address space outside of ARIN (i.e.
192.0.0.0, 10.0.0.0, etc) but I figure if their sites are up and
accessible it must be working for them.  I'm just wondering if there
is any recommendation or practice around this -- using private IP
ranges from another country.  Thanks.

--Jaren


http://www.ipinc.net/IPv4.GIF

Current thread:

Re: Using private APNIC range in US, (continued)
- Re: Using private APNIC range in US Owen DeLong (Mar 18)
  - Re: Using private APNIC range in US Jaren Angerbauer (Mar 18)
    - Re: Using private APNIC range in US Larry Sheldon (Mar 18)
    - Re: Using private APNIC range in US Tom Ammon (Mar 18)
    - Re: Using private APNIC range in US Mark Smith (Mar 21)
    - Re: Using private APNIC range in US Joel Jaeggli (Mar 21)
    - Re: Using private APNIC range in US Jonathan Lassoff (Mar 18)
- Re: Using private APNIC range in US Larry Sheldon (Mar 18)
- Re: Using private APNIC range in US Fred Baker (Mar 18)
  - Re: Using private APNIC range in US Cian Brennan (Mar 18)
  - Re: Using private APNIC range in US Owen DeLong (Mar 18)
    - Re: Using private APNIC range in US Jared Mauch (Mar 18)
    - Re: Using private APNIC range in US William Allen Simpson (Mar 18)
    - Re: Using private APNIC range in US Larry Sheldon (Mar 18)
    - Re: Using private APNIC range in US Matt Shadbolt (Mar 18)
    - Re: Using private APNIC range in US Charles Mills (Mar 19)
    - Re: Using private APNIC range in US Craig Vuljanic (Mar 19)
    - RE: Using private APNIC range in US Eric J Esslinger (Mar 19)
    - Re: Using private APNIC range in US Graham Beneke (Mar 20)
    - Re: Using private APNIC range in US Łukasz Bromirski (Mar 20)
    - Re: Using private APNIC range in US Daniel Senie (Mar 18)

(Thread continues...)