router IP different than Public IP?

[AnMig]

Router: DI-365
DSL connection

WAN IP in the router is:172.27.92.x



DYDNS and other IP discovery sites lists my IP as: 209.191.209.49

The correct IP is the Router since I can connect to my computer using this one and not the discovered IP.

Question:
Does the router hide the true public IP? (how do you turn it off)

 

[cleverhandle]

Originally posted by: AnMig
WAN IP in the router is:172.27.92.x

DYDNS and other IP discovery sites lists my IP as: 209.191.209.49

The correct IP is the Router since I can connect to my computer using this one and not the discovered IP.

Not from outside your ISP's network you can't. 172.27.92.x is an RFC1918 (private) address. It's not a publically routable IP. Most DSL services put their public IP's on the WAN and then NAT that to the clients. But some, like yours (and mine), use private addressing on the WAN address and have their routing infrastructure set up to route packets to your public IP through that. So if you're outside your ISP's network, you'd see something like this when you send a packet to 209.191.209.49

Internet -->
ISP's public gateway -->
ISP's internal routing (172.27.x.x) -->
Your router's WAN (172.27.92.x) -->
Your public IP inside the router (209.191.199.49)

The router is not hiding anything. Your public IP is behind the router (probably on the internal interface) and packets going there route through a private network terminating in the 172.27.92.x address on the WAN side of your router. All of this is by design and shouldn't work any differently than the usual public WAN IP setup does.

 

[AnMig]

As complicated as that sounds it actually made sense. Thanks for the time in effort in responding.

At least now I know which is the true Public IP and start troubleshooting from there. I am trying to remote connect using vnc and have forwarded all the ports. I tried using the 209.191.199.49 but could not connect (using my lap top same DSL connection). I was able to connect using my routers WAN I guess since I was still in my LAN.

Thanks again.

 

[JackMDS]

Many Routers would let you connect using the external IP from the inside regardless of the IP scheme.

To make sure you have to really connect from another Internet connection on another network.

:sun:

 

[spidey07]

Could be that the ISP is using internal IP addresses and doesn't allow any connections to be made to them. You may be out of luck. In other words, they are protecting their network and only allow connections to be established from your computer, not the other way around.

 

[cleverhandle]

Originally posted by: spidey07
Could be that the ISP is using internal IP addresses and doesn't allow any connections to be made to them. You may be out of luck. In other words, they are protecting their network and only allow connections to be established from your computer, not the other way around.

You mean like the 209. address is some gateway further up the chain and it just NAT's all the way down to the client? That would suck. The PTR for the IP is es49.ips.PaulBunyan.net - I'm not sure whether that sounds like a client machine name or a gateway name.

 

[AnMig]

well that sucks, I went to a friends house and still not able to connect using the public ip 209.191.209.49.

I am pretty sure I forwarded all the VNC ports 5800 and 5900. I even disabled DMZ on the one computer I was forwarding evrything.


I am pretty sure it s not a computer setting since I was able to remote connect to this home pc when I ws on Dial up (yes I left it on).

I tried calling the network gut at my ISP just to make sure they are forwarding the request to my home pc.


SO if I understand this correctly:

Outside PC---internet---209.191.209.49----ISP recieves request then forwards it to my assigned DSL IP-- 172.27.92.x ----my router then forwards it to my pc---- 192.168.0.xx


Whats strange is my router only reports the DSL Assigned WAN IP 172.27.92.x. I have to go to Intenet sites to find my public IP.


I am pretty sure its a simple step or setting that I am missing, its should not be this complicated to connect to home PC not unless as someone has suggested the ISP is blocking the requests.

Thanks everyone

 

[cleverhandle]

Originally posted by: AnMig
Outside PC---internet---209.191.209.49----ISP recieves request then forwards it to my assigned DSL IP-- 172.27.92.x ----my router then forwards it to my pc---- 192.168.0.xx

That's what you don't want it to look like, because it mean the gateway machine at 209. is outside of your control. Unfortunately, if your machine is on a 192.168 address then that's probably the way it is. Can you see any other IP information on the router? If it's got 172.27 outside and 192.168. inside then you're SOL - that means it's private addressing all the way down from the ISP gateway to the client. Sometimes you can get better information by telnet'ing to your router rather than using the web interface.

If it really is set up with entirely private addressing, then that totally sucks. Personally, I would try to cancel the contract with the ISP, though it's unlikely that they would oblige you.

 

[AnMig]

This is what it looks like in my router


Firmware Version : 2.00 , 12 Aug 2005
LAN

MAC Address : xxxxxxxxxxx
IP Address : 192.168.0.1
Subnet Mask : 255.255.255.0
DHCP Server : Enabled
WAN

MAC Address : xxxxxxxxxxxxxxxxxxxx
Connection : DHCP Client Connected
Connection Up Time : 0 day(s), 4:14:32

IP Address : 172.27.92.xx this is probably asssigned by my isp
Subnet Mask : 255.255.252.0
Default Gateway : 172.27.92.1
Primary DNS Server : 192.168.203.102
Secondary DNS Server : 192.168.203.101
Wireless LAN

Wireless Radio : On
MAC Address : 00:15:E9:ED:C3A
Network Name (SSID) : dick
Channel : 6
Turbo Mode : Super G with Dynamic Turbo
Security Type : None

 

[spidey07]

call your ISP. Only they can answer this.

-edit- pretty sure you are SOL. They only have 2300 public IP addresses. They should have more subscribers than that so it looks like they didn't have enough addresses and went the NAT direction. Posbbily your ISP can provide you with a public IP address (they'll just setup a permanent NAT) for a fee.

 

[cleverhandle]

Originally posted by: spidey07
pretty sure you are SOL. They only have 2300 public IP addresses.

Out of curiosity, are you getting that number from some public information source or are you looking at routing tables or something on a big router you maintain?

 

[spidey07]

arin.net They control IP address space for the US, canada and pretty much everything north of the US.

You can find out who owns what netblock and the size.

 

[AnMig]

finally got hold of a the network guy, apparenlty I am in a firewall provided by the ISP, no option to be taken out of it as of this time.
My particular service is fairly new and they are still trying to figure out how to allow people to remote desktop from outside the network.

I am on a new fiberoptic system (beta site) and they are still working out the kinks. No other option for me as they are the only ISP available in my area.

The type of network I am in is overloading.

Overloading - A form of dynamic NAT that maps multiple unregistered IP addresses to a single registered IP address by using different ports. This is known also as PAT (Port Address Translation), single address NAT or port-level multiplexed NAT.


They will let me know as soon as they figure a way to do it, static address also not an option at this time.

Thanks again.