[173601] in North American Network Operators' Group
Re: Carrier Grade NAT
daemon@ATHENA.MIT.EDU (Owen DeLong)
Tue Jul 29 13:29:19 2014
X-Original-To: nanog@nanog.org
From: Owen DeLong <owen@delong.com>
In-Reply-To: <53D7D327.9000409@direcpath.com>
Date: Tue, 29 Jul 2014 10:19:23 -0700
To: Robert Drake <rdrake@direcpath.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
On Jul 29, 2014, at 10:00 AM, Robert Drake <rdrake@direcpath.com> wrote:
>=20
> On 7/29/2014 12:42 PM, Chris Boyd wrote:
>>=20
>> There's probably going to be some interesting legal fallout from that =
practice. As an ISP customer, I'd be furious to find out that my =
communications had been intercepted due to the bad behavior of another =
user.
>>=20
>> --Chris
>>=20
> Usually, unless the judge is being super generous, they'll provide a =
timestamp and a destination IP. That should be pretty unique unless =
they're looking for fraud against large website or something. In the =
unlikely event that two people hit the same IP at the same time(window) =
they would probably just throw that information out as unusable for =
their case.
>=20
> Usually the window they give is ~ 3-5 seconds so they're pretty =
specific.
This assumes that your log server and theirs are synchronized to an =
accurate time source within 3-5 seconds (not necessarily a safe =
assumption in all cases). Further, in a CGN environment, it=92s unlikely =
you would not have multiple customers using the same IP address even =
down to the single second.
Owen
