On 14/08/2019 19.45, Per Jessen wrote:
Carlos E. R. wrote:
On 14/08/2019 19.10, Per Jessen wrote:
Carlos E. R. wrote:
It is a consequence of ISP grade NAT. I get the external IPv4 address of their CGN gateway, sometimes Barcelona, sometimes Granada. Geolocation based on IP address breaks, so google thinks it is some hacker accessing my account from those cities, and blocks the access.
I have travelled to 4 different countries, 2000km apart, since beginning of the year, never had that problem, whether on a local wifi or occasionally with data roaming.
With one of my three google accounts, I get it every time I travel. With the other three, occasionally.
It is considered a feature.
just google "when I travel I get a gmail security alert"
I'll take your word for it, I just don't understand why it isn't a problem for me.
I travel often, and every time I connect from a different hotel wifi network this happens, which is very annoying. Is there any way of telling gmail to disable this check? I should be allowed to connect from whatever IP address I want without gmail blocking me every time.
Maybe I have unchecked the right box, but I don't use gmail very much. I get occasional warning when I have logged in on a new device.
You must have. I have three accounts and one of them (the one I use some times here) nags me almost every time I connect via phone. Or when I go to another city, or Canada... And despite having three accounts, I don't know which is the proper setting that makes the difference, or what was the question they asked which I gave the "incorrect" answer.
And of course, getting a 10... address means people can not connect to me. VoIp might not be possible, I have not tried. Gaming...
VoIP works just fine. I have had people in home office with Linksys SPA phones hooked up to our Asterisk, since 2008 or 2009. Works very well, even back in the days with limited bandwidth.
With Carrier Grade NAT? I thought you were using IPv6.
With plain/local NAT - what I'm (main office) running is irrelevant. I don't immediately see that carrier-grade NAT (clients on private addresses) should be any issue, but I don't think I have had any opportunity to test, so maybe.
It is an issue. It is a NAT you do not control, so you can not punch a hole in the router/gateway. And it is connected to another NAT at the user. Sometimes even two CGNs upstream, making three to traverse. For example, on my router I configure that when a connection comes to port 22, it gets redirected to a certain computer in the LAN. You can not do that with CGN.
If your phone gets a 10.*.*.* address, you are on CGN. I guess you aren't. I am.
It doesn't matter what I am on. It matters what the clients are on.
I thought you said you have not personally experienced it, not that you were talking about your clients. Well, it depends what their provider does on their phones, because CGN happens mostly on phones. Actually, I suspect that either the fibre TV or the VoIP transparent phone service uses a 10.*.*.* at my home, besides having a real IPv4 internet address. Either an VPN or a second address. I don't know for sure. -- Cheers / Saludos, Carlos E. R. (from 15.0 x86_64 at Telcontar)