Supported by the GlobalNOC at Indiana University

Documentation



IPv4 Address Allocations

Keywords: address, allocations, indiana gigapop, ipv4, members

The Indiana Gigapop will allocate IPv4 addresses to members who cannot obtain their own provider independent addresses.   

Allocations made so far by the Indiana Gigapop to its members are:

IPv4 Address
Member
149.165.250.0/23
NCAA
149.165.224.0/20 IU Research
149.165.240.0/29 Notre Dame
149.165.136.0/23 IU LHCONE VRF
149.165.184.0/21
Gigapop Zayo K12 Pilot Project
149.165.180.0/26 Akamai Caching Service
149.165.180.64/26 Google Caching Service

149.165.180.128/26

140.165.180.144/31

Netflix Caching Service

 

last edited 10 April 2007

IPv6 Address Allocations

Keywords: address, allocation, indiana gigapop, ipv6

The Indiana Gigapop has a direct IPv6 address allocation from ARIN of 2001:18e8::/32. The Gigapop delegates prefixes in the range of /40s through /48s to its members depending on the size of their networks.   A member with a single campus may receive a /48 whereas a member with 8 campuses may receive a /45.   Each Gigapop member can in turn divide their prefix into a /48 for each campus and further into /64s for individual broadcast domains. (See RFC2374 and RFC3177 for guidelines on address allocation). It is expected that all suballocations are SWIPed to ARIN so that they are documented to the world.

Because of the way v6 address space is aggregated, these delegated /48 addresses will (likely) not be accepted from end-sites and routed by other carriers and are not "portable".

Allocations made so far by the Indiana Gigapop for its internal use and to its members are recorded here - Gigapop Members IPv6 Allocations.

The table below references the intitial allocations, please use the link above for future allocations.

 

Delegation
Site
  2001:18e8::/36 Gigapop Member Blocks
  2001:18e8:0000::/44 Indiana University System
    2001:18e8:0001::/48 IUPUI (suballocation)
    2001:18e8:0002::/48 IUB (suballocation)
    2001:18e8:0003::/48 IUE (suballocation)
    2001:18e8:0004::/48 IUK (suballocation)
    2001:18e8:0005::/48 IUNE (suballocation)
    2001:18e8:0006::/48 IUSB (suballocation)
    2001:18e8:0007::/48 IUSE (suballocation)
  2001:18e8:0400::/40 I-Light
  2001:18e8:0800::/44 Purdue University System
  2001:18e8:0c00::/48 Notre Dame
  2001:18e8:0c02::/46 IU Research (Bloomington)
 
  2001:18e8:ff00::/48 Indiana Gigapop Internal

Following recommended ipv6 allocation practice, each site is expected to be allocated one or more /48s as needed.

The Indiana Gigapop also has an IPv6 allocation from Internet2 (2001:468:0400::/40), but these addresses should never be allocated.   

 

BGP Communities

This document describes the BGP Communities used by the Indiana Gigapop. This includes communities that the Gigapop tags simply to add meta-data to BGP prefixes and communities that Gigapop members can set to influence routing behavior at the Gigapop.

BGP Communities the Indiana Gigapop sets:

19782:1001 Tagged to all Indiana Gigapop Member prefixes that receive R&E (ie connectivity to Internet2 and other Gigapop members) connectivity.
19782:1002 Tagged to all Indiana Gigapop Member ipv4 prefixes that receive Commodity Internet connectivity.
19782:1003 Tagged to all Indiana Gigapop Member ipv4 prefixes that receive Settlement-Free Commodity Internet connectivity.
19782:1006 Tagged to all Indiana Gigapop Member ipv6 prefixes that receive R&E (ie connectivity to Internet2 and other Gigapop members) connectivity.
19782:2001 Tagged to all prefixes received from Commodity Internet providers (currently Sprint and Timewarner)
19782:2002 Tagged to all prefixes received from Settlement-Free Peer Networks (currently IQuest, Wintek, and Internet2's Peering Service)
19782:2003 Tagged to all prefixes received from R&E network (currently Internet2 and MREN)
19782:2004 Tagged to all ipv6 prefixes received from R&E network (currently Internet2, BTAA and MREN)

BGP Communities that Gigapop Members can set:

19782:911

Blackhole/Discard, GigaPOP will discard traffic toward this prefix and trigger upstream providers to discard traffic towards this prefix.  Only members who “own” the prefix may set the 19782:911 community.

Upstream Provider Participation

  • Internet2 (BGP Community 11537:911 or 65536:666)
  • Internet2 TR-CPS (BGP Community 65536:666)
  • Hurricane Electric (BGP Community 6939:666)
  • WiscNet Regional Internet Peering Service (2381:911)
  • TeliaSonera (BGP Community 1299:999)
  • Cogent Communications (triggered from 19782:911)

Local-preference modification (member default is 400, R&E Peer default is 300, Settlement-Free Peers 275, Commodity Peer default is 250 and Commodity Transit default is 200):

19782:150 Causes the Gigapop to add 50 to the default BGP Local-Preference applied to Member prefixes.
19782:50 Causes the Gigapop to subtract 50 from the default BGP Local-Preference applied to Member prefixes
19782:600 Causes the Gigapop to set BGP Local-Prefernece to 600
19782:500 Causes the Gigapop to set BGP Local-Prefernece to 500
19782:200 Causes the Gigapop to set BGP Local-Prefernece to 200

Export modification: default behavior is to send all learned GigaPOP prefixes to all BGP peers. The following communities are available per-prefix to allow members and peers to modify the default behavior (XXXXX=remote ASN. i.e. 65100:87 to block prefix to IU):

65000:XXXX Do not send this prefix to R&E Peer network.
65000:65000 Do not send this prefix to any R&E Peer network.
65001-65003:XXXX GigaPOP should prepend one-three ASs to R&E Peer network.
65100:XXXX Do not send this prefix to GigaPOP member.
65100:65100 Do not send this prefix to any GigaPOP member.
65101-65103:XXXX GigaPOP should prepend one-three ASs to GigaPOP member.
65400:XXXX Do not send this prefix to GigaPOP transit.
65400:65400 Do not send this prefix to any GigaPOP transit.
65401-65403:XXXX GigaPOP should prepend one-three ASs to GigaPOP transit.

Note: The Gigapop may need to change the BGP Communities it tags to prefixes in the future. If this is necessary, we will provide sufficient notification so that any routing policy members may have based on these communities can be updated.


Indiana Gigapop NOC Support - DDoS Mitigation (Scrubbing) Service FAQ

GigaPOP / I-Light DDoS Mitigation (Scrubbing) Service FAQ

 

Q: What is the cost to Indiana GigaPOP and I-Light Members?

A: The cost for the scrubbing service will be shared between Indiana GigaPOP members, including I-Light.   Once we know how many of the GigaPOP members are going to participate we will spread the costs proportionally.  We’ll be InTouch with the individual GigaPOP members to discuss these costs in more detail in the near future.


Q: Can members Opt-In and Opt-Out?

A: We think so, initially the scrubbing service will be a manual action by either the Indiana GigaPOP and I-Light Network Engineers or members themselves via BGP Communities.  A future automated process would need to take into account prefixes which would be excluded.  Considerations may need to be made for frequency of Opt-In/Opt-Out changes as well as time required to process changes.


Q: How do members Opt-In and Opt-Out?

A: Members may Opt-In or Opt-Out by notifying the appropriate NOC; Indiana GigaPOP or I-Light.  **Please note the anticipated turnaround time to be three (3) days to change a members status.

Q: Is BGP required to participate in the scrubbing service?

            A: No.  BGP allows the Indiana GigaPOP or I-Light member to initiate the scrubbing service independently of Indiana GigaPOP or I-Light Engineers.  Without BGP, a manually process will be implemented by Indiana GigaPOP or I-Light Engineers.


Q: Will Indiana GigaPOP and I-Light Engineers be available to assist with members BGP administration and verification?

A:  Yes!  Indiana GigaPOP and I-Light Engineers can help in three ways.

  1. Documentation of examples
  2. Proactive discussion on BGP Configuration
  3. Reactive assistance for BGP Configuration Verification

 

Q: How will members be notified when a DDoS attack is occurring against the network or the member?  How will members be notified when DDoS scrubbing is active?

            A:  The NOC for Indiana GigaPOP or I-Light will send targeted notifications to member institutions when an attack is observed and when the attack has subsided.  Members which Opt-In for the scrubbing service will also receive a notification when scrubbing is activated and deactivated.  Members who request confirmation will only receive the scrubbing notifications after a representative acknowledges activation or deactivation.

Q: How will the DDoS Scrubbing service affect Multicast?

            A: The DDoS Scrubbing service only functions on commodity traffic from transit providers.  Currently no active transit providers support Multicast.  Multicast traffic should not be affected internal the Indiana GigaPOP or I-Light, although public senders or receives can still be attacked and external traffic to those hosts may be scrubbed.

 

Q: Will scrubbed traffic induce latency?

            A: Yes.  Exactly how much latency is unknown, dependent on the external endpoint and path to Indiana GigaPOP or I-Light member.  To provide reference, latency from Indiana to the West coast is approximately 48ms round trip, to the East coast is approximately 22ms round trip.  Using these reference points, a maximum of an additional 50ms of latency may be encountered when the scrubbing service is active.


VLAN Allocations

Layer 2 Switched Vlans
2 Futuregrid OOB via Starlight (lan.ictc)
10 Indiana University - Bloomington (R&E)
12 Indiana University - Bloomington (Commodity)
14 IU 4-external VRF
15 IU IPV6 (IUB Commodity)
16 IU IPV6 (IUPUI Commodity)
104 Monon100 OSC 15454 Mgmt Net (lan.ictc)
112 Interfonnect ICTC T640 to LL T640
125 Smithville Digital | GLOBAL-ICTC-BLDC-VLAN-01706
129 GP-RackLAN (lan.ictc)
130 Internet2 Optical management vlan
131 GP-RackLAN 2 (lan.ictc)
134 Indiana Gigapop HP5400 Server Management
135 Indiana Gigapop HP5400 Management
136 Incntr
137 Indiana Gigapop 2nd Server Management Vlan
149 Google Global Caching
305 IU Research Network (IUB Commodity) Backup
306 IU Research Network (IUB R&E) Backup
541 Internet2 DCN router LifeLine
667 City of BLTN bus-chum political conferences
_______________________________________________________________________



Chicago-ICTC Layer2 Vlans
5 srv.chic 600W Testpoint Server [PENDING]
89    L2 BB to CIC OmniPOP | GLOBAL-CIC-ING-VLAN-01646
90    MOXI Racklan via CIC OmniPOP | GLOBAL-CIC-ING-VLAN-01707
116   N-WAVE MGT via CIC (No notification) | GLOBAL-CIC-ING-VLAN-01647
211   TR/CPS via I2 Chic | GLOBAL-CIC-ING-VLAN-01648
387   MREN  | GLOBAL-MREN-ING-VLAN-01649
402   GLOBAL-FG-IPG-VLAN-1572
541   Internet2 DCN router LifeLine
900   GLOBAL-IPG-IPG-VLAN-1764
945   Wiscnet RPS via CIC | GLOBAL-CIC-ING-VLAN-01651
982   U Wisconsin-Madison via CIC  | GLOBAL-CIC-ING-VLAN-01652
2001  L2 BB 100G to sw.chic  | GLOBAL-ING-ING-VLAN-01653
2013  FutureGrid (Commodity) | GLOBAL-FG-ING-VLAN-1509
2014  FutureGrid (R&E) | GLOBAL-FG-ING-VLAN-1510
2023  BigTenNetwork via CIC | GLOBAL-CIC-ING-VLAN-01654
2030  BTN to Purdue | GLOBAL-CIC-ING-VLAN-01709
2048  Internet2 CPS v6  | GLOBAL-I2-ING-VLAN-01655
2063  Internet2 R&E via 600W  | GLOBAL-I2-ING-VLAN-01656
2091  NLR (R&E) | GLOBAL-CIC-ING-VLAN-01658
2152  U of Chicago via CIC  | GLOBAL-CIC-ING-VLAN-01660
2171  UIUC via CIC  | GLOBAL-CIC-ING-VLAN-01661
2180  Iowa via CIC  | GLOBAL-CIC-ING-VLAN-01662
2182  MERIT via CIC  | GLOBAL-CIC-ING-VLAN-01663
2183  UMN via CIC  | GLOBAL-CIC-ING-VLAN-01664
2184  Northwestern via CIC  | GLOBAL-CIC-ING-VLAN-01665
2185  OSU/OARnet via CIC | GLOBAL-CIC-ING-VLAN-01666
2221  Wiscnet via CIC  | GLOBAL-CIC-ING-VLAN-01667
2225  OSU/OARnet I2 Members via CIC  | GLOBAL-CIC-ING-VLAN-01668
2247  Wiscnet RPS via CIC 600W | GLOBAL-CIC-ING-VLAN-01702
2298  Inband mgt to CIC Force10  | GLOBAL-CIC-ING-VLAN-01669
2300  ESnet via CIC  | GLOBAL-CIC-ING-VLAN-01670
2494  MOXI via CIC 600W

2500  GLOBAL-I2-ING-VLAN-PU-XSEDE
2501  GLOBAL-I2-ING-VLAN-PU-XSEDE
2502  GLOBAL-I2-ING-VLAN-PU-XSEDE
2503  GLOBAL-I2-ING-VLAN-PU-XSEDE
2504  GLOBAL-I2-ING-VLAN-PU-XSEDE
2505  GLOBAL-I2-ING-VLAN-PU-XSEDE
2506  GLOBAL-I2-ING-VLAN-PU-XSEDE
2507  GLOBAL-I2-ING-VLAN-PU-XSEDE
2510 Purdue/LHCOne Peer via I2 | GLOBAL-I2-ING-VLAN-03636
2547  Purdue Calumet via CIC - ING | GLOBAL-ING-PU-VLAN
2548  NLR (R&E) to Purdue- ING | GLOBAL-CIC-PU-VLAN
2549  CMS (R&E) to Purdue- ING | GLOBAL-ING-PU-VLAN
2550 Purdue RE data center peering vlan
3100  MREN to MWT2 | GLOBAL-ING-IPG-VLAN-1758
3101  MREN to MWT2 | GLOBAL-ING-IPG-VLAN-1759
3102  MREN to MWT2 | GLOBAL-ING-IPG-VLAN-1760
3103  MREN to MWT2 | GLOBAL-ING-IPG-VLAN-1761
3104  MREN to MWT2 | GLOBAL-ING-IPG-VLAN-1762
3110  GLOBAL-I2-ING-VLAN-IU-XSEDE
3111  GLOBAL-I2-ING-VLAN-IU-XSEDE
3112  GLOBAL-I2-ING-VLAN-IU-XSEDE
3113  GLOBAL-I2-ING-VLAN-IU-XSEDE
3114  GLOBAL-I2-ING-VLAN-IU-XSEDE
3115  GLOBAL-I2-ING-VLAN-IU-XSEDE
3116  GLOBAL-I2-ING-VLAN-IU-XSEDE
3117  GLOBAL-I2-ING-VLAN-IU-XSEDE
3118  GLOBAL-I2-ING-VLAN-IU-XSEDE
3119  GLOBAL-I2-ING-VLAN-IU-XSEDE




Indiana GigaPOP Cache Node Information

Indiana GigaPOP Caching Information

Akamai

Akamai Peering - 193.108.92.62
Akamai V6 Peering - 2600:1400:5:15::c16c:5c3e
Akamai IPv6 Cache Node - 2001:18E8:FFFF:C::/64
Akamai Server Farm - 149.165.180.0/26
Akamai BGP point-to-point peering to ICTC T640 - 149.165.255.132/30
Akamai Cache Server Farm - 149.165.240.64/26

Google

Google V6 Caching Service - 2001:18E8:FFFF:48::/64
Google Caching Service - 149.165.180.64/26
Google Caching Service - 149.165.183.72/30

Netflix

Netflix Cache 20G Node - 2001:18E8:FFFF:9::/64
Netflix Commodity Cache Appliance Gateway RTR.ICTC - 149.165.180.129/32
Netflix Commodity Cache Appliance #1 - 149.165.180.132/32
Netflix Commodity Cache Appliances - 149.165.180.128/26
Netflix Commodity Cache Appliance #3 - 149.165.180.133/32
Netflix Commodity Cache Appliance BGP Peering - 149.165.183.92/30
Netflix Open Connect Cache IPv4 ICTC #3 - 2001:18E8:FFFF:D::/64
Netflix Commodity Cache Appliance v6 BGP Peering - 2001:18e8:ffff:6::/64
Netflix OpenConnect Cache 20G Node #2 - 2001:18E8:FFFF:A::/64
Netflix Cache #3 - 2001:18E8:FFFF:5::4/128
Netflix Commodity Cache Appliance v6 - 2001:18e8:ffff:5::/64
Netflix Commodity Cache Appliance #2 - 149.165.180.134/32
Netflix Cache #1 - 2001:18E8:FFFF:5::2/128
Netflix Cache #2 - 2001:18E8:FFFF:5::3/128
RTR.ICTC Netflix Cache Gateway - 2001:18E8:FFFF:5::1/128

Apple

Apple CDN via 350 Cermak Chicago - 17.1.148.92 on rtr.ictc.indiana.gigapop.net with ASN 714

Apple CDN IPv6 via 350 Cermak Chicago - 2620:149:bb:9520::1 on rtr.ictc.indiana.gigapop.net with ASN 714

Apple CDN received v4 routes - 17.0.0.0/8

Apple CDN received v6 routes:
2620:149:11::/48
2620:149:40::/44
2620:149:bb::/48
2620:149:bb:8000::/50
2620:149:f8::/46
2620:149:fc::/46
2620:149:140::/44
2620:149:a14::/48
2620:149:a15::/48
2620:149:ac0::/48
2620:149:ac2::/48
2620:149:ae0::/48
2620:149:ae7::/48

Apple CDN subnets:
17.0.64.0/18
17.0.128.0/18
17.1.64.0/18
17.1.128.0/18
17.34.0.0/16
17.35.240.0/20
17.38.0.0/15
17.40.0.0/15
17.42.0.0/16
17.47.0.0/20
17.47.1.0/24
17.96.0.0/16
17.97.0.0/16
17.98.0.0/16
17.99.0.0/16
17.110.0.0/15
17.110.112.0/20
17.120.0.0/16
17.121.0.0/18
17.121.128.0/17
17.124.0.0/16
17.125.0.0/16
17.128.100.0/22
17.128.106.0/23
17.128.108.0/22
17.128.112.0/22
17.128.124.0/23
17.128.126.0/24
17.129.0.0/16
17.131.0.0/16
17.132.4.0/22
17.132.4.0/24
17.132.5.0/24
17.132.16.0/24
17.132.18.0/24
17.132.19.0/24
17.132.20.0/23
17.132.22.0/23
17.132.24.0/24
17.132.25.0/24
17.132.26.0/24
17.132.27.0/24
17.132.28.0/22
17.132.28.0/24
17.132.29.0/24
17.133.0.0/16
17.134.0.0/16
17.135.0.0/16
17.136.0.0/16
17.137.0.0/16
17.138.0.0/15
17.140.0.0/19
17.140.32.0/21
17.140.40.0/24
17.140.48.0/20
17.140.64.0/19


Your request has been completed.