Why are private networks being broadcast due to NAT?

Anton Nagaets2016-03-14 16:00:57

Anton Nagaets, 2016-03-14 16:00:57

Good day. I encountered the following problem today, when trying to set up one equipment, I found out that I have the opportunity to "walk" to private addresses that the provider broadcasts to the network.
What does it look like. There is a LAN with space 192.168.5.* trailer goes to it 192.168.2.* located in the city tunnel from the provider in another office. IPsec tunnels are built on DFL860. From the provider there is a cable at the head office on HP v1910 in the additional office Dlink 1248 (I know it's not a new piece of iron, but it's stable as hell). The switches are configured with 2 VLANs. The first is for the pool of white addresses, the second is for equipment inside the office.
And now the most interesting. With this parsley, I can see private networks that are behind the ISP's NAT. For example:

C:\Users\***>tracert 192.168.10.1
Трассировка маршрута к 192.168.10.1 с максимальным числом прыжков 30
  1     1 ms     *       <1 мс шлюз наш
  2     *        *        4 ms  Шлюз провайдера
  3     1 ms     1 ms    <1 мс  первое оборудование провайдера после шлюза
  4     2 ms    <1 мс    <1 мс  188.***.245 оборудование после шлюза
  5     5 ms     5 ms     5 ms  95.***.11 оборудование после шлюза
  6    30 ms    73 ms    52 ms  192.168.10.1 <= тадам
Трассировка завершена.
C:\Users\***>tracert 192.168.12.1

And this is not an isolated example. The rest of the confirmed traces were cut off at hop 4 and beyond.

5+n     *        *        *     Превышен интервал ожидания для запроса.

While everything is clear, the gateway is guilty, it is not a good one broadcasting addresses. Okay, I decided to try it and installed the laptop, gave it an external IP, and again I see the same picture, only there is no first jump. Immediately comes the provider's gateway.
But if I remove all the wires in an unmanaged switch like DGS-1008, the problem disappears, the translation stops, but returns with any managed switch with a configured vlan.
UPD. Providers (there are two of them) swear and swear about port isolated on equipment.

Answer the question

In order to leave comments, you need to log in

9 answer(s)

Anton Nagaets, 2016-03-16
@gr1mm3r

The issue was resolved.
On the provider's side, the equipment was configured incorrectly and it broadcast private networks to the global.

Evgeniy Samoilenko, 2015-01-08
@samoilenkoevgeniy

Goodnight!
1. Doesn't matter.
2. There is no specific promising direction, there are certain stacks of technologies that are popular in use, they can be found using any search (on the site, on Google, etc.)
3. Depending on how much time and desire, I gained enough experience in six months to start earning at least some money, about 2-3 hours a day. But this data will be very different for each respondent.

Alexey P, 2015-01-08
@ruddy22

if it's short for
half a year - ~~you drive with your nose, what and how to~~ gain experience (self-study, courses, meditation ...) you
get a job 35-40 rubles (in the Moscow region) as a junior
~ 2-3 months you fix bugs, you continue to "drive your nose "
~ 2-3 months you do interesting tasks
lvl up (the salary rises according to the results of work [depends on the office])
well, then you'll understand yourself!
ps
he himself came to the web at the age of 27, after many years of administration.
you will work a lot = (first of all, on yourself, especially when something doesn’t work out.
after video courses, I advise you to read books, but better before video courses !

Pavel Elizariev, 2015-01-08
@effetto

I am now 28 and I have been programming since the age of 14, I have always studied on my own, although I have a diploma. I am developing websites.
On the merits of your questions, I can answer the following.
Starting a new activity, and any, with age is more difficult. However, with age, a person develops purposefulness, rationality and will. In other words, if you really intend to become a developer, and not just flatter your pride, then you will succeed. At least at 14, at least at 27, at least at 42.
The prospects in our field are determined by technical innovations and change very quickly. Today it is SPA and landing pages.
Regarding the threshold of entry, it is difficult to give a direct answer, because the question is posed incorrectly. Instead of answering, I will tell a story from my childhood.
14 years ago, I learned about the existence of such a thing as ASP. I dialed the docks and sat down for a week with caffeine, a computer and manuals. After this week, I wrote for the vacancy "Webmaster Required". They took me, and after a month and a half I launched my first website, having received money for it. Education went "parallel" to school.
However, here I want to say that a programmer, especially in the field of the web, must learn constantly, always and all his life, on every project. Otherwise, you will very quickly fall behind the community and stop your development.

index0h, 2015-01-08
@index0h

1 At this age, does it make sense to move into this area?

Try it in your spare time, of course. Just be prepared to spend TIME on it.
These are two parts of a single whole. For example, a back-end worker must know the front-end at least at the initial level, this also applies to the front-end worker.
1 year minimum. Only there is a nuance: the process of learning from a programmer is like a repair, you can start but you can’t finish. Be ready to learn constantly.

Vapaamies, 2015-01-08
@vapaamies

With such illiteracy and / or inattention to typos, there are no good programmers. Try yourself in something else: administration, testing, design, etc.
Not for the sake of a collision, but for friendly advice.

Nikolai Volynkin, 2015-05-15
@nick_volynkin

I just moved to IT at 27 from a completely different field. Good luck.
If you still have questions - write here, I will give a detailed answer.

Yuri Galmakov, 2015-01-09
@galmakov

1 . Age is not important. I started freelancing at 22. Now I'm 27. Started as a copywriter. Now I'm doing marketing.
2 . Everything is promising if you find your customers. As they say, for every product there is a buyer. Do what you like and do.
3 . I studied copywriting and marketing on my own. I bought courses, attended trainings, asked questions, worked. You need to constantly learn. The more skills and knowledge you acquire, the more you earn.
Initially, he combined full-time work with freelancing. A year later, I quit and to this day I work only as a freelancer. The reason for the dismissal is that he began to earn more in freelancing than in his main job.
What training period is required? Hard to say. Depends on the productivity of training and the effectiveness of the teaching material. Also important is the amount of time you can invest in learning and freelancing.
In any case, you yourself will feel when it is worth switching exclusively to freelancing. Quitting will be a little scary and uncomfortable, but damn interesting.

Finecoder, 2015-12-21
@Finecoder

1 Age - any (well, if you are not 60, although there are people even at that age)
2 Everything is promising if the specialist is good, the backend is more paid.
3 I started with the frontend, since the entry threshold is low, I studied html + css from Petrik, I began to carry out small orders for layout, then, having filled my hand, I began to study Javascript + Jquery.