pserviss
asked on
Ip address
I recently had 2 IP address show up on my Netgear ProSafe Firewall router. One being 169.254.21.30 & 169.254.142.232. I teaced the to a company called IANA.org in Marina Del Ray Cal. I cancelled them out from further access. But I want to trace these IP address. How it is? What is the procedure?
Just like sunray said... the 169 address space is untraceable outside your router. The 169.x.x.x IPs are usually due to DHCP failures to which Windows assigns itself these IPs...
How did you initially find out that they are from IANA.org in MDR Cal?
How did you initially find out that they are from IANA.org in MDR Cal?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can you view and recognize their IPs when they enter? OR do you want to generate a log where the IP is presented to you?
Cyber
Cyber
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
where is your DHCP server? the Netgear router itself, or another windoze mashine?
Did you disable the DHCP server and client functionality in your Netgear?
Did you disable the DHCP server and client functionality in your Netgear?
the 169.x.x.x ip string is internally generated due to DHCP reroutes of varying reasons. But since you seem to miraculously know the sites related to these IPs, simply do a ping search on your command prompt
format: ping "url"
and once you find a deciferable IP- use an IP geo search utility to trace.
For more info on DHCP and further assistance if need be follow the link posted by tim Holman above.
format: ping "url"
and once you find a deciferable IP- use an IP geo search utility to trace.
For more info on DHCP and further assistance if need be follow the link posted by tim Holman above.
Show up on your router? This is a vague statement. I suspect you are talking about your ARP table. If thats the case then that means that someone on your local network with those ips is accessing the router.
Pserviss,
The 169.254.*.* block is reserved for automatic, non-DHCP address assignment, referred to as AIPA (Automatic IP Assignment, there is an applicable RFC, but the number escapes me at this instant -- I did cite it in my chapter on Internet security in the Computer Security Handbook, 4th Edition. The other addresses that you will often see, 192.168.*.*, 172.16-31.*.*, and 10.*.*.* are covered by RFC 1918, Address Allocation for Private Internets.
These IP address blocks should not occur naturally on ISPs. If you do encounter them coming FROM an ISP, notify them immediately.
For consistency, it is not surprising that these blocks are marked as owned by IANA, which is the organization responsible for managing the IP address space.
I hope tha the above is helpful. If I have been unclear, please let me know!
- Bob (aka RLGSC)
The 169.254.*.* block is reserved for automatic, non-DHCP address assignment, referred to as AIPA (Automatic IP Assignment, there is an applicable RFC, but the number escapes me at this instant -- I did cite it in my chapter on Internet security in the Computer Security Handbook, 4th Edition. The other addresses that you will often see, 192.168.*.*, 172.16-31.*.*, and 10.*.*.* are covered by RFC 1918, Address Allocation for Private Internets.
These IP address blocks should not occur naturally on ISPs. If you do encounter them coming FROM an ISP, notify them immediately.
For consistency, it is not surprising that these blocks are marked as owned by IANA, which is the organization responsible for managing the IP address space.
I hope tha the above is helpful. If I have been unclear, please let me know!
- Bob (aka RLGSC)
ditto
But they could be valid IP address used in the internet. Try giving the IP address going to www.arin.net and see if their search result give any idea
SR