Renumbering out of 212.13.194.0/23: Difference between revisions
Jump to navigation
Jump to search
Strugglers (talk | contribs) m (→NTP servers: date actually withdrawn from service) |
Strugglers (talk | contribs) m (→Phase II: customers: It begins) |
||
| (3 intermediate revisions by the same user not shown) | |||
| Line 8: | Line 8: | ||
===Currently in progress=== | ===Currently in progress=== | ||
All complete. | |||
===Completed=== | |||
If you're still using old IPs for these then you can expect that to stop working at any time. | |||
We're not listing the things that are always used by host name (like web sites) and/or not customer-facing (e.g. spamd backend nodes). | |||
====All dom0 (host) machines==== | |||
====All resolvers==== | |||
====NTP servers==== | |||
* [http://lists.bitfolk.com/lurker/message/20110911.044100.9a55e70c.en.html Announcement] | |||
* Old IPs: | |||
** 212.13.195.3 | |||
** 212.13.195.4 | |||
* New IPs: | |||
** 85.119.80.232 | |||
** 85.119.80.233 | |||
* Typical places for customers to reference these IPs: | |||
** <tt>restrict</tt> ACLs in '''/etc/ntp.conf''' | |||
** Possibly firewall config | |||
* Old IPs withdrawn from service: 2011-10-12 | |||
====Authoritative DNS server a.authns.bitfolk.com==== | ====Authoritative DNS server a.authns.bitfolk.com==== | ||
* [http://lists.bitfolk.com/lurker/message/20110917.204502.9b3ad0db.en.html Announcement] | * [http://lists.bitfolk.com/lurker/message/20110917.204502.9b3ad0db.en.html Announcement] | ||
| Line 14: | Line 38: | ||
* New IP: | * New IP: | ||
** 85.119.80.222 | ** 85.119.80.222 | ||
* Typical places for customers to reference these IPs: | * Typical places for customers to reference these IPs: | ||
** Firewall and ACLs for zone transfers (likely) | ** Firewall and ACLs for zone transfers (likely) | ||
** Zone files if you've gone out of your way to create your own nameserver records | ** Zone files if you've gone out of your way to create your own nameserver records | ||
** Registrars if you've created nameservers with these IPs | ** Registrars if you've created nameservers with these IPs | ||
* Old IP | * Old IP withdrawn from service: 2011-10-23 | ||
====Spamd service IP==== | ====Spamd service IP==== | ||
| Line 27: | Line 50: | ||
* New IP: | * New IP: | ||
** 85.119.80.248 | ** 85.119.80.248 | ||
* Typical places for customers to reference these IPs: | * Typical places for customers to reference these IPs: | ||
** Mail server config | ** Mail server config | ||
** Possibly firewall | ** Possibly firewall | ||
* Old IP | * Old IP withdrawn from service: 2011-10-29 | ||
====Entropy service IP==== | ====Entropy service IP==== | ||
| Line 39: | Line 61: | ||
* New IP: | * New IP: | ||
** 85.119.80.215 (but please use the host name '''entropy.lon.bitfolk.com''') | ** 85.119.80.215 (but please use the host name '''entropy.lon.bitfolk.com''') | ||
* Typical places for customers to reference these IPs: | * Typical places for customers to reference these IPs: | ||
** '''/etc/default/ekeyd-egd-linux''' | ** '''/etc/default/ekeyd-egd-linux''' | ||
** Possibly firewall | ** Possibly firewall | ||
* Old IP | * Old IP withdrawn from service: 2011-11-02 | ||
== | ==Phase II: customers== | ||
This phase began on Friday 4th November 2011. Please see our detailed article on [[renumbering for customers]]. | |||
Briefly: | |||
# All customers | # All customers have been routed one IPv4 address in the new range for each IPv4 address they have in the old range: | ||
#* <tt>212.13.194.''x''</tt> → <tt>85.119.82.''x''</tt> | #* <tt>212.13.194.''x''</tt> → <tt>85.119.82.''x''</tt> | ||
#* <tt>212.13.195.''y''</tt> → <tt>85.119.83.''y''</tt> | #* <tt>212.13.195.''y''</tt> → <tt>85.119.83.''y''</tt> | ||
# An announcement | # An email announcement was sent out that this has happened, and to advise customers to switch to using only the new range as soon as possible. | ||
# ''If you're lucky'', BitFolk will monitor traffic to see who is still receiving traffic to the old range of IP addresses and send them a periodic auto-whine email. | # ''If you're lucky'', BitFolk will monitor traffic to see who is still receiving traffic to the old range of IP addresses and send them a periodic auto-whine email. | ||
# | # The old range of IP addresses will cease to be routed on or after Monday 6th February 2012. | ||
==What about IPv6?== | ==What about IPv6?== | ||
We will also be renumbering all IPv6 as well but consider it too much to cover at once, so it will be done later. In particular, customer prefixes are likely to go from /64 to /56 or /48. | We will also be renumbering all IPv6 as well but consider it too much to cover at once, so it will be done later. In particular, customer prefixes are likely to go from /64 to /56 or /48. | ||
Latest revision as of 22:29, 4 November 2011
Background
BitFolk currently operates out of an IP address range assigned from its single upstream transit provider, Jump Networks. This assignment has gradually grown from 212.13.198.0/27, through a renumbering into 212.13.194.0/24 and then expanded to 212.13.194.0/23.
The time is now long overdue for BitFolk to be using its own IP address allocation. This allows for independence from one transit/colo provider, as well as to make use of additional transit. BitFolk has been allocated 85.119.80.0/21 by RIPE and is now in the process of renumbering into this space.
Phase I: customer-facing infrastructure
In general all infrastructure is going to renumber into 85.119.80.0/23 rather than being inter-mingled throughout the range with customer IPs.
Currently in progress
All complete.
Completed
If you're still using old IPs for these then you can expect that to stop working at any time.
We're not listing the things that are always used by host name (like web sites) and/or not customer-facing (e.g. spamd backend nodes).
All dom0 (host) machines
All resolvers
NTP servers
- Announcement
- Old IPs:
- 212.13.195.3
- 212.13.195.4
- New IPs:
- 85.119.80.232
- 85.119.80.233
- Typical places for customers to reference these IPs:
- restrict ACLs in /etc/ntp.conf
- Possibly firewall config
- Old IPs withdrawn from service: 2011-10-12
Authoritative DNS server a.authns.bitfolk.com
- Announcement
- Old IP:
- 212.13.194.70
- New IP:
- 85.119.80.222
- Typical places for customers to reference these IPs:
- Firewall and ACLs for zone transfers (likely)
- Zone files if you've gone out of your way to create your own nameserver records
- Registrars if you've created nameservers with these IPs
- Old IP withdrawn from service: 2011-10-23
Spamd service IP
- Announcement
- Old IP:
- 212.13.194.5
- New IP:
- 85.119.80.248
- Typical places for customers to reference these IPs:
- Mail server config
- Possibly firewall
- Old IP withdrawn from service: 2011-10-29
Entropy service IP
- Announcement
- Old IP:
- 212.13.194.102
- New IP:
- 85.119.80.215 (but please use the host name entropy.lon.bitfolk.com)
- Typical places for customers to reference these IPs:
- /etc/default/ekeyd-egd-linux
- Possibly firewall
- Old IP withdrawn from service: 2011-11-02
Phase II: customers
This phase began on Friday 4th November 2011. Please see our detailed article on renumbering for customers.
Briefly:
- All customers have been routed one IPv4 address in the new range for each IPv4 address they have in the old range:
- 212.13.194.x → 85.119.82.x
- 212.13.195.y → 85.119.83.y
- An email announcement was sent out that this has happened, and to advise customers to switch to using only the new range as soon as possible.
- If you're lucky, BitFolk will monitor traffic to see who is still receiving traffic to the old range of IP addresses and send them a periodic auto-whine email.
- The old range of IP addresses will cease to be routed on or after Monday 6th February 2012.
What about IPv6?
We will also be renumbering all IPv6 as well but consider it too much to cover at once, so it will be done later. In particular, customer prefixes are likely to go from /64 to /56 or /48.