21 Jun

Why Indian internet traffic routes from outside of India?

After my last post about home networking, I am jumping back into global routing. More specifically how Indian traffic is hitting the globe when it does not need to. This is an old discussion across senior management folks in telcos, policymakers, and more. It’s about “Does Indian internet traffic routes from outside of India?” and if the answer is yes then “Why?” and “How much?”

It became a hot topic, especially after the Snowden leaks. There was even an advisory back in 2018 from Deputy National Security Advisor to ensure Indian internet traffic stays local (news here). Over time this has come up a few dozen times in my discussion with senior members from the Indian ISP community, individuals, and even latency-sensitive gamers. So I am going to document some of that part here. I am going to put whatever can be verified publically and going to avoid putting any private discussions I had with friends in these respective networks. The data specially traceroutes will have measurement IDs from RIPE Atlas so they can be independently verified by other network engineers.

Does Indian internet traffic routes from outside of India?

Yes, a part of it does that.

How do we know that’s happening?

Well, a simple traceroute is good enough to reveal the forward path. When triggering traces from large endpoints (on projects like RIPE Atlas) to another set of large endpoints, one can find that. I am going to put some traces showing that behavior as I proceed in this blog post.

Why does that happen?

There can be broadly four reasons on why that happens in the Indian context:

  1. Simple misconfiguration where pools which are supposed to be advertised locally are missed OR a more specific pool is announced to International transits & peers compared to domestic peers/transit. More specific = always wins in the routing.

  2. Heterogeneous route filtering – As networks roll out route filtering (based on IRR and RPKI), they typically start with their peers and at a later stage start filtering their customers. So e.g Tata Comm AS4755 filters routes based on IRR route objects from its peers (like Airtel AS9498) but Airtel AS9498 is also a customer of Tata Comm AS6453 outside of India. There are visible cases where Tata Comm AS4755 would drop peering routes from AS9498 but would accept them Tata Comm global network AS6453 from outside of India. While both AS6453 & AS4755 belong to Tata Comm, at the technical layer AS6453 is upstream of AS4755. Remember AS9498 is a peer of Tata Comm AS4755 in India but a downstream customer of Tata Comm global backbone AS6453 outside of India.

  3. Paths on which actual traffic flow is just not expected. This is true, especially for CDN IPs. CDNs often DNS magic to map end-users to the nearest node. They typically do not expect users on ISP 1 to be connecting to caching nodes on ISP 2. But if we trace from ISP 1 towards caching IPs on ISP 2 – it might go from outside of India. Ideally, this should not happen because of domestic peering within networks (more on this later in this post) but practically has a very low/negligible impact on actual traffic flow. This is also often for loopback IPs large operators where aggregate is announced somewhere far away & more specific /32 IPv4 or /128 IPv6 stays local within the network. Again these do not have actual traffic flow.

  4. Lack of peering/interconnection within India

Out of these 4th is the largest cause and has a serious impact on end-users. Before jumping on lack of peering/interconnection let’s understand how interconnection is supposed to be.

A reminder of transit free network concept

There are around 16 networks in the world that are known as transit-free / tier 1 networks. These networks typically hold a very large set of the global routing table as its direct or indirect customers. All networks in the world are either directly purchasing IP transit from them or from their customer or from their customer’s customer and so on. These operators peer with each other and by virtue of having to peer with each other they can reach any network in the world. Any given network is either their direct/indirect customer or their peer’s direct indirect customer. The routing table these players collectively hold is often called a Default Free Zone (DFZ). Thus to ensure full internet connectivity a network must ensure that its route reach at least one transit-free network as a customer (as a customer so that it announces them to the rest of its peers). Once routes reach at least one transit-free network, they are visible in the default-free zone and hence comes the guarantee of reachability. This is just about the concept of reaching every network in the world. The majority of traffic by volume actually does not hit transit-free / tier 1 networks as it’s from content players to eyeball networks and is often routes via various public peering ports over internet exchanges and through private peering PNI ports. If you want to learn more about peering, read Mr. Bill Norton’s Dr Peering Playbook.

So how do Indian networks ensure global reachability? They buy IP transit from various transit-free networks. Now any lack of domestic peering won’t lead to a blackholing/total drop of traffic but instead of spillover to upstreams of these networks outside of the country. Thus to analyze where Indian traffic routes from outside, we should focus on networks that connect to networks outside India specially the networks in the default-free zone.

Which Indian networks connects to outside of India?

As of now, there are 3105 ASNs allocated to Indian networks out of which 2172 ASNs are active and visible in the global routing table when looking via points like RIPE RIS collectors. By looking at the raw routing table & with a test one can find which are the ASNs out of 2172 connect outside of India.

Indian ASNs which connect to outside world on layer 3 routing:

  1. Bharti Airtel AS9498
  2. Tata Communications AS4755/AS6453
  3. Jio AS55836/AS64049
  4. Vodafone IDEA AS55410 AS55644
  5. Sify AS9583
  6. BSNL AS9829
  7. Telstra AS4637
  8. Reliance Communications FLAG AS18101/AS15412

(Note: This is purely from the view of layer 3 routing. There can be cases like Powergrid connecting to Nepal/Bangladesh but on layer 1 circuits and hence not visible when looking at the BGP data)

Now this list of networks is important as they appear to be transit for the entire Indian table with 39000+ routes. As long as routing within these networks happens within India, our traffic would be local. Else it would “leak” from outside of India. One cannot ensure 2172 networks connect to each other but as long as these specific backbones are connected (in peering or transit relation) within India, traffic should be local. Of course, more dense peering by their downstream locally is even better. Folks at DE-CIX India and Extreme IX are doing a good job to promote that.

Notable cases where Indian traffic is being routed from outside of India:

  1. Traffic between Telstra Reach AS4637 PoPs in India and Airtel AS9498 routes from outside of India (RIPE atlas measurements here and raw traces here).

  2. Some traffic between Telstra Reach AS4637 PoPs in India and Tata Comm AS4755 routes from outside of India (RIPE atlas measurements here and raw traces here). This feels like a config issue within AS4755 because some traces also show direct paths like this one from their looking glass. Ideally iBGP within AS4755 should have ensured direct local paths but seems like Delhi PoP has while Hyderabad is missing.

  3. Traffic between Sify AS9583 and Airtel AS9498 is routing from outside of India (RIPE atlas measurements here and raw traces here).

  4. Traffic from Airtel AS9498 towards BSNL AS9829 South Indian pools is routing from outside of India (RIPE atlas measurements here and raw traces here). Here from data from looking glass, it seems clear that Airtel AS9498 is rejecting AS9829 routes at NIXI Chennai. All other major operators including Tata Comm, Jio, etc are picking those routes as visible from traces.

  5. Traffic destination to Vodafone IDEA (VI) for many pools is routing from outside of India. This includes cases where traffic is from Airtel, Tata Comm, Jio (RIPE atlas measurements here and raw traces here)

In all these cases all these networks are at multiple NIXI exchanges and traditional knowledge says that they should be getting routes of each other in session via the NIXI route server (forced multi-lateral peering policy). But that’s clearly not happening. In the case of Telstra, routes are clearly visible at NIXI Noida (lookup result here) and thus it seems to be an issue of Airtel & Tata Comm. In the case of Sify, their routes are visible across key NIXI PoPs – Noida, Mumbai, and Chennai (lookup here). In case of the BSNL issue – their South Indian routes are visible at NIXI Chennai (lookup here). In the case of Vodafone IDEA (VI) their routes are not visible at any of NIXI PoPs and hence only way for networks to send them traffic is from outside of India.

Is there a real world impact of this sort of awful routing?

Yes, there is. Take e.g trace from Airtel fixed line AS24560 towards India’s largest state-owned bank SBI portal (www.onlinesbi.com – 103.68.221.190) which is on Sify. (RIPE Atlas measurements here)

2021-06-20 22:50 UTC

Traceroute to 103.68.221.190 (103.68.221.190), 48 byte packets

1 192.168.1.1 0.231ms 0.168ms 0.27ms
2 192.168.2.1 0.844ms 1.047ms 0.765ms
3 122.179.4.1 abts-kk-dynamic-001.4.179.122.airtelbroadband.in AS24560 73.924ms 69.936ms 56.354ms
4 122.185.118.173 nsg-corporate-173.118.185.122.airtel.in AS9498 67.181ms 59.309ms 73.925ms
5 182.79.154.0 198.111ms 199.051ms 205.77ms
6 149.14.224.161 be6391.rcr21.b015591-1.lon13.atlas.cogentco.com AS174 202.371ms 208.665ms 201.43ms
7 130.117.2.65 be2053.ccr41.lon13.atlas.cogentco.com AS174 197.046ms 197.73ms 198.251ms
8 154.54.58.174 be2870.ccr22.lon01.atlas.cogentco.com AS174 199.739ms 200.94ms 201.756ms
9 149.6.149.114 AS174 199.097ms 198.14ms 199.624ms
10 100.66.12.5 207.597ms 223.398ms 209.189ms
11 100.66.12.5 206.488ms 206.549ms 208.43ms
12 223.31.161.154 223-30-0-0.lan.sify.net AS9583 207.665ms 206.16ms 207.075ms
13 * * *
14 * * *
15 * * *

Thus requests from Airtel users to SBI portal route via London. There we throw the concerns of National security or localized routing out of the window.

Thus sad part here is that instead of acting as a major interconnection hub for Asia, we are having poor routing in networks within India. I hope this broken peering ecosystem is fixed eventually.

Disclaimer: This is my personal blog and I am posting here as an individual. Post has nothing to do with my employer.

22 Sep

RIPE Atlas India coverage and some thoughts

It has been some time since I started pushing Indian community for hosting RIPE Atlas Probes. These probes are small devices designed to be hosted at end user’s connection and do pre-defined as well as user-defined measurement. Measurement includes ping, trace, DNS lookup, SSL check etc.
Currently, there are 61 active RIPE Atlas probes. I would say it has +/- of 7-8 probes which go offline and come back online when I request hosts to check.

 
 

Map of probes in India


 
I think now we about to reach a scenario where we should focus more around probes in specific regions and specific networks. Metro cities have some probes but outside are pretty much missing. Plus almost no probe in central India. In terms of ASN coverage, we can look at Hurricane Electric’s country report for top ASNs list – https://bgp.he.net/country/IN
 
Following top ASNs IP network are missing from coverage of probe network:

  1. Reliance Communications  – AS18101
  2. Vodafone India – AS55410
  3. Sify – AS9583 (I recently shipped probes to them and expecting few to go online soon)
  4. TTSL – AS45820
  5. IDEA Cellular – AS55644
  6. Aircel – AS10201
  7. Syscon Infoway – AS45194
  8. CtrlS datacenter – AS18229
  9. Ishan’s Network – AS45117
  10. Railtel Corp – AS24186

 
In case you work for any of these networks or are a customer of these networks, please consider hosting RIPE Atlas probe. You can fill the form given below and I will send you a probe on priority.

19 Mar

Prefix hijacks by D-Vois Broadband

Today BGPmon reported about possible BGP prefix hijack of Amazon’s IP address space. Amazon announces 50.16.0.0/16 from AS14618. At 13:45:44 UTC / 19:15:44 IST D-Vois broadband started originating a more specific 50.16.226.0/24 in the table from AS45769.
One of example AS_PATH of this announcement: 198290 197264 197264 197264 29467 1299 9583 45769
Clearly, this leak was carried over by AS9583 (Sify) to AS1299 (Telia) and was carried over to rest of internet from there. There was a visible withdrawal of this request by 14:17:37 UTC / 19:47:37 IST.  So it was visible for approx 32mins.
Hard to guess on how come they did that. May be they are learning more specific /24 from Amazon in India and they leaked e-BGP routes in their IGP or it was just a hijack for some hard to guess reasons.
BGP Play link for the reference: https://stat.ripe.net/widget/bgplay#w.resource=50.16.226.0/24
Right along with this, there are multiple more visible hijacks by D-Vois including of Cloudflare, AT&T, Microsoft etc.
 
For instant updates, one may follow – https://bgpstream.com/
 
 
***Updates***
So I looked at dumps from RIPE RIS collector rrc00 at 13:45UTC. This dump shows following prefixes announced by AS45769 updates.20170319.1345-prefixes
I used Team Cymru’s IP-ASN service to map these against actual origin ASNs and I get a list of all leaks:

anurag@devops1:~/temp$ netcat whois.cymru.com 43 < 45769_prefixes.txt | sort -u
131210  | 118.151.208.0    | YASHTEL1-AS-AP 2713/4 lakshmi building adipampa road v.v.mohalla, IN
13335   | 104.28.0.0       | CLOUDFLARENET - CloudFlare, Inc., US
133752  | 43.249.36.0      | LSW-HK Leaseweb Asia Pacific pte. ltd., HK
13445   | 62.109.206.0     | 13445 - Cisco Webex LLC, US
14618   | 50.16.226.0      | AMAZON-AES - Amazon.com, Inc., US
17439   | 124.153.79.0     | NETMAGIC-AP Netmagic Datacenter Mumbai, IN
17443   | 1.186.216.0      | KARUTURI-IN Karuturi Telecom Pvt Ltd, IN
17813   | 59.185.96.0      | MTNL-AP Mahanagar Telephone Nigam Limited, IN
18105   | 202.140.36.0     | KARUTURI-IN Karuturi Telecom Pvt Ltd, IN
18209   | 202.53.11.0      | BEAMTELE-AS-AP Atria Convergence Technologies pvt ltd, IN
20940   | 104.65.25.0      | AKAMAI-ASN1, US
21928   | 172.32.100.0     | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.128.0     | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.130.0     | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.64.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.68.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.76.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.80.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.86.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.90.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
21928   | 172.32.96.0      | T-MOBILE-AS21928 - T-Mobile USA, Inc., US
29802   | 96.31.84.0       | HVC-AS - HIVELOCITY VENTURES CORP, US
32590   | 103.28.55.0      | VALVE-CORPORATION - Valve Corporation, US
32590   | 146.66.158.0     | VALVE-CORPORATION - Valve Corporation, US
32590   | 146.66.159.0     | VALVE-CORPORATION - Valve Corporation, US
32613   | 184.107.41.0     | IWEB-AS - iWeb Technologies Inc., CA
3356    | 64.68.120.0      | LEVEL3 - Level 3 Communications, Inc., US
34164   | 195.245.126.0    | AKAMAI-LON, GB
38266   | 203.88.7.0       | HUTCHVAS-AS Vodafone Essar Ltd., Telecommunication - Value Added Services, IN
45194   | 103.2.238.0      | SIPL-AS Syscon Infoway Pvt. Ltd., IN
45415   | 103.224.5.0      | VASAICABLEPVTLTD-AS-IN Vasai Cable Pvt. Ltd., IN
45415   | 45.112.43.0      | VASAICABLEPVTLTD-AS-IN Vasai Cable Pvt. Ltd., IN
45455   | 103.28.124.0     | TH-2S1N-AP Two S One N Co Ltd, Internet Service Provider and IT Solutions, TH
45769   | 103.26.232.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 111.125.211.0    | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.129.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.130.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.131.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.132.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.133.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.134.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.135.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.136.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.137.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.138.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.139.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.140.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.141.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.142.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.143.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.144.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.145.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.146.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.147.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.148.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.149.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.150.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.151.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.152.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.153.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.154.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.155.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.156.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.157.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.158.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.159.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.160.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.162.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.163.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.164.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.165.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.166.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.168.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.169.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.170.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.171.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.172.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.173.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.174.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.175.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.177.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.178.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.179.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.180.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.181.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.182.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.183.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.184.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.185.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.186.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.187.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.188.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.189.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.190.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 114.79.191.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.0.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.100.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.10.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.101.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.102.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.103.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.1.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.110.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.11.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.111.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.112.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.113.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.114.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.115.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.120.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.12.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.121.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.122.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.123.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.124.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.125.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.126.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.128.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.129.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.130.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.13.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.131.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.132.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.133.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.134.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.135.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.136.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.137.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.138.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.14.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.144.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.148.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.150.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.15.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.151.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.16.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.168.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.170.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.17.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.18.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.181.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.182.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.183.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.184.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.185.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.186.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.187.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.188.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.189.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.190.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.19.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.191.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.196.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.197.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.198.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.199.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.20.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.2.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.21.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.215.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.217.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.218.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.219.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.220.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.22.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.221.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.222.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.223.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.224.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.225.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.226.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.227.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.228.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.229.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.230.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.23.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.231.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.232.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.233.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.234.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.235.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.236.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.237.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.238.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.239.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.240.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.24.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.242.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.246.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.247.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.248.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.249.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.250.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.25.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.251.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.252.0      | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.26.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.27.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.28.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.30.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.3.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.32.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.33.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.34.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.36.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.37.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.39.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.40.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.4.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.41.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.44.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.45.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.47.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.49.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.50.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.5.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.51.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.52.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.53.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.54.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.55.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.60.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.6.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.7.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.76.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.77.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.78.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.79.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.8.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.81.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.9.0        | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 1.186.92.0       | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.192.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.193.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.194.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.196.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.197.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.198.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.199.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.200.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.201.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.202.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.203.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.204.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.205.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.206.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.207.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.208.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.209.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.220.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.225.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.226.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.227.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.228.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.229.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.230.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.231.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.232.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.233.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.234.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.235.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.237.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.238.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.239.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.243.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.244.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.247.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.248.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.250.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 182.48.254.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.17.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.19.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.20.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.21.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.22.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.122.23.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.140.44.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.140.47.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.140.51.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.140.59.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 202.140.60.0     | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45769   | 203.114.234.0    | DVOIS-IN D-Vois Broadband Pvt Ltd, IN
45774   | 103.247.80.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 103.247.82.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 103.247.83.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.24.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.26.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.27.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.28.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.29.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 110.172.30.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.120.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.121.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.122.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.123.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.124.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 122.102.127.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 175.100.168.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 175.100.172.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 175.100.173.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 175.100.175.0    | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.146.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.147.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.148.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.149.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.150.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 210.56.151.0     | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 45.115.16.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 45.115.17.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 45.115.18.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 45.115.19.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.32.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.33.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.39.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.43.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.44.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.47.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.50.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.57.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.59.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.62.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
45774   | 49.213.63.0      | SPIDIGO-AS-IN Chandra Net Pvt. Limited, India, IN
4755    | 14.141.68.0      | TATACOMM-AS TATA Communications formerly VSNL is Leading ISP, IN
59253   | 103.254.152.0    | LSW-SG Leaseweb Asia Pacific pte. ltd., SG
7018    | 172.6.66.0       | ATT-INTERNET4 - AT&T Services, Inc., US
8075    | 64.4.37.0        | MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation, US
8075    | 65.54.224.0      | MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation, US
AS      | IP               | AS Name
NA      | 100.100.100.0    | NA
NA      | 100.96.0.0       | NA
NA      | 1.186.214.0      | NA
NA      | 182.48.216.0     | NA
anurag@devops1:~/temp$

 
I think it’s very hard to say now what actually caused the leak.