digplanet beta 1: Athena
Share digplanet:

Sections

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

In the Internet addressing architecture, a private network is a network that uses private IP address space, following the standards set by RFC 1918 for IPv4 and RFC 4193 for IPv6. These addresses are commonly used for home, office, and enterprise local area networks (LANs), when globally routable addresses are not mandatory, or are not available for the intended network applications. Under Internet Protocol IPv4, private IP address spaces were originally defined in an effort to delay IPv4 address exhaustion, but they are also a feature of the next generation Internet Protocol, IPv6.

These addresses are characterized as private because they are not globally delegated, meaning they are not allocated to any specific organization, and IP packets addressed by them cannot be transmitted onto the public Internet. Anyone may use these addresses without approval from a regional Internet registry (RIR). If such a private network needs to connect to the Internet, it must use either a network address translator (NAT) gateway, or a proxy server.

Contents

Private IPv4 address spaces[edit]

The Internet Engineering Task Force (IETF) has directed the Internet Assigned Numbers Authority (IANA) to reserve the following IPv4 address ranges for private networks, as published in RFC 1918:[1]

RFC1918 name IP address range number of addresses classful description largest CIDR block (subnet mask) host id size mask bits
24-bit block 10.0.0.0 - 10.255.255.255 16,777,216 single class A network 10.0.0.0/8 (255.0.0.0) 24 bits 8 bits
20-bit block 172.16.0.0 - 172.31.255.255 1,048,576 16 contiguous class B networks 172.16.0.0/12 (255.240.0.0) 20 bits 12 bits
16-bit block 192.168.0.0 - 192.168.255.255 65,536 256 contiguous class C networks 192.168.0.0/16 (255.255.0.0) 16 bits 16 bits

Classful addressing is obsolete and has not been used in the Internet since the implementation of Classless Inter-Domain Routing (CIDR) starting in 1993. For example, while 10.0.0.0/8 was a single class A network, it is common for organizations to divide it into smaller /16 or /24 networks. Contrary to a common misconception, a /16 subnet of a class A network is not referred to as a class B network. Likewise, a /24 subnet of a class A or B network is not referred to as a class C network. The class is determined by the first three bits of the prefix.[2]

Dedicated space for Carrier Grade NAT deployments[edit]

In April 2012, IANA allocated 100.64.0.0/10 for use in carrier grade NAT scenarios in RFC 6598.[3] This address block should not be used either on private networks or on the public Internet: it is intended only for use within the internal operations of carrier networks. The size of the address block (2^{22}, approximately 4 million, addresses) was selected to be large enough to uniquely number all customer access devices for all of a single operator's points of presence in a large metropolitan area such as the Tokyo metropolitan area.[3]

Private IPv6 addresses[edit]

Main article: Unique local address

The concept of private networks and special address reservation for such networks has been carried over to the next generation of the Internet Protocol, IPv6.

The address block fc00::/7 has been reserved by IANA as described in RFC 4193. These addresses are called Unique Local Addresses (ULA). They are defined as being unicast in character and contain a 40-bit random number in the routing prefix to prevent collisions when two private networks are interconnected. Despite being inherently local in usage, the IPv6 address scope of unique local addresses is global.

A former standard proposed the use of so-called "site-local" addresses in the fec0::/10 range, but due to major concerns about scalability and the poor definition of what constitutes a site, its use has been deprecated since September 2004 by RFC 3879.

Link-local addresses[edit]

Main article: Zero configuration networking
See also: Link-local address

Another type of private networking uses the link-local address range. The validity of link-local addresses is limited to a single link; e.g. to all computers connected to a switch, or to one wireless network. Hosts on different sides of a bridge are also on the same link, whereas hosts on different sides of a router are on different links.

IPv4[edit]

In IPv4, link-local addresses are codified in RFC 5735 and RFC 3927. Their utility is in self-autoconfiguration by network devices when Dynamic Host Configuration Protocol (DHCP) services are not available and manual configuration by a network administrator is not desirable.

The block 169.254.0.0/16 is reserved for this purpose, with the exception of the first and the last /24 subnets in the range. If a host on an IEEE 802 (ethernet) network cannot obtain a network address via DHCP, an address from 169.254.1.0 to 169.254.254.255 may be assigned pseudorandomly. The standard prescribes that address collisions must be handled gracefully.

IPv6[edit]

In IPv6, link-local addresses are codified in RFC 4862. Their use is mandatory, and an integral part of the IPv6 standard.

The IPv6 addressing architecture (RFC 4291) sets aside the block fe80::/10 for IP address autoconfiguration.

Common uses[edit]

The most common use of private addresses is in residential networks, since most Internet service providers (ISPs) only allocate a single publicly routable IP address to each residential customer, but many homes have more than one computer or other Internet connected device, such as televisions. In this situation, a network address translator (NAT/PAT) gateway is usually used to provide Internet connectivity to multiple hosts.

Private addresses are also commonly used in corporate networks, which for security reasons, are not connected directly to the Internet. Often a proxy, SOCKS gateway, or similar devices are used to provide restricted Internet access to network-internal users.

In both cases, private addresses are often seen as enhancing network security for the internal network, since it is difficult for an Internet host to connect directly to an internal system.

Misrouting[edit]

It is common for packets originating in private address spaces to be misrouted onto the Internet. Private networks often do not properly configure DNS services for addresses used internally and attempt reverse DNS lookups for these addresses, causing extra traffic to the Internet root nameservers. The AS112 project attempted to mitigate this load by providing special blackhole anycast nameservers for private address ranges which only return negative result codes (not found) for these queries.

Organizational edge routers are usually configured to drop ingress IP traffic for these networks, which can occur either by misconfiguration, or from malicious traffic using a spoofed source address. Less commonly, ISP edge routers drop such egress traffic from customers, which reduces the impact to the Internet of such misconfigured or malicious hosts on the customer's network.

Merging private networks[edit]

Since the private IPv4 address space is relatively small, many private IPv4 networks use the same address space. This creates a common problem when merging such networks, namely the duplication of addresses on multiple devices. In this case, networks or hosts must be renumbered, often a time-consuming task, or a network address translator must be placed between the networks to masquerade the duplicated addresses.

To mitigate this problem for IPv6, RFC 4193 specifies a large (40-bit) unique Global ID to be pseudo-randomly generated by each organization using Unique Global Addresses. It is very unlikely that two network addresses generated in this way will be the same.

Private use of other reserved addresses[edit]

Historically address blocks other than the private address ranges have been reserved for potential future uses. Some organizations have used them for private networking applications despite official warnings of possible future address collisions. Typically these addresses are not referred to as "reserved." IPv4 addresses 240.0.0.0 to 254.255.255.254 (all addresses in 240.0.0.0/4 except 255.0.0.0/8) are designated for future use and research and development.

See also[edit]

RFC References[edit]

  • RFC 1918"Address Allocation for Private Internets"
  • RFC 2036"Observations on the use of Components of the Class A Address Space within the Internet"
  • RFC 2050"Internet Registry IP Allocation Guidelines"
  • RFC 2101"IPv4 Address Behaviour Today"
  • RFC 2663"IP Network Address Translator (NAT) Terminology and Considerations"
  • RFC 3022"Traditional IP Network Address Translator (Traditional NAT)"
  • RFC 3330"Special-Use IPv4 Addresses" (superseded)
  • RFC 5735"Special-Use IPv4 Addresses"
  • RFC 3879"Deprecating Site Local Addresses"
  • RFC 3927"Dynamic Configuration of IPv4 Link-Local Addresses"
  • RFC 4193"Unique Local IPv6 Unicast Addresses"
  • RFC 6598"Reserved IPv4 Prefix for Shared Address Space"

References[edit]

  1. ^ "RFC 1918: Address Allocation for Private Internets". IETF. February 1996. p. 4. 
  2. ^ Forouzan, Behrouz (2013). Data Communications and Networking. New York: McGraw Hill. pp. 530–31. ISBN 978-0-07-337622-6. 
  3. ^ a b "RFC 6598: Reserved IPv4 Prefix for Shared Address Space". IETF. April 2011. p. 8. 

Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Private_network — Please support Wikipedia.
A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
1000000 videos foundNext > 

VPN - Virtual Private Networking

Please give us a THUMBS UP if you like our videos!!!

2008 Virtual Private Network (VPN) Server (2008 Version)

2008 Virtual Private Network (VPN) Server (2008 Version) implementing RRAS. Re-encoded in HD so you can see the text. For more updated version see the 2011 v...

How to Create and Host Your Own Free Private Network with Tunngle, CO-OP Borderlands 2

PLEASE SUBSCRIBE IF THIS HELPS In this video I will show you how to create your own private network, also how to forward your port. ****Make sure you don't h...

Verizon Wireless Private Network

The Verizon Wireless Private Network Solution operates over our industry-leading 4G LTE network and gives your business a reliable and secure wireless extens...

Tunngle: How to Create and Join Your Own Free Private VPN Network with Tunngle

In this video it shows you how to Create Your own VPN Network over Tunngle for you and your friends to use. Tunngle is a free VPN program like hamachi except...

Connecting to the Virtual Private Network (VPN)

At the University of York, you can use the VPN to access the network when you're off campus. This video shows you where to find online help to do this. See a...

Hak5 - Virtual Private Networks using your Google account and chipset woes

This week Shannon has a great Snubs Report on setting up a Virtual Private Network using your Google account, and Darren shares some lessons learned in Linux...

Rockets: Private network (1984)

L'ultimo brano dei Rockets firmato L'her- Maratrat, per ora... Senza dubbio una delle migliori canzoni dell'album Imperception! Canta Gerard L'Her.

VPN Server 2008 in Hindi Video 1

In this Video Jagvinder Thind explains what is VPN in Hindi or virtual private network.in Hindi. Server 2008 tutorial in HIndi.

Setup a Virtual Private Network (VPN) in Minutes by AvoidErrors

http://www.avoiderrors.net/category/tutorials/windows-7/ Setup a Virtual Private Network in Minutes using Gbridge.

1000000 videos foundNext > 

1800 news items
 
Research and Markets: Global Secure Socket Layer Virtual Private Network ...
Fort Mills Times
Wed, 19 Jun 2013 11:33:33 -0700

The analysts forecast the Global SSL VPN market to grow at a CAGR of 4.02 percent over the period 2012-2016. One of the key factors contributing to this market growth is the need for improved access control. The Global SSL VPN market has also been ...
 
AT&T Mobilizes Virtual Private Network Offering for Small and Medium-Sized ...
PR Newswire (press release)
Tue, 18 Jun 2013 07:02:37 -0700

DALLAS, June 18, 2013 /PRNewswire/ -- Helping to keep businesses better connected to the workplace regardless of location, AT&T* announced the availability of expanded Virtual Private Network (VPN) bundles** that provide free Mobile Remote Access ...
 
Explainer: what is a virtual private network (VPN)?
ScienceAlert
Sun, 16 Jun 2013 10:04:14 -0700

Have you ever wanted to exist in more than one place at the same time? The laws of physics suggest wormholes through space and time are hypothetical; but wormholes do exist in cyberspace and wonders can be found on the other side. We call these ...
 
AT&T extends VPN connection to mobile devices
Telecompaper (subscription)
Wed, 19 Jun 2013 01:34:25 -0700

AT&T is offering expanded Virtual Private Network (VPN) bundles to small and medium-sized business customers. The VPN bundles provide free mobile remote access that allows users mobile access from virtually any device. As part of the VPN value bundle ...

ITProPortal

VPN at no cost : The best free Virtual Private Network clients
ITProPortal
Thu, 13 Jun 2013 07:12:20 -0700

What was formerly a technology mostly used by businesses to allow employees to access the company network remotely has turned into a multi-purpose technology. Now VPN means everything from enterprise VPN hardware to on-the-fly software solutions ...
 
Cellcrypt launches private network to secure voice calls
Telecompaper (subscription)
Fri, 14 Jun 2013 03:44:40 -0700

Cellcrypt launches private network to secure voice calls. Friday 14 June 2013 | 12:38 CET | News. Encrypted mobile phone voice calling services provider Cellcrypt has unveiled Cellcrypt Private Switch, an on-premise private infrastructure that enables ...
 
iomart Group and Geo Win Global Telecoms Business Award for Private Fibre ...
Business Wire (press release)
Wed, 05 Jun 2013 04:27:24 -0700

The award was presented at a ceremony in London last night for the successful delivery by Geo of a fully private network to match iomart's private cloud infrastructure. The project, which included the delivery of a fully dedicated 1,860km fibre optical ...

The Guardian

The only winners of the NSA debacle are companies that protect your online ...
Quartz
Wed, 19 Jun 2013 21:30:32 -0700

FoxyProxy is an extension for the Firefox web browser that re-routes traffic through a “Virtual Private Network,” thus masking the location and identity of anyone using the extension. Bandwidth consumed by FoxyProxy users was up 48% in the week after ...
Loading

Oops, we seem to be having trouble contacting Twitter

Talk About Private network

You can talk about Private network with people all over the world in our discussions.

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!

Copyright © 2009-2013 Digparty. All rights reserved.

Digparty Home | FAQ | Privacy Policy | Terms of Service | Contact Us | Feedback