到底是什么阻止了你(或其他人)更改他们的IP地址,给ISP和其他互联网用户带来了各种各样的麻烦?
今天的问答环节是由SuperUser提供的,SuperUser是Stack Exchange的一个分支,是一个由社区驱动的问答网站分组。
超级用户读者Whitemage很好奇是什么阻止他肆意更改IP地址并**麻烦:
An interesting question was asked of me and I did not know what to answer. So I’ll ask here.
Let’s say I subscribed to an ISP and I’m using cable internet access. The ISP gives me a public IP address of 60.61.62.63.
What keeps me from changing this IP address to, let’s say, 60.61.62.75, and messing with another c***umer’s internet access?
For the sake of this argument, let’s say that this other IP address is also owned by the same ISP. Also, let’s assume that it’s possible for me to go into the cable modem settings and manually change the IP address.
Under a business contract where you are allocated static addresses, you are also assigned a default gateway, a network address and a broadcast address. So that’s 3 addresses the ISP “loses” to you. That seems very wasteful for dynamically assigned IP addresses, which the majority of customers are.
Could they simply be using static arps? ACLs? Other simple mechani**s?
这里有两件事要调查,为什么我们不能到处改变地址,分配过程是否像看上去那样浪费?
SuperUser contributor Moses提供了一些见解:
Cable modems aren’t like your home router (ie. they don’t have a web interface with simple point-and-click butt*** that any kid can “hack” into).
Cable modems are “looked up” and located by their MAC address by the ISP, and are typically accessed by technicians using proprietary software that only they have access to, that only runs on their servers, and therefore can’t really be stolen.
Cable modems also authenticate and cross-check settings with the ISPs servers. The server has to tell the modem whether it’s settings (and location on the cable network) are valid, and simply sets it to what the ISP has it set it for (bandwidth, DHCP allocati***, etc). For instance, when you tell your ISP “I would like a static IP, please.”, they allocate one to the modem through their servers, and the modem allows you to use that IP. Same with bandwidth changes, for instance.
To do what you are suggesting, you would likely have to break into the servers at the ISP and change what it has set up for your modem.
Could they simply be using static arps? ACLs? Other simple mechani**s?
Every ISP is different, both in practice and how close they are with the larger network that is providing service to them. Depending on those factors, they could be using a combination of ACL and static ARP. It also depends on the technology in the cable network itself. The ISP I worked for used some form of ACL, but that knowledge was a little beyond my paygrade. I only got to work with the technician’s interface and do routine maintenance and service changes.
What keeps me from changing this IP address to, let’s say, 60.61.62.75 and mess with another c***umer’s internet access?
Given the above, what keeps you from changing your IP to one that your ISP hasn’t specifically given to you is a server that is instructing your modem what it can and can’t do. Even if you somehow broke into the modem, if 60.61.62.75 is already allocated to another customer, then the server will simply tell your modem that it can’t have it.
David Schwartz提供了一些额外的见解,并为真正好奇的人提供了白皮书链接:
Most modern ISPs (last 13 years or so) will not accept traffic from a customer connection with a source IP address they would not route to that customer were it the destination IP address. This is called “reverse path forwarding”. See BCP 38.
有什么要补充的解释吗?在评论中发出声音。想从其他精通技术的Stack Exchange用户那里了解更多答案吗?在这里查看完整的讨论主题。
...8.255.255是为私有地址保留的,而其余是为公共IP保留的。 什么是公共ip(public ip)? 公共IP地址对于Internet来说是全局唯一的。按照标准,某些IP地址范围被保留给专用网络使用。任何不为私有IP保留的IP都可以用作公共IP。IP网络应...
...问被阻止内容的人的角度来关注这两种解决方案。它们是什么?他们怎么工作?最重要的是,它们对您的在线安全有什么影响?继续读下去。 ...
...址。有了这个武器,执法人员就不难发现你的身份了。 什么是ip地址(ip addresses)? 在深入研究实用性之前,让我们先定义一下IP地址到底是什么。简言之,它是一个数字,用于识别网络上的计算机。目前使用的寻址系统有两种...
...一个重要的问题,有很多方法可以隐藏你的IP地址。 为什么需要隐藏ip地址? 人们隐藏IP地址的一个重要原因是,他们可以下载非法材料而不被跟踪。但是你可能还有很多其他的原因想隐藏它。 一个原因是地域限制和审查制度...