RIPE NCC LIR Tutorial - MENOG3 RIPE Network Coordination Centre What is an LIR? • Local Internet...

RIPE Network Coordination Centre

RIPE NCC LIR Tutorial

Alex Band, RIPE NCC

The Internet Registry (IR) system

Getting resources

RIPE Database

What is an LIR?

• Local Internet Registry- responsible for obtaining, distributing and registering

IP resources, according to the RIPE policies

• Member of the RIPE NCC- receiving resources directly from the RIPE NCC- RIPE NCC is a Regional Internet Registry (RIR)

• Benefits- flexibility- independence (BGP multihoming)

The Internet Registry System

RIR Service Regions

Goals: Registration

Why?- Ensure uniqueness of Internet number resources- Provide contact information for users of Internet number

resources

How?- RIR whois databases

Results:- IP address space used only by one organisation- Information available on users of Internet number

resources

Goals: Aggregation

Why?- Routing tables growing too fast- Provide scalable routing solution for Internet

How?- Encourage announcement of whole allocations- Introduction of Classless Inter Domain Routing (CIDR)

Result:- Growth of routing tables has slowed, but could still be

better

Goals: Conservation

Why?- IP address space and AS Numbers are limited resources- These resources were not used efficiently in the past

How?- Introduction of CIDR- Policies to ensure fair usage

Results:- Growth in IP address space usage slowed down- Internet number resources are distributed based on need

PDP cycle

IP Address Distribution

Allocation PA Assignment PI Assignment

End User

/21/21

/23 /25 /23

IPv4 Address Pool – June 2005

25%available

source: http://potaroo.net

Central Registry

RIPE NCC

AfriNICARINLACNIC

IPv4 Address Pool - Now

16%available

Central Registry

RIPE NCC

AfriNICARIN

LACNIC

Lies, Damn Lies and….

IPv6 Allocations

IPv6 Allocations per Country

Questions?

Getting Resources

Confidential

RIPE Database

Reg FileUpdate

ResourceRequest

• If you...- are an LIR- need IPv4 addresses

• Minimum allocation size is /21

IPv4 Allocation

• If you...- are an LIR- advertise the allocation as a single prefix- have a plan for making assignments within two years

• Minimum allocation size is /32

IPv6 Allocation

Assignment Window (AW)

Maximum number of IP addresses the LIR can assign without approval from the RIPE NCC

- To any End User within 12 months- New LIR: AW = 0- Six months after the first allocation: AW = /21

Using your AW

The AW is /21All requests are from the same customer

March July November April

/23 /22 /22 /22time

send to RIPE NCC

LIR Assignment Process

Need 2nd opinion?

Request > AW?

RIPE NCC evaluates request

Choose addresses

Collect informationand evaluate request

Keep documentation and register in RIPE DB

• If you...- want to become multihomed- have peering agreements

AS Numbers

ASN Assignment rate

16-Bit AS Number Pool - Now

28%available

AfriNIC

RIPE NCC

LACNICAPNIC

Reserved

32 Bit AS Numbers

Assignments• in 2007-2008: 16-bit AS default, 32-bit AS on request• in 2009: 32-bit AS default, 16-bit AS on request• as of 2010: only 32-bit AS numbers

Prepare for 32-bit AS numbers in your organisationAsk your hardware vendor for support

Please don’t wait until 2009

Questions?

RIPE Database

• Public Network Management Database

• All LIRs must have-person object- maintainer (mntner) object-organisation object

Database Object Syntax

person: John Smithaddress: Singel 258

Amsterdamphone: +31 20 535 1234 # 9-17 CETnic-hdl: JS1-RIPEchanged: john@example.net 20030306source: RIPE

Attribute value

Comment (after #)

Attribute name

Continuation(line starts with white character)

tech-c: JS123-RIPE inetnum: 80.35.61.0tech-c: SB456-RIPE inetnum: 80.35.61.0

tech-c: JS123-RIPE

inetnum: 80.35.62.0tech-c: SB456-RIPE inetnum: 80.35.62.0

tech-c: JS123-RIPE

Not using a Role Object

nic-hdl: JS123-RIPEperson: John Smith

nic-hdl: SB456-RIPEperson: Sue Baker

Using a Role Object

nic-hdl: LA789-RIPErole: LIR Admin

nic-hdl: JS123-RIPEperson: John Smith

nic-hdl: SB456-RIPEperson: Sue Baker

tech-c: LA789-RIPE

inetnum: 80.35.61.0

tech-c: JS123-RIPEtech-c: SB456-RIPE

tech-c: LA789-RIPE

inetnum: 80.35.62.0

tech-c: LA789-RIPE

inetnum: 80.35.62.128

tech-c: LA789-RIPE

inetnum: 80.35.62.224

tech-c: LA789-RIPE

inetnum: 80.35.63.0

tech-c: LA789-RIPE

inetnum: 80.35.64.224

tech-c: LA789-RIPE

inetnum: 80.35.66.128

RIPE Database Protection• mntner holds the password / key for authorisation of updates

of other objects

• Include “mnt-by: NAME-MNT” in all objects!- for updates: include “password: bla” or sign

• Authentication methods:- MD5-PW <encrypted password>

• encryption web interface available- PGPKEY-<key ID>- X509-<ID>

• Forgot password? Go to RIPE DB > DB Support > Security

auth: MD5-PW $1$o93UxR

Multiple protection

nic-hdl: JS1-RIPEmnt-by: ONE-MNTmnt-by: TWO-MNT

person: John Smith

auth: MD5-PW bla34^&$%auth: PGPKEY-AE6FBBF7

mntner: ONE-MNT

Any of the three authentications

mntner: TWO-MNT

Hierarchical Authorisation

status: ALLOCATED PAmnt-by: RIPE-NCC-HM-MNTmnt-lower: LIR-MNT

inetnum: 85.118.184.0/21

status: ASSIGNED PAmnt-by: LIR-MNT

inetnum: 85.118.186.0/25

/21/21

Allocation

Assignment

Questions?

Do You Want to Host RIPE NCC Training Courses?

• You will provide- Location with lunch facilities- High speed Internet connection

• The RIPE NCC will- Provide the Training Course- Announce the Training Course at your location - Register the attendees - Send the training material to your location

• The RIPE NCC will pay for- Catering (Food and drink)- Travel and accommodation for the RIPE NCC trainers - Shipping the training material

• http://www.ripe.net/training/hosting.html

The End!

Pabaiga

Koniec

Kрай

Sfâr itş

Конeц

Kiнець

Τέλος

Y Diwedd

Amaia Tmiem

Соңы

Liðugt

An Críoch

הסוף

RIPE NCC LIR Tutorial - MENOG3 RIPE Network Coordination Centre What is an LIR? • Local Internet...

Documents

Diagram a Lir

LIR Tutorial - RIPE Network Coordination Centre · RIPE 54, Tallinn RIPE NCC Tutorial 1 RIPE Network Coordination Centre Welcome to the LIR Tutorial RIPE NCC

Ethiopia Internet Development Conference 2020€¦ · How are Internet Numbered Resources managed PTI (IANA) ICANN AFRINIC RIPE NCC ARIN APNIC LACNIC LIR End Site (PI) NIR End Site

MAT-WG - RIPE 78 v3 · RIPE NCC Tools Update Christopher Amin | 23 May 2019 | RIPE 78. RIPE Atlas. ... functionality-for-the-ripe-atlas-measurement-detail-page. Christopher Amin |

LIR Annual Seminar

Lir plateforme-2010

IPv6 Address Management The First Five Years...9 Reasons to Act as LIR / Become RIPE Member See also: IPv6

RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis

RIPE NCC Update - ENOG | RIPE NCC Regional Meeting NCC RIPE NCC Update. ... •Maintains the RIPE Database ... - Using RIPE NCC services - The RIPE Policy Development Process

RIPE Atlas - Internet Society€¦ · RIPE Atlas Overview (1) Data Repository User Web Interface Probes Anchor Control API CLI Probes Anchor. 12 ... Being an RIPE NCC member (LIR)

Kingdom of Lir

RIPE NCC Activity Plan 2009 · RIPE NCC Document ID: ripe-439 Date: December 2008 Obsoletes: ripe-426 Section A: RIPE NCC Vision and Focus 1. Vision and Strategy The RIPE Network

Reaktor Nuk Lir

RIPE NCC measurement network update - RIPE 60

RIPE 57 Database Update Jos I. Boumans RIPE NCC · Jos Boumans RIPE NCC RIPE 57 Database Update Jos I. Boumans RIPE NCC 1

RIPE 59 Database Update · RIPE Network Coordination Centre RIPE 59 Database Update Paul Palse Database Manager, RIPE NCC Paul Palse RIPE 59 1

REVISTA 'LIR

RIPE Atlas in Pictures - RIPE Network Coordination Centre · Vesna Manojlovic - RIPE 68 - May 2014, Warsaw Integration with Monitoring Systems RIPE Atlas •Beneﬁts of using RIPE

PROSPECTUS 2017 - The Lir Academy · PROSPECTUS 2017 . 2 THE LIR ACADEMY 3 PROPECTU 201617 THE LIR ACADEMY PROPECTU 201617 Now in it’s sixth year, The Lir National ... 8 THE LIR

RIPE 57 Database Update Jos I. Boumans RIPE NCCmeetings.ripe.net/ripe-57/presentations/Boumans-DB-Update-RIPE-57.pdfRIPE 57 Database Update Jos I. Boumans RIPE NCC 1. ... -RIPE NCC