Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Change private range from 192.x.x.x to 10.x.x.x/ more secure?

Status
Not open for further replies.
nell1

nell1

Technical User
Jan 8, 2003
142
GB
Hi all,

Am upgrading to a leased line form NTL. The engineer is configuring the routers and suggested that we change our current internal IP range from 192.x.x.x to something like 10.x.x.x. When I asked why he said that the 192.x.x.x range is accessable over the internet whereas the other ranges are not. This has confused me, I thought it did not really matter whatt range your internal network was as long as it was sufficiently protected from the outside.

Any input would be a great help!

Nell
 
Sort by date Sort by votes
The RFC specifies 3 address ranges for private networks that are not routable across the Internet. One Class A network, 16 Class B networks and 255 Class C networks. They are:

10.xxx.xxx.xxx - Class A
172.16-31.xxx.xxx - Class B
192.168.xxx.xxx - Class C

All of these network address classes have to use either Network Address Translation (NAT) or must be tunneled in another protocol using routable address (like a VPN) to transit the Internet.


pansophic
 
Upvote 0 Downvote
Many thanks for the reply guys!

Cleared alot up!

Nell1
 
Upvote 0 Downvote
Wow! The NTL engineer is an idiot!

Chris.

**********************
Chris A.C, CCNA, CCSA
**********************
 
Upvote 0 Downvote
Technically speaking there is nothing stopping you using any private address scheme you want - if you are using a router with firewall and using NAT then there is nogreater risk of using a non RFC specified address range for private use.

Personally I would always stick to RFC defined private ranges but it isn't essential in a networked environment where NAT is used. Obviously you can't just directly assign any public address you feel like using to a machine that is directly connected to the internet (eg with a DSL modem, not using a router).

Systems Administrator
BSc Network Computing, CCNA. Both in training! :)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Zebad
  • Locked
  • Question
TFTP interference from another host (Windows Server , VxWorks Client)
Replies
0
Views
664
Zebad
Zebad
jmarkus
  • Locked
  • Question
Can I have a different private IP address which isn't on my router's subnet?
Replies
6
Views
701
sbcsu
sbcsu
Vedant Gonnade
  • Locked
  • Question
How to send a string (generated by camera) to computer
Replies
0
Views
584
Vedant Gonnade
Vedant Gonnade
TheFaz_
  • Locked
  • Question
Sending udp packets from fpga to the computer using Lwip tcp/ip stack using C programming
Replies
0
Views
569
TheFaz_
TheFaz_
joserodriguezan
  • Locked
  • Question
Looking for a free software application to recieve SMNP alerts.
Replies
0
Views
564
joserodriguezan
joserodriguezan

Part and Inventory Search

Sponsor

Back
Top