Geolocation accuracy for Microsoft O365 IP addresses

HI All,

Question:

How accurate are Geolocation tools, I don't need them to be accurate to the last millimeter, I just need to make sure they are in the right continent at the very least.  I ask this because I understand that sometimes the owner of the block of IP's may be in (as an example) Microsoft USA but the IP's may be physically in the UK. Will this confuse the Geolocation tool into thinking they are in fact physically located and being used in the US ??

Some background of why I'm asking this question

I have the most laborious task of classifying and sorting out our "what's up gold" monitoring system in relation to our O365 traffic. The netflow module allows you to classify traffic (it has to be the worst implementation of this feature I have seen on any monitoring system).

You can only put one port per subnet which means multiple instances of the same port pointing to multiple subnets which is a really backward way of doing things. Now you can imagine how many O365 addresses there are which makes this an excruciating task especially when I have to show which Region the IP's are which just triples the work...

thanks
T4K
Thirst4KnowledgeAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David Johnson, CD, MVPOwnerCommented:
all geolocation services use the address block of the ip, determine its owner's ARIN record and use that for the location that is about the limit using the limited information available.
0
Thirst4KnowledgeAuthor Commented:
when we request IP's address spaces in EMEA (RIPE)we have to put down where they will be used (Country & City with postal code) or the application will not be accepted is this not the same for ARIN?
0
Dr. KlahnPrincipal Software EngineerCommented:
... sometimes the owner of the block of IP's may be in (as an example) Microsoft USA but the IP's may be physically in the UK.

It's an uncommon case but does happen.  I have a few such address blocks locked out on my site.  I discovered it by accident when chasing down some problem site scrapers.  They were registered in the US but traceroute proved them to be Asia.  Going back and looking at the whois location today for those addresses, I see that they are now correctly shown to be in China.

In general I've found geolocation as implemented in the linux iptables geoip module to be over 99% accurate.  A bigger problem IMO, if you are enforcing a "to the nearest continent" policy, is the huge number of proxies and VPN servers that can make anyone appear to be coming from anywhere.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.