Mysterious ethernet/internet issue

What is your IP address? If it starts 192.168.xx.xx then it is using NAT, as that is a local-only address. If is starts out with 10.xx.xx.xx, that is also local-only.

Many ordinary, residential ISP services are using NAT, to conserve IPV4 address space and also save their customers from a big headache. The amount of hacking attempts going on the net are HUGE, so preventing any outside access to a user's machine is helpful to the general public, who do not WANT their machine to be accessible from the outside.

Jon

Reply to
Jon Elson
Loading thread data ...

CGNAT is a big headache because of the things that it breaks. Even NAT in customer routers is bad enough as many implementations are broken in various ways. Every residential router has a firewall which should be perfectly adequate at preventing incoming traffic.

IPv6 solves a lot of problems and it is now available from many service providers.

John

Reply to
jrwalliker

A worse problem of CGNAT is that it requires extensive logging of all network connections to be able to satisfy lawful queries for information, that normally can be serviced by just logging customer line-level connections (date/time, customer, IP address).

That logging stores way too much information that could later be abused for profiling. It would normally be prohibited to do that, but in the case of CGNAT it is required.

The provider the original poster uses offers IPv6 in combination with CGNAT, where other connections without IPv6 get a public IPv4 address. It is unclear why they used this combination, my provider (in the same country) offers native IPv6 (/48 for each customer) combined with a single static IPv4 address (of course usually with NAT in the CPE).

In general, ISPs in this country do not really have the problem of IPv4 space exhaustion for their resident customers, because they have grown a lot before this issue really occured and often are formed from many merged companies that each held plenty of space. The market has been saturated for quite some time.

Of course, for mobile users it is different. Interestingly enough, not a single ISP offers IPv6 on their mobile networks, they all use CGNAT (with the possibility to escape it using an alternative APN).

Reply to
Rob

Today I performed some more tests, from wi-fi hotspot to somewhere else/cable modem.

From these test I learned that windows security center and windows firewall must be running (with that the services I mean)

If windows firewall is off (with this I mean the windows firewall is stopped) then inbound connections udp and tcp apperently don't work.

Why this is I will have too look into, perhaps this is some windows security feature or architectural thing.

So far everything is working as normal, which is good news.

(At least when marvel adapter is used).

(Also better testing software was used (reminder for myself, v2.97))

Bye, Skybuck.

Reply to
skybuck2000

ElectronDepot website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.