Sheffield ISP: You don't need a whole IPv4 address to yourself, right?

PlusNet seeks volunteers - just for a tick, until IPv6


Facing the shortage of IPv4 addresses, and glacial adoption of IPv6, UK ISP PlusNet is looking for volunteers among its customers to test out sharing the IPv4 addresses on its network.

The technique being tested by PlusNet uses a NAT (Network Address Translator) to share a single internet-facing IP address between multiple customers, eking out the limited supply of addresses - but at the cost of denying incoming connections. That will screw up some users, which is why PlusNet is looking for volunteers, as it may prove acceptable to many.

Mobile operators have been doing this for years: millions of customers on a single network typically share three or four IP addresses between them, reducing the need for IPv4 addresses and (importantly) making it impossible to create connections from the internet to a mobile phone - until it hops onto a Wi-Fi network.

But fixed providers have always given individual addresses to each customer, generally allocated at connection and retained for at least the duration of that connection. But these days, there aren't enough addresses to go around, which is prompting more bodging while we continue to wait for IPv6.

Most local networks already use a NAT, sharing a single external IP address with multiple devices in the home or office. One's NAT will face the internet with a publicly reachable IPv4 address of, say, 92.52.96.89, which is owned by one's ISP. The NAT allocates private IP addresses to devices on the network, often starting 192.168.x.x as those numbers are reserved for this purpose, and then maps outgoing connections so that returned data (from websites and such) is routed to the requesting computer.

As well as eking out the supply of addresses, the NAT makes it impossible for anyone on the internet to establish a connection to a computer behind it, as those computers don't have valid IPv4 addresses, so anyone hosting a web server on their own network has to configure the NAT with some "port forwarding" so incoming connections arriving at the NAT are sent to the right place.

But if the NAT is owned by PlusNet, then port forwarding isn't possible, and one can't host services on a home network just as one can't run host a web server in a mobile network today.

The days when everyone ran their own servers are long gone and almost everything is available in the (better secured) cloud these days, but PlusNet wants to know what other apps might be affected (Tor, BitTorrent and other P2P stuff being areas of concern) so is asking for volunteers interested in having a stab at sharing an IP.

But NATs don't just have technical implications, they also make it very hard to see who's doing what. ISPs log dynamically allocated IPs for legal redress, and PlusNet would do that with those behind the NAT too. All of this is fine when the police are involved but here at El Reg we count IP addresses as a rough guide to readership, and numerous sites including Wikipedia block unwanted edits by IP address, so sharing an IP could mean sharing responsibility too.

The solution is for everyone to switch to IP version 6 (odd versions are experimental, so we're currently on version 4 - which is, technically, the second). IPv6 has much longer addresses and won't end up clumped with hoarding telcos like IPv4 did, but it means upgrading every router and device on the internet, not to mention convincing all the geeks that it's necessary, if they're not to end up drugged into submission - which was recently the terrible fate of our own Verity Stob. ®


Other stories you might like

  • Experts: AI should be recognized as inventors in patent law
    Plus: Police release deepfake of murdered teen in cold case, and more

    In-brief Governments around the world should pass intellectual property laws that grant rights to AI systems, two academics at the University of New South Wales in Australia argued.

    Alexandra George, and Toby Walsh, professors of law and AI, respectively, believe failing to recognize machines as inventors could have long-lasting impacts on economies and societies. 

    "If courts and governments decide that AI-made inventions cannot be patented, the implications could be huge," they wrote in a comment article published in Nature. "Funders and businesses would be less incentivized to pursue useful research using AI inventors when a return on their investment could be limited. Society could miss out on the development of worthwhile and life-saving inventions."

    Continue reading
  • Declassified and released: More secret files on US govt's emergency doomsday powers
    Nuke incoming? Quick break out the plans for rationing, censorship, property seizures, and more

    More papers describing the orders and messages the US President can issue in the event of apocalyptic crises, such as a devastating nuclear attack, have been declassified and released for all to see.

    These government files are part of a larger collection of records that discuss the nature, reach, and use of secret Presidential Emergency Action Documents: these are executive orders, announcements, and statements to Congress that are all ready to sign and send out as soon as a doomsday scenario occurs. PEADs are supposed to give America's commander-in-chief immediate extraordinary powers to overcome extraordinary events.

    PEADs have never been declassified or revealed before. They remain hush-hush, and their exact details are not publicly known.

    Continue reading
  • Stolen university credentials up for sale by Russian crooks, FBI warns
    Forget dark-web souks, thousands of these are already being traded on public bazaars

    Russian crooks are selling network credentials and virtual private network access for a "multitude" of US universities and colleges on criminal marketplaces, according to the FBI.

    According to a warning issued on Thursday, these stolen credentials sell for thousands of dollars on both dark web and public internet forums, and could lead to subsequent cyberattacks against individual employees or the schools themselves.

    "The exposure of usernames and passwords can lead to brute force credential stuffing computer network attacks, whereby attackers attempt logins across various internet sites or exploit them for subsequent cyber attacks as criminal actors take advantage of users recycling the same credentials across multiple accounts, internet sites, and services," the Feds' alert [PDF] said.

    Continue reading

Biting the hand that feeds IT © 1998–2022