When I hit the URL "FindMyHub.hubitat.com" it not only shows my two Elevation hubs, but a third IP address, 10.10.11.21, that is nothing on my LAN. I'm guessing it's related to my ISP's network, and have sent them this same inquiry. Here is a screenshot of what comes up:
And when I click on "Connect to Hub" for "Homer", this comes up:
(There are actually several such hosts at multiple IP addresses in the range 10.10.11.21 to 10.10.11.27; this screenshot is from the one at 10.10.11.25, but it's the same thing at 10.10.11.21).
What I'm especially curious about is what causes this device (it looks like CPE, but I'm not sure) to get found by Hubitat, thinking it's an Elevation hub?
Homer is the unknown host on my network. My two Elevation hubs are named AxleHub and AxleHub2.
As far as sharing with neighbors, my local ISP has introduced a service they call "AirFiber" (not sure if it is related to Ubiquiti's system of the same name). A neighbor about 1/4 mile away has a tower installed at one corner of his house, and the ISP installed two large dishes that point at their access points a few miles away in two directions; they also installed a bunch of smaller dishes that apparently talk to the rest of the neighborhood. One technician for the ISP called it a "mesh" system. This mesh system is what I use for Internet access.
Other than that, my WiFi is locked down with passwords, and there is no hardwired access to my home LAN.
@rlithgow1 : Thanks for the tip; I installed Advanced Port Scanner and am running it now, looking in the range of 10.10.10.1 to 10.10.11.254. Within this range it has found 288 hosts, most of whom have ports 80 and/or 443 (http & https) open. For the ones I've checked, it shows their Details attribute as "4G LTE WiFi Router"; also some show "lighttpd 1.4.29".
I've learned that the 10.xxx.xxx.xxx subnet is reserved for private addresses, so I'm wondering whether these are all routers on my ISP's subnet?? I've sent an inquiry to my ISP's tech support, and will report back what they tell me.
That's really strange. "Most" isp's use a single nat router per residence where you have your public ip on the wan side and your private on the lan side. For instance comcast uses 10.0.1.x /24 (24 bit subnet or 255.255.255.0) The fact that you can see on 10.10.11.x as well as 10.x indicates there are multiple lan segments on your network.... This is not only insecure (as you can see that you can reach devices that aren't yours) it's messy in general for an isp to do this. What ISP do you use?
Looks like you have the same public IP as Homer's owner, so find.hubitat.com is bringing in all the hubs it has found sharing the same IP. It's rare that this happens, but I have seen that before. As you can see, you cannot access the other hub and neither can Homer access your hubs.
I just received this response via email from my ISP:
![Mile High Networks]
Re: Strange devices showing up on my network between 10.10.11.21 and 10.10.11.31 [81800]
Hello Peter, From the Network engineer: Those are both LTE CPEs that broadcast a WiFi signal from neighbors. It's just like seeing the neighbor's SSID from their routers.
Many thanks,
On Nov 27 2023, Peter wrote:
Hi,
Recently I installed a home automation hub called "Hubitat Elevation".
Its controller app is web-based and has a tool called "FindMyHub"; it is accessed at FindMyHub.hubitat.com.
When I run this tool, in addition to my actual local Hubitat controller (on my subnet, which is 192.168.21.xxx), it finds a host named "Homer" at 10.10.11.21.
When I poked around this address space using ping, I found a bunch of similar hosts in the range of 10.10.11.21 to at least 10.10.11.31 (I stopped looking beyond that point).
I'm attaching screenshots of the log-in screens that come up when I point a browser at a couple of these addresses.
I'm guessing these devices may be located at a neighbor's house where you've installed multiple access points/repeaters on a tower, to implement our local AirFiber mesh.
Does it make sense that I should be able to see these devices' management pages from within my home LAN?
It seems very curious why Hubitat apparently believes that one of them is a Hubitat Elevation hub!
I guess we could ask Hubitat what their FindMyHub app is actually searching for.
Regards,
Peter
So I think I understand what the technician is saying, that the situation is similar to how I can see all my neighbors' SSIDs. Because they are all secured (presumably) via passwords, so we accept this situation. But it does appear that MHN is putting all of my neighborhood (or several neighborhoods??) behind a single NAT'ed IP address, so does that mean we all appear to be coming from the same IP address as seen from the greater Internet? That's a little spooky, since, for example, when law enforcement is trying to find a culprit on the Internet, I think they start by locating their IP address' physical location.
It does. I don't like that set up at all. Now you could get your own router and see if they'll set their stuff to passthrough but you are looking at Double NATing whichever way you go. If available, I would consider switching providers for that reason alone. I don't know where you're located but even Using Comcast is better than that (I prefer FIOS myself)
I wish I could get cable or fiber Internet!
We are a bit too far out of town for that. Our local cable provider runs up to about 1/2 mile away, then stops there. A couple of years ago they came through our 200-home development and pulled tapes through existing conduits along all the roads, and even installed large underground plastic pull-boxes at strategic locations. However they stopped after that activity, and refuse to tell any of us what plans they might have for the future. So we are served by a WISP that actually works quite well now. I'm paying for 500/50 and generally getting 300-500 Mbps down and 50-60 Mbps up. The ping is generally 10 ms. So I feel fortunate considering we are ~8 miles from "civilization".
BTW, I do of course have a router at my end; a Netgear Orbi system that works well. It runs some sort of security add-on by BitDefender, so I think it's locked-down. I really need to learn more about network security in general and routers in particular. I'm thinking I should eventually run a pfSense or opensense router machine, I guess in addition to the Netgear router. I need to study this topic!!
