Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Slides:



Advertisements
Similar presentations
Introduction to ARIN and the Internet Registry System.
Advertisements

APNIC Internet Routing Registry Routing SIG APNIC-15, Taipei 26 February 2003.
Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.
Introduction to ARIN and the Internet Registry System.
IPv6: The Future of the Internet? July 27th, 1999 Auug.
IPv6 Addressing – Status and Policy Report Paul Wilson Director General, APNIC.
APNIC Update IPv4 Exhaustion Reached “Final /8” on 15 April /8 New allocation policy activated Up to /22 per member From 15 April.
APNIC Update The state of IP address distribution and its impact to business operations 1 Elly Tawhai Senior Internet Resource Analyst/Liaison Officer,
Introduction to ARIN and the Internet Registry System.
AussieISP Fall ‘99 Sydney, 9 April 1999 Overview and Status Report.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Introduction and Overview ITU/PITA Joint Workshop Brisbane, October 2001.
Internet Addressing and the RIR system 11 February 2004 Phnom Penh, Cambodia Paul Wilson, APNIC.
1 APNIC support for Internet development APT/PITA Regional Meeting on ICT for the Pacific August 2004, Nadi, Fiji Paul Wilson
1 APNIC Status Report RIPE 48 May 2004 Amsterdam.
APNIC Update Paul Wilson Director General. APNIC RIR for Asia Pacific –IP address allocation and management –Open policy development Support for Internet.
Supporting Internet Growth and Evolution: The Transition to IPv6 Bali IPv6 Summit, Bali 9 June Sanjaya Services Director, APNIC.
APNIC Update RIPE 59 October Overview APNIC Services Update APNIC 28 policy outcomes APNIC Members and Stakeholder Survey Next APNIC Meetings.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Internet Registry allocation and assignment Policies.
APNIC Policy Update 1 st TWNIC IP Open Policy Meeting 3 December, 2003 Taipei, Taiwan.
1 Internet Presentation GCC-IT commity Saleem Al-Balooshi ETISALAT.
APNIC Policy Update 1 st TWNIC Open Policy Meeting 3 December, 2003 Taipei, Taiwan.
APNIC Update The state of IP address distribution and IPv6 deployment status Miwa Fujii Senior IPv6 Program Specialist APNIC.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Update RIPE 40 Prague, 1-5 October, 2001.
APNIC Update AfriNIC 12 May 2010 Sanjaya Services Director, APNIC.
APNIC Depletion of the IPv4 free address pool – IPv6 deployment The day after!! 8 August 2008 Queenstown, New Zealand In conjunction with APAN Cecil Goldstein,
1 APNIC allocation and policy update JPNIC OPM July 17, Tokyo, Japan Guangliang Pan.
1 APNIC Status Report SANOG VI July 2005, Thimpu, Bangladesh Kapil Chawla, APNIC.
IP Policy in APNIC and What about TWNIC ? Kuo-Wei Wu.
AFRINIC Update Anne-Rachel Inné COO, AFRINIC ARIN 32, Phoenix October 2013.
IPv6/IPv4 XLATE Trial Service for sharing IPv4 address Japan Internet Exchange Co., Ltd. Masataka MAWATARI.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E RIPE 37 Local IR WG APNIC Member Services Report.
1 IPv4 Addressing in China CNNOG April 2006, Beijing Guangliang Pan.
1 Challenges in IPv6 Address Management Paul Wilson Director General APNIC.
Delivering Value Sanjaya, Services and Operations Director.
1 IPv6 Allocation Policy and Procedure Global IPv6 Summit in China 2007 April 13, 2007 Gerard Ross and Guangliang Pan.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Status Report ARIN VI Public Policy Meeting 2-4 October 2000.
APNIC Internet Resource Management and Internet Infrastructure Support PITA Members Meeting 10 January 2004 Honolulu, Hawaii Save Vocea, APNIC.
Services Area Report Sanjaya Services Area Manager.
APNIC Security Update APSIRCC 2002 Tokyo, 25 March 2002.
Management of Internet Resources ITU Workshop on Developing a Policy and Regulatory Framework for Developing Economies of the Pacific 1 December 2003 Suva,
IP Addressing and ICT Development in the Pacific Islands Anne Lord and Save Vocea, APNIC ICT Workshop, Fiji, November, 2002.
Securing Future Growth: Getting Ready for IPv6 NOW! ccTLD Workshop, 8 th April 2011 Noumea, New Caledonia Miwa Fujii, Senior IPv6 Program Specialist, APNIC.
ARIN Update Aaron Hughes ARIN Board of Trustees Focus Increased focus on customer service – Based on feedback and survey Continued IPv4 to IPv6.
Internet Protocol Addresses What are they like and how are the managed? Paul Wilson APNIC.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Emerging Registry Criteria ASO General Assembly Budapest, 19 May 2000.
1 APNIC Survey 2007 Summary Report May APNIC Surveys Three surveys previously… –Members and other stakeholders –Conducted independently (KPMG)
IPv4 IXP Address Policy APNIC Policy SIG Meeting Taipei, August 2001 Philip Smith.
APNIC Update RIPE November 2010 Rome, Italy Geoff Huston Chief Scientist, APNIC.
17 th APNIC Open Policy Meeting APNIC IPv6 Address Guidelines Akira Nakagawa )/ POWEREDCOM Billy MH Cheon / KRNIC Toshiyuki.
PacINET 2011 The state of IP address distribution and its impact Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific, APNIC 1.
APNIC Update The state of IP address distribution and its impact to business operations Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific,
1 Transition to IPv6: Should ISPs consider it now? PITA 11th AGM Meeting 2007 Tahiti, French Polynesia 24 April 2007.
APNIC Update Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific, APNIC AusNOG
1 IPv6 Allocation and Policy Update Global IPv6 Summit in China 2007 April 12, 2007 Guangliang Pan.
Introduction to the Regional Internet Registries (RIRs)
Copyright (c) 2002 Japan Network Information Center Proposal for IPv6 Policy for Essential Infrastructure in the AP region Izumi Okutani IP Address Section.
Regional Internet Registries An Overview
Research & Liaison Officer (Pacific)
Introduction to ARIN and the Internet Registry System
Consideration on IPv6 Address Management
Prop-093: Reducing the minimum delegation size for the final /8
Status of IPv6 Addresses and Address Management
A Proposal for IPv4 Essential Infrastructure
IPv6 Policy and Allocation Update
Introduction to Regional Internet Registries (RIRs)
APNIC 22 CNNIC UPDATE 2019/5/23.
IPv6 Allocation Status Update
Status Report on Policy Implementation at the APNIC Secretariat
prop-081-v001: Eligibility for assignments from the final /8
Presentation transcript:

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager

Overview Introduction to APNIC and Regional Internet Registries Why your own IP addresses for your clouds? Questions to ask your cloud service providers IPv6 security How to get IP addresses ? Internet resource management policies 2

Introduction to APNIC & Regional Internet Registries 3

Regional Internet Registries 4 The Internet community established the RIRs to provide fair access and consistent resource distribution and registration throughout the world.

What is APNIC? The Regional Internet Registry (RIR) for the Asia Pacific –Delegates IP addresses and AS numbers –Maintains the APNIC Whois Database –Manages reverse DNS delegations Not-for-profit and membership based organization –3,400+ Members –100+ Members in Thailand –NOT a domain name registry 5

APNIC’s Mission Assist the Asia Pacific Internet community in effective Internet resources management and distribution Support regional Internet infrastructure building Seek public consideration of issues that benefit Members and the community Coordinate and facilitate Internet resource policy development Provide training and outreach on resource management and APNIC services 6

Why your own IP addresses for your clouds? 7

Service provider networks –A key component in service provision –Addresses to be assigned to infrastructure and customers Independent networks –Addresses to be used for their own networks –Allows easier management of multiple connections to ISPs/IXPs –Removes the need to renumber when changing upstream providers

Questions to ask your cloud service providers 9

Private IP addressing has its limitations. Are you numbering cloud hosts in public or private addresses? –Private: How many customers share the NAT interface to the public Internet? –Public: Does the provider have enough addresses to meet your future needs? IP address portability –If you have access to a block of public addresses, does the provider have the capability to use them in provisioning your cloud solution? What are the costs involved? –Are you being charged for public IP addresses? 10

Questions to ask your cloud service providers Does the provider rely on NAT and CGN for their security? –NAT and CGN are not all of your security –You need proper configuration and ACL reflecting your function and needs, e.g. inbound SSH only for your back office network, outbound only to your specified clients How much shared infrastructure between cloud customers and your specific needs? –Shared access path potentially shared risks Does the cloud provider understand IPv6? –For future growth and and demand, start early, gain experience –Be aware of difference in IPv6 security 11

IPv6 security Mostly the same as IPv4 –ACL are basically the same –ICMPv6 substantially different, do not block most ICMPv6, it’s needed for pMTU discovery…etc –Be aware of different IP fragmentation behaviour New class of risks –Stateless auto config (SLAAC) –Switch ND exhaustion (DDOS attack) –Get proper IPv6 aware managed switches, they should offer mitigation against both risks 12

How to get IP addresses 13

How to get IP addresses Service providers and independent network operators get their IP addresses from their Internet Registry –Maximum /22 (1,024 addresses) of IPv4 –Initial /48 to /32 of IPv6 –Must meet current policy criteria Casual users get their IP addresses from their service provider (ISP, hosting, data centre etc.)

How to get IP addresses Online request form – Need support ? –Contact APNIC Member Services Helpdesk –Monday to Friday, 09:00 to 21:00 (UTC +10) –

Policy criteria 16

Policies Service providers –IPv4 criteria Have used a /24 from their upstream provider or demonstrate an immediate need for a /24, Demonstrate a detailed plan for use of a /23 within a year –IPv6 criteria Have existing IPv4, or Plan to provide IPv6 connectivity and make 200 customer assignments in 2 years

Policies Independent networks –IPv4 criteria Connected or plan to connect within 3 months to multiple ISPs/IXPs, or Running an IXP (Internet Exchange Point), or Running an Internet critical infrastructure e.g. –Root domain name system (DNS) server; –Global top level domain (gTLD) nameservers; –Country code TLD (ccTLDs) nameservers; –National/Regional Internet Registry

Policies Independent networks –IPv6 criteria automatically eligible for a minimum IPv6 portable assignment if previously justified an IPv4 portable assignment from APNIC Running an IXP (Internet Exchange Point), or Running an Internet critical infrastructure e.g. –Root domain name system (DNS) server; –Global top level domain (gTLD) nameservers; –Country code TLD (ccTLDs) nameservers; –National/regional Internet Registry

Questions? 20

Thanks! George Kuo, Member Services Manager 21

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.