Comment by greyb

5 days ago

Meanwhile, there is a whole grey market built around this. People sell “CGNAT mobile proxies” that ride on carrier and ISP NAT, and the whole point is that they are a pain to block without nuking huge ISP ranges. So they get marketed as a convenient way to dodge shadowbans, spam filters, and basically any abuse defense that relies on IP reputation.

7 comments

greyb

Reply
hypeatei  5 days ago

> the whole point is that they are a pain to block

What makes them a pain to block? Angry users or some central database that lists these addresses as "do not block"?

  • DANmode  5 days ago

    > What makes them a pain to block?

    Not wanting to cut off access to your users from, for example, every AT&T device (and their MVNOs).

  • marcthe12  5 days ago

    Since cgnat means NATing a huge number of legimate device to a single ip. So angry users is the answer. Also note mobile users are usually the cgnat.

pixl97  5 days ago

It would be nice if we had a blackout CGNAT day where a bunch of major sites don't serve traffic to people behind CGNAT to give the ISPs a bit of a scare.

  • lyu07282  4 days ago

    This is a win for the consumer though, we don't want to be tracked, your inability for abuse prevention is my ability to stay hidden in the crowd. Why should I care?

    • pixl97  4 days ago

      Heh, if you think your ISP wouldn't sell port connection timing data to advertisers then you've missed all the history of them selling everything else. CGNAT is not a VPN.

      1 reply →