172.70.248.182
IP Intelligence Briefing: 172.70.248.182
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Owner: Cloudflare, Inc. (ASN 13335)
- Geolocation: United States (Frankfurt am Main, Hesse)
- Network Role: CDN (Cloudflare infrastructure)
- Threat Indicators: No malicious activity, no blacklists, no known campaigns.
---
**2. Observation History**
- Recent Activity:
- Confirmed as Cloudflare CDN node (June 10, 2026).
- Geolocation data consistent with US-based infrastructure.
- No significant changes in risk or network behavior over 30 days.
---
**3. Relationships**
- Linked Entities:
- Subnet: `172.70.248.0/24` (CloudflareNET).
- All neighbors are part of Cloudflareβs network.
- No external domains, certificates, or organizations linked.
---
**4. Neighborhood Analysis**
- Subnet: `172.70.248.0/24`
- Abuse Density: 0.8 (mostly clean, 4/5 neighbors flagged as low risk).
- Neighbors:
- `172.70.248.44`, `172.70.248.48`, `172.70.248.64`, `172.70.248.98` (all Cloudflare IPs, low risk).
---
**5. Key Findings**
- Legitimate CDN Node: The IP is part of Cloudflareβs infrastructure, likely used for global traffic distribution.
- No Malicious Signatures: No DNS, TLS, or service anomalies detected.
- Low Risk Subnet: While the subnet has a 0.8 abuse density, all neighbors are low risk, and the IP itself has no direct threats.
---
**6. Recommendations**
- Monitor Subnet: Track Cloudflareβs subnet for unexpected traffic patterns (e.g., DDoS, data exfiltration).
- Verify CDN Traffic: Ensure traffic to/from this IP aligns with expected CDN behavior.
- No Immediate Action: No firewall rules or blocking required due to low risk.
Conclusion: 172.70.248.182 is a legitimate Cloudflare CDN node with no direct threat indicators. Continue monitoring for anomalies in its subnet.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Cloudflare, Inc. |
| ASN | AS13335 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-23 12:22:24 UTC |
| Last Seen | 2026-06-28 21:24:02 UTC |
| Profile Built | 2026-06-29 09:28:56 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 21 |
Full dossier details are available via our API.