Re: Carrier Grade NAT

[Owen DeLong <owen () delong com>]

On Jul 29, 2014, at 10:00 AM, Robert Drake <rdrake () direcpath com> wrote:

> On 7/29/2014 12:42 PM, Chris Boyd wrote:
> > There's probably going to be some interesting legal fallout from that practice.  As an ISP customer, I'd be furious 
> > to find out that my communications had been intercepted due to the bad behavior of another user.
> >
> > --Chris
> Usually, unless the judge is being super generous, they'll provide a timestamp and a destination IP.  That should be 
> pretty unique unless they're looking for fraud against large website or something.  In the unlikely event that two 
> people hit the same IP at the same time(window) they would probably just throw that information out as unusable for 
> their case.
>
> Usually the window they give is ~ 3-5 seconds so they're pretty specific.

This assumes that your log server and theirs are synchronized to an accurate time source within 3-5 seconds (not 
necessarily a safe assumption in all cases). Further, in a CGN environment, it’s unlikely you would not have multiple 
customers using the same IP address even down to the single second.

Owen