Every device connected to a network, whether it’s a local network or the internet, has an IP address that identifies it. However, each device has both a public and private IP address. Your device's private IP address is how your router identifies it on your local network, while your public IP address is the IP address your router uses to identify your device on the internet. In this article, we will explore the reasons this distinction exists and what implications it has.
A public IP address is the IP you use via your router that allows you to communicate to other devices on the internet, much like a physical real-world address and building number. They are assigned by your internet service provider (ISP) as a way to allow worldwide device identification and communication.
Private IP addresses are used within local area networks (LAN) and allow the devices on private networks to communicate with each other. To use the address analogy, a private IP address would be the apartment number within a building.
It wasn’t always this way. Public and private IP addresses as we know them today largely came into existence with the introduction of Network Address Translation (NAT). In the early days of the internet, when there were only (relatively) few devices able to connect to the internet, every IP was unique as there were enough addresses for each to be publicly routable. Consisting of a 32-bit number, there are roughly 4.3 billion possible IPv4 addresses.
By 1993 it was becoming increasingly apparent that there would come a time when there were not enough unique IPs, a phenomenon called IPv4 address exhaustion (which did eventually happen in January 2011). NAT was introduced as a way to allow a local network to share a single public IP address, a process that requires one’s private IP address to be translated into the public one when communicating with the internet. This effectively “bundled” all devices on a local network together, significantly reducing the demand for public IP addresses.
To address IPv4 exhaustion, IPv6 was introduced, providing a vastly larger address space with 128-bit addresses, allowing for an almost limitless number of unique IP addresses. While IPv6 adoption is growing, IPv4 remains widely used, and NAT continues to be an important technology for managing IPv4 address space.
NAT had some interesting security implications too. By only having a single public-facing IP, the architecture of internal networks became hidden from the outside world, making it more difficult for external attackers to access any one specific device on the network. It also works as a very basic firewall because it only allows incoming traffic that arrives in response to outgoing requests. Port forwarding took on a new dimension as a way for external devices to communicate with specific devices on the local network. For example, if you have a security camera installed outside your home, you would need to configure the port forwarding on your router to be able to connect to the camera from your phone while away.
Public IP addresses are assigned by ISPs and can be dynamic or static. Dynamic IP addresses are assigned from a pool and may change over time, while static IP addresses remain constant and are often used for servers or important networked devices. ISPs obtain these addresses from regional internet registries (RIRs), which manage IP address allocation. Public IPv4 addresses fall within the range of 1.0.0.0 to 223.255.255.255, excluding addresses reserved for special purposes such as private networks, multicast, and experimental use.
With the introduction of IPv6, the pool of available public IP addresses has significantly expanded. IPv6 addresses are typically assigned dynamically but can also be statically allocated for specific needs. IPv6 adoption helps alleviate the limitations of IPv4 by providing a larger address space.
Private IP addresses are assigned by a network’s router or a dynamic host configuration protocol server within the network. When a device connects to the network, the router or the DHCP server assigns it an available private IP address from the predefined range. This process can be dynamic, where the address is temporarily assigned, or static, where a specific address is permanently reserved for a particular device. Using a private IP address helps conserve public IP address space and allows for better management and security within the local network.
Private IP ranges include:
Hosts in this context are individual devices connected to the private. This means that there are far more unique Class C networks than there are Class A networks. There is more we could say on the topic, but suffice it to say in this article that this has implications for address space management, flexibility, and security within private networks.
Public and private IP addresses play important roles in ensuring effective and secure network communication. The difference between a public and private IP address is that a public address, assigned by ISPs, facilitates global connectivity, allowing devices to communicate across the internet. On the other hand, a private IP address, managed within local networks by routers or DHCP servers, is important for internal network organization and communication. It allows devices within the same network to interact without exposing internal infrastructure to the broader internet.
The introduction of NAT in the early 1990s has allowed multiple devices within a local network to share a single public IP address, significantly reducing the demand for public IP addresses and adding a layer of security by masking the internal network structure. Despite the introduction of IPv6, which provides a vastly larger address space, IPv4 and NAT remain integral to the way the internet works.
A public IP address is the address you use to communicate with the internet through your router. It is assigned by your Internet Service Provider (ISP) and is essential for global connectivity, enabling your device to be identified and communicate with other devices on the internet.
A private IP address is a non-unique address assigned to every device connected to a local network. It facilitates internal communication within the network and is not routable on the global internet.
You can tell if your IP address is public or private by comparing it to the known ranges of private IP addresses. Private IP addresses typically fall within the following ranges:
10.0.0.0 to 10.255.255.255
172.16.0.0 to 172.31.255.255
192.168.0.0 to 192.168.255.255
If your IP address falls within one of these ranges, it is a private IP address. Otherwise, it is a public IP address. You can check your IP address by using the "ipconfig" command on your computer for private IPs or by visiting a website like this one.
Public IPs allow electronic devices to connect and communicate with the internet and each other.
Private IPs allow devices connected to the same network to communicate without needing to connect to the wider internet.
Yes, you can hide your IP address by using a VPN or a proxy. By using a proxy server, your IP address will be hidden and shown as one different from your real IP. A reason for wanting to hide an IP varies from wanting extra security when surfing the internet or for web scraping purposes, just to list a few.
The best way to understand this is by considering how your router works with the internet. It takes the information you want to deliver, including identifying factors about yourself through your public IP address, and sends it through the internet. A proxy or VPN acts as an intermediary between that connection. It sits between your router and the internet and morphs any private information about you, making it appear as though it is coming from an entirely different IP address that has no relation to you.
There are many ways to discover what your IP address is. To discover your private IP address, you can enter the “ipconfig” command in the command prompt. To discover your public IP address, you could look up “what is my public IP” in a search browser and check out a website such as Browser Scan.
IPv6 is the most recent version of IP, designed to replace IPv4. It provides a much larger address space with 128-bit addresses, allowing for an almost limitless number (2^128 combinations) of unique IP addresses. IPv6 also includes improvements for routing and network autoconfiguration, addressing the limitations of IPv4.
All Proxidize hardware is assembled and shipped with 
from the United States 
and the Netherlands 
All Proxidize hardware is assembled and shipped with from the United States and the Netherlands
