Home / server / Questions / 237468
Accepted
Dave Markle
Asked: 2011-02-19 13:25:00 +0800 CST

A website hosted on the 1.0.0.0/8 subnet, somewhere on the Internet?

  • 772

Background

I'm attempting to demonstrate, using a real-world example, of why someone would not want to configure their internal network on the 1.0.0.0/8 subnet. Obviously it's because this is not designated as private address space.

As of 2010, ARIN has apparently allocated 1.0.0.0/8 to APNIC (the Asia-Pacific NIC), who seems to have begun assigning addresses in that subnet, though not in 1.1.0.0/16, 1.0.0.0/16, and others (because these addresses are so polluted by bad network configurations all around the Internet).

My Question

My question is this: I'd like to find a website that responds on this subnet somewhere and use it as a counter-example, demonstrating to a non-technical user its inaccessibility from an internal network configured on 1.0.0.0/8. Other than writing a program to sniff all ~16 million hosts, looking for a response on port 80, does anyone know of a directory I can use, or even better yet, does anyone know of a site that's configured on this subnet?

WHOIS seems to be too general of a search for me at this point...

networking internet subnet sniffing

5 Answers

  1. I don't know of any live sites in this range, but you do not need a counterexample -- You need RFC 1918.

    Print it (possibly several times) and use the hardcopy to bludgeon the person who wants to violate it until they understand the error of their ways.

    • 28
  2. Best Answer
    whois -h whois.apnic.net -- "-T inetnum -m 1.0.0.0/8" | less

    Just produced 10005 lines of output, which is the first-level allocations under that netblock. There are 566 allocations. A few are in Australia, so might yield English-language web-pages and so might have more of a psychological impact in your re-education efforts?

    • 11

  3. If they use 1.0.0.0/8 and I go and join your network via WiFi or VPN, my iPhone will get confused and explode:

    enter image description here

    And your work does not want to buy me a new iPhone because they made mine explode. They're expensive.

    • 10

  4. Since it specifically mentions 1.0.0.0 , you could quote them -

    If you are using public IP addresses that have not been allocated by IANA or your ISP, then you may be using the IP network ID of another organization on the Internet. This is known as illegal or overlapping IP addressing. If you are using overlapping public addresses, then you cannot reach the Internet resources of the overlapping addresses. For example, if you use 1.0.0.0 with the subnet mask of 255.0.0.0, then you cannot reach any Internet resources of the organization that is using the 1.0.0.0 network.

    You can also exclude specific IP addresses from the configured range. Excluded addresses are not allocated to private network hosts.

    From http://technet.microsoft.com/en-us/library/cc783033(WS.10).aspx

    Emphasis is mine, because the word illegal might scare them.

    • 2

  5. I don't know any websites in the 1/8 range, but I do have my home dsl address in the 2/8 range:

    $ host 2.0.232.240
240.232.0.2.in-addr.arpa domain name pointer ANantes-256-1-229-240.w2-0.abo.wanadoo.fr.

    Wanadoo is the old french name of the ISP "Orange". They got the 2.0.0.0/12 pool:

    $ whois 2.0.232.240

inetnum:        2.0.232.0 - 2.0.232.255
netname:        IP2000-ADSL-BAS
descr:          BSNAN256 Nantes Bloc 2


% Information related to '2.0.0.0/12AS3215'

route:          2.0.0.0/12
descr:          France Telecom Orange
origin:         AS3215

    As this pool is used for adsl customers, I don't think a lot of website are hosted in that range.

    • -1