Using unassigned public ip addresses on a private network

Posted on 2008-11-14
Last Modified: 2013-11-29
I recently came across a client who is using public ip addresses on their LAN and WAN. These ip addresses have not been assigned to them. I suppose they have been able to do this because they are NATed. My question is: isnt this illegal? and what are the real and implied technical implications of such a setup.
Question by:exagger
    LVL 3

    Accepted Solution

    i would not say its illegal. the implication for this scenario would be, that your client will not be able to communicate with whoevers ip-adresses he is using. (since the router will send the packets within the own subnet)
    Other then that i don't see any problems.
    LVL 10

    Assisted Solution

    We have a client doing the exact same thing.
    We are also in the middle of undoing this allocation of IP addresses! As above - the REAL world IP address (range) will not be contactable as the internal routing will point all requests to the internal devices.
    As long as these IP addresses do not appear on the 'net then there is no problem. If they start to do so then there are legal implications.
    I'm really just enforcing what is said first - but having seen it in action (and it has been for some years) I can categorically state that there are no 'real' implications beyond stuffed routing if the IP addresses do become allocated. Our clients actually ARE! (but not for a domain that they would ever need to contact)

    Author Comment

    Well this actually block is actually already assigned. Its actually a whole /16.

    I havent had a chance to meet the person who came up with this particular clients address scheme, but Im curious to know, from your experience, with all the flexibility of private ip address why would anyone want a setup like this?
    LVL 10

    Expert Comment

    I'm not sure we're allowed to clearly express our opinion of individuals who do that on this forum ;-)
    A 16-bit public allocation? Wow. In which case there are 65000 ip addresses he can't see on the 'tinterweb. That's going to hurt, and I expect that there will be odd 'issues' popping up when people browse.
    One solution I suppose would be to use a proxy server that has an EXTERNAL DNS Server entry only (can't resolve internal IP addresses) and direct all web browsing traffic to it. Make sure it NATs all through traffic and at least that issue will be sorted.
    In the meantime, cost up a project to reallocate IP addresses ;-)

    Author Comment

    Not an opinion of the individual but the situations in which anyone would choose to design their network in this way.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Understanding FTPS File transfer is a common requirement in most Enterprises. While there are numerous ways to get a file from Point A to Point B over a network, perhaps the most common method still in use is FTP – File Transfer Protocol. FTP is …
    SSL is a very common protocol used these days when browsing the web.  The purpose is to provide security to communication, but how does it do it?  There are several pieces at work that have to be setup before SSL will even work and it requires both …
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now