IPv4 Bottom 1/4 move
Objective
Moving TRIUMF loopbacks and Internal peering IP addreses to Private IP Addresses
Motivation
Free bottom ¼ of the TRIUMF Public IPv4 addresses block 142.90/16 so the address block 142.90.0.0/18 can be released for sale. Estimated value $300k USD.
Present State
The bottom ¼ of the TRIUMF public IPv4 space 142.90.0.0/18 is used by the following subnets.
| Router or vlan | IP | VRF Description |
|---|---|---|
| tr | 142.90.0.1/32 | oran |
| tr | 142.90.0.2/32 | westgrid |
| tr | 142.90.0.3/32 | commodity |
| tr | 142.90.0.4/32 | ix |
| tr | 142.90.0.5/32 | atlas |
| atlas T1 TRIUMF | 142.90.0.6/32 | atlas tier1 core |
| tr | 142.90.0.7/32 | lan |
| jfire | 142.90.0.8/32 | wan-fw |
| jfire | 142.90.0.9/32 | ccs (jfire) |
| jfire | 142.90.0.10/32 | controls |
| jfire | 142.90.0.11/32 | internal-fw |
| tr | 142.90.0.12/32 | isac |
| tr | 142.90.0.13/32 | acel |
| tr | 142.90.0.14/32 | ccs (tr) |
| tr | 142.90.0.15/32 | acs |
| tr | 142.90.0.16/32 | axs |
| 200 | 142.90.1.0/30 | oran-wan |
| 201 | 142.90.1.4/30 | westgrid-wan |
| 202 | 142.90.1.8/30 | commodity-wan |
| 203 | 142.90.1.12/30 | ix-wan |
| 204 | 142.90.1.16/30 | atlas-wan |
| 205 | 142.90.1.20/30 | lan-controls |
| 206 | 142.90.1.24/30 | lan-atlas |
| 207 | 142.90.1.28/30 | lan-ccs |
| 208 | 142.90.1.32/30 | lan-wan |
| 211 | 142.90.1.40/30 | lan-srx240 testbed |
| 216 | 142.90.1.36/30 | wan-strm logging |
| 217 | 142.90.1.44/30 | wan-acs |
| 218 | 142.90.1.48/30 | wan-isac |
| 219 | 142.90.1.52/30 | wan-accel |
| 220 | 142.90.1.56/30 | wan-ccs |
| 221 | 142.90.1.58/30 | wan-axs |
| 222 | 142.90.1.64/30 | lan-internalfw |
| 223 | 142.90.1.68/30 | atlas-atlas T1 core |
| 224 | 142.90.1.72/30 | wan-educloud |
| 225 | 142.90.1.76/30 | new srx345-isac |
| 226 | 142.90.1.80/30 | new srx345-accel |
| 227 | 142.90.1.84/30 | TR13 NAT |
| Educloud | 142.90.21.0/24 | SIP Servers |
Plan
- Change advertising 142.90.0.0/16 aggregate to 142.90.64.0/18 and 142.90.128.0/18 so the top and bottom /18 address blocks of 142.90.0.0 can be released for sale.
- Continue to use 142.90.0.0/18 addresses until they can be migrated to private IPv4 Addresses
Procedure
Configuration that will be impacted on Firewall loopbacks
! Jfire wan firewall
!
set interfaces lo0 unit 8 family inet address 10.0.0.8/32
set routing-instances wan-fw routing-options router-id 142.90.0.8
set routing-instances wan-fw protocols bgp group iBGP cluster 142.90.0.8
! Jfire interanal firewall
!
set interfaces lo0 unit 11 family inet address 10.0.0.11/32
set routing-instances internal-fw routing-options router-id 142.90.0.11
! Jfire logical systems CONTROLS
!
set logical-systems CCS interfaces lo0 unit 9 family inet address 142.90.0.9/32
set logical-systems CCS routing-options router-id 142.90.0.9
set logical-systems CONTROLS interfaces lo0 unit 10 family inet address 142.90.0.10/32
set logical-systems CONTROLS routing-options router-id 142.90.0.10
Configuration that will be impacted on Core Router Ex9208 loopbacks
set interfaces lo0 unit 1 family inet address 142.90.0.1/32
set routing-instances oran routing-options router-id 142.90.0.1
set interfaces lo0 unit 2 family inet address 142.90.0.2/32
set policy-options policy-statement from-iBGP term from-westgrid from neighbor 142.90.0.2
set routing-instances westgrid routing-options router-id 142.90.0.2
set interfaces lo0 unit 3 family inet address 142.90.0.3/32
set routing-instances commodity routing-options router-id 142.90.0.3
set interfaces lo0 unit 4 family inet address 142.90.0.4/32
set routing-instances ix routing-options router-id 142.90.0.4
set interfaces lo0 unit 5 family inet address 142.90.0.5/32
set routing-instances atlas routing-options router-id 142.90.0.5
set interfaces lo0 unit 7 family inet address 142.90.0.7/32
set routing-instances lan routing-options router-id 142.90.0.7
set routing-instances lan protocols bgp group iBGP cluster 142.90.0.7
set interfaces lo0 unit 12 family inet address 142.90.0.12/32
set routing-instances isac routing-options router-id 142.90.0.12
set interfaces lo0 unit 13 family inet address 142.90.0.13/32
set routing-instances accel routing-options router-id 142.90.0.13
set interfaces lo0 unit 14 family inet address 142.90.0.14/32
set routing-instances ccs routing-options router-id 142.90.0.14
set interfaces lo0 unit 15 family inet address 142.90.0.15/32
set routing-instances acs routing-options router-id 142.90.0.15
set interfaces lo0 unit 16 family inet address 142.90.0.16/32
set routing-instances axs routing-options router-id 142.90.0.16
Internal Peering configurations
vlan-200 oran-wanfw 142.90.1.1 - 142.90.1.2
! EX-9208
!
set interfaces irb unit 200 family inet address 142.90.1.1/30
set routing-instances oran protocols bgp group iBGP local-address 142.90.1.1
set routing-instances oran routing-options static route 0.0.0.0/0 next-hop 142.90.1.2
set routing-instances oran protocols bgp group iBGP neighbor 142.90.1.2
inactive set interfaces ae11 unit 200 family inet address 142.90.1.1/30
inactive set interfaces ae12 unit 200 family inet address 142.90.1.2/30
inactive set routing-instances lan protocols bgp group iBGP neighbor 142.90.1.1
! SRX-3400
!
set interfaces reth0 unit 200 family inet address 142.90.1.2/30
set routing-instances wan-fw protocols bgp group iBGP neighbor 142.90.1.1
set routing-instances wan-fw routing-options static route 206.12.9.128/25 next-hop 142.90.1.1
set routing-instances wan-fw routing-options static route 206.12.9.112/28 next-hop 142.90.1.1
vlan-201 westgrid-wanfw 142.90.1.5 - 142.90.1.6
! EX-9208
!
set interfaces irb unit 201 family inet address 142.90.1.5/30
set routing-instances westgrid protocols bgp group iBGP local-address 142.90.1.5
set routing-instances westgrid routing-options static route 0.0.0.0/0 next-hop 142.90.1.6
set routing-instances westgrid protocols bgp group iBGP neighbor 142.90.1.6
set policy-options policy-statement from-iBGP term from-westgrid from neighbor 142.90.1.5
inactive set interfaces ae11 unit 201 family inet address 142.90.1.5/30
inactive set interfaces ae12 unit 201 family inet address 142.90.1.6/30
inactive set routing-instances lan protocols bgp group iBGP neighbor 142.90.1.5
! SRX-3400
!
set interfaces reth0 unit 201 family inet address 142.90.1.6/30
set routing-instances wan-fw protocols bgp group iBGP neighbor 142.90.1.5
set policy-options policy-statement from-iBGP term from-westgrid from neighbor 142.90.1.5
vlan-202 commodity-wanfw 142.90.1.9 - 142.90.1.10
! EX-9208
!
set interfaces irb unit 202 family inet address 142.90.1.9/30
set routing-instances commodity protocols bgp group iBGP neighbor 142.90.1.10
set routing-instances commodity protocols bgp group iBGP local-address 142.90.1.9
inactive set interfaces ae11 unit 202 family inet address 142.90.1.9/30
inactive set interfaces ae12 unit 202 family inet address 142.90.1.10/30
inactive set routing-instances lan protocols bgp group iBGP neighbor 142.90.1.9
! SRX-3400
!
set interfaces reth0 unit 202 family inet address 142.90.1.10/30
set routing-instances wan-fw protocols bgp group iBGP neighbor 142.90.1.9
vlan-203 ix-wanfw 142.90.1.13 - 142.90.1.14
! Ex-9208
!
set interfaces irb unit 203 family inet address 142.90.1.13/30
set routing-instances ix protocols bgp group iBGP local-address 142.90.1.13
set routing-instances ix routing-options static route 0.0.0.0/0 next-hop 142.90.1.14
set routing-instances ix protocols bgp group iBGP neighbor 142.90.1.14
inactive set interfaces ae11 unit 203 family inet address 142.90.1.13/30
inactive set interfaces ae12 unit 203 family inet address 142.90.1.14/30
inactive set routing-instances lan protocols bgp group iBGP neighbor 142.90.1.13
! SRX-3400|
!
set interfaces reth0 unit 203 family inet address 142.90.1.14/30
set routing-instances wan-fw protocols bgp group iBGP neighbor 142.90.1.13
vlan-204 atlas-wanfw 142.90.1.17 - 142.90.1.18
! Ex-9208
!
set interfaces irb unit 204 family inet address 142.90.1.17/30
set routing-instances atlas routing-options static route 0.0.0.0/0 next-hop 142.90.1.18
deactive set interfaces ae11 unit 204 family inet address 142.90.1.17/30
deactive set interfaces ae12 unit 204 family inet address 142.90.1.18/30
! SRX-3400|
!
set interfaces reth0 unit 204 family inet address 142.90.1.18/30
vlan-205 lan-controls 142.90.1.21 - 142.90.1.22
! Ex-9208
!
set interfaces irb unit 205 family inet address 142.90.1.21/30
! SRX-3400
!
set logical-systems CONTROLS routing-options static route 0.0.0.0/0 next-hop 142.90.1.21
set logical-systems CONTROLS interfaces reth0 unit 205 family inet address 142.90.1.22/30
vlan-206 lan-atlas 142.90.1.25 - 142.90.1.26
! Ex-9208
!
set interfaces irb unit 206 family inet address 142.90.1.25/30
! SRX-3400|
!
Nothing.
vlan-207 lan-ccs 142.90.1.29 - 142.90.1.30
! Ex-9208
!
set interfaces irb unit 207 family inet address 142.90.1.29/30
! SRX-3400|
!
set logical-systems CCS routing-options static route 0.0.0.0/0 next-hop 142.90.1.29
set logical-systems CCS interfaces reth0 unit 207 family inet address 142.90.1.30/30
vlan-208 lan-wan 142.90.1.33 - 142.90.1.34
! Ex-9208
!
set interfaces irb unit 208 family inet address 142.90.1.33/30
set routing-instances lan routing-options static route 0.0.0.0/0 next-hop 142.90.1.34
! SRX-3400|
!
set interfaces reth0 unit 208 family inet address 142.90.1.34/30
vlan-211 240 testbed 142.90.1.41 - 142.90.1.42
! Ex-9208
!
set interfaces irb unit 211 family inet address 142.90.1.41/30
vlan-216 strm logging 142.90.1.37 - 142.90.1.38
! SRX-3400
!
set interfaces reth0 unit 216 family inet address 142.90.1.37/30
vlan-217 acs-wan 142.90.1.45 - 142.90.1.46
! Ex-9208
!
set interfaces irb unit 217 family inet address 142.90.1.46/30
set routing-instances acs routing-options static route 0.0.0.0/0 next-hop 142.90.1.45
! EX-3400
!
set logical-systems CONTROLS interfaces reth0 unit 217 family inet address 142.90.1.45/30
vlan-218 isac-wan 142.90.1.49 - 142.90.1.50
! Ex-9208
!
set interfaces irb unit 218 family inet address 142.90.1.50/30
set routing-instances isac routing-options static route 0.0.0.0/0 next-hop 142.90.1.49
! SRX-3400
!
set logical-systems CONTROLS interfaces reth0 unit 218 family inet address 142.90.1.49/30
set security address-book global address isac-rip-gw 142.90.1.50/32
vlan-219 accel-wan 142.90.1.53 - 142.90.1.54
! Ex-9208
!
set interfaces irb unit 219 family inet address 142.90.1.54/30
set routing-instances accel routing-options static route 0.0.0.0/0 next-hop 142.90.1.53
! SRX-3400
!
set logical-systems CONTROLS interfaces reth0 unit 219 family inet address 142.90.1.53/30
set security address-book global address accel-rip-gw 142.90.1.54/32
vlan-220 ccs-wan 142.90.1.57 - 142.90.1.58
! Ex-9208
!
set interfaces irb unit 220 family inet address 142.90.1.58/30
set routing-instances ccs routing-options static route 0.0.0.0/0 next-hop 142.90.1.57
! SRX-3400
!
set logical-systems CCS interfaces reth0 unit 220 family inet address 142.90.1.57/30
set security address-book global address ccs-rip-gw 142.90.1.58/32
vlan-221 axs-wan 142.90.1.61 - 142.90.1.62
! Ex-9208
!
set interfaces irb unit 221 family inet address 142.90.1.62/30
set routing-instances axs routing-options static route 0.0.0.0/0 next-hop 142.90.1.61
! SRX-3400
!
set logical-systems CONTROLS interfaces reth0 unit 221 family inet address 142.90.1.61/30
vlan-222 lan-internalfw 142.90.1.65 - 142.90.1.66
! Ex-9208
!
set interfaces irb unit 222 family inet address 142.90.1.65/30
! SRX-3400
!
set interfaces reth0 unit 222 family inet address 142.90.1.66/30
set routing-instances internal-fw routing-options static route 0.0.0.0/0 next-hop 142.90.1.65
vlan-223 atlas-T1 142.90.1.69 - 142.90.1.70
Not used on SRX or EX
vlan-223 wan-educloud 142.90.1.73 - 142.90.1.74
Not used on SRX or EX
End
