Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Unrecognized IP Address in Router Active Session List

Dec 7, 2012 12:14AM PST

Hi, I'm using a fiber optic broadband connection that's linked by a LAN cable to a D-LINK DIR 605L N300 Cloud Router. My OS is windows 7.

I'm sharing my internet connection with a bunch of people in the same building through a router (I'm the one who actually pay for it). Recently, I found out that one user has been sucking up all my bandwidth, made my internet very slow. I decided to change my router setting, using maximum upload and maximum download speed setting for the culprit's MAC Address.. But it didn't work. I can't stand it anymore, so I'm denying his MAC Address thus making him unable to use my internet completely.

After I denied his MAC Address, my internet speed went to normal, but then some unfamiliar IP Address appear in my router's active session list.
Note that my router setting use 192.168.9.xxx so I assume all user must be given 192.168.9.xxx IP's..
then where are these 192.168.2.xxx, 192.168.1.xxx, or 172.xxx.x.xxx IP's coming from?

<a href='http://postimage.org/image/g7pd4ir3n/' target='_blank'><img src='http://s5.postimage.org/g7pd4ir3n/Active_Sessions.jpg' border='0' alt="Active Sessions" /></a>

I'm suggesting that someone is using an illegal program that produce multiple IP's to connect to my router. Probably, that's the reason my maximum upload/download router setting didn't work out.
Can someone explain to me (1) where are those unrecognized IP's coming from?
(2) what kind of program is it?
(3) is there anyway I can still share my internet connection with the culprit without risking my internet speed?

Thank you and sorry for my poor english.

Discussion is locked

- Collapse -
Answer
Re: IP-address
Dec 7, 2012 12:30AM PST

The 172 seems likes a fixed IP-address. That's possible. But the MAC-address should identify it, because that's unique.

Why not disable access for that one Mac-address totally? You make the rules, and if they don't adhere, they are not allowed to use it.

Kees

- Collapse -
Answer
Sadly MAC blocking is not going to work.
Dec 7, 2012 12:32AM PST

I can't guess where you are in your journey. That is, I'll mention MAC SPOOF and that's why denial by MAC address is dead on arrival.

IP addresses are usually by assignment or DHCP so we have a long discussion about the basic insecurity of IP (internet protocol) that carries on far too long before we can discuss much about what to do.

That is, I find most can't believe the state of affairs and we spend ten or more posts just getting that out of the way.

So, in short, you have to limit EVERYONE's connection to say some low useable value in order to lop off the bad high volume user.
Bob