legacy resource holders - internet2...oct 06, 2017 · • arin will not reclaim your legacy ipv4...
TRANSCRIPT
Legacy Resource Holders The Importance of Updating
Whois & The Path to IPv6
John Curran, ARIN President & CEO Internet2 Technology Exchange 2017
First Let’s Dispel the Rumors…• ARIN will not reclaim your legacy IPv4
resources when you come to ARIN to update your records, request IPv6 resources, or request to transfer your legacy resources
• ARIN will not require you to sign a RSA/LRSA unless you seek additional ARIN Registry services (detailed in this presentation)
• ARIN will not reclaim your legacy resources If you voluntarily elect to sign an RSA/LRSA
2
Why Update Your Whois Record?• Protection from number resource hijacking
– ~25,000 legacy networks in ARIN’s Whois – ~53% of them have either no associated Point of Contact
(POC), or a POC that has never been verified by ARIN (referred to as an “Invalid POC”) • These stale records are the prime targets of hijackers
• Ease of transferring IPv4 space – With increasing value of IPv4 space, legacy holders may
wish to transfer their unused space – Must have accurate and up to date Whois info in order to
complete a transfer • Process is always easier and faster when Whois information is
accurate and current • Internet operability and stability
– Network operators use Whois to find valid contacts to resolve issues
3
ARIN Issued vs Legacy Stats
25,648 (93%) have at least one validated POC
1,997 (7%) have no validated POC
11,773 (47%) have at least one validated POC
13,201 (53%) have no validated POC
27,645 total
ARIN-issued v4 nets
24,974 total legacy
nets
*Validated POC – has either responded to ARIN’s annual POC validation email or updated their POC record within the past 12 months
4
ARIN Services Provided Without RSA/LRSA
• Manage IPv4 resource registration information (e.g. Points of Contact) in ARIN’s Whois
• Manage associated reverse DNS nameserver delegations
• Set an Origin AS number for the IPv4 legacy resource
• • Set up an ARIN Online account (web interface for
managing Internet number resources)
5
ARIN Services Requiring RSA/LRSA
• Customers seeking to: – Be added as a source to ARIN’s Specified
Transfer Listing Service (STLS) – Utilize RPKI – Secure reverse DNS zone management via DNS
Security (DNSSEC) functionality – Become an ARIN member
• Approved resource transfers may require signed RSA/LRSA*
6
*Dependent upon the type of transfer
Updating Your Whois Record Using ARIN Online
• 1st step is to create your ARIN Online profile – https://www.arin.net/public/aboutARINonline.xhtml
• Click "new user?" below the login boxes on the left side of any page on the ARIN website
• Follow the instructions on the form • You will receive a confirmation email and must verify
your account using the link provided within 24 hours • Once you’ve verified your account, log in to ARIN
Online • Accept the ARIN Online Account Terms of Service
Agreement • Create a profile
7
ARIN Online Capabilities• Add, delete, or modify nameservers for Reverse DNS • Add, delete, or modify POCs associated with the resource • Change the NetName of an IP address block or the
ASName of an ASN • Add reassignment information via SWIP-EZ (only available if
the legacy block is a direct allocation) • Request new number resources – requirement to sign
standard RSA and pay fees are applied only upon approval
• Request the transfer of number resources – requirement to sign RSA/LRSA and pay fees are applied only upon approval
• Submit questions via Ask ARIN
8
ARIN Online Capabilities (Org)• Modify organization information to include mailing
address; adding, deleting, or modifying POCs; and adding public comments
• Request an organization name change (cannot be the result of any merger or acquisition activity)
• Request an organization recovery (when registered Admin or Tech POC are no longer associated with the org and a new POC needs to be added, or no Admin or Tech exist on the record) – **RSA/LRSA only required if org recovery results in a transfer
9
ARIN Online Capabilities (POC Validation)
• Validate your POC record during ARIN’s annual POC validation by: – Clicking the secure link in the validation email
that ARIN sends once per year – Replying to the validation email and putting
“Correct” in the subject line – Updating your POC record in ARIN Online if the
POC information is no longer accurate OR
• Click the “Requires Validation” link next to the applicable record in ARIN Online
10
Need Help?• If you need assistance updating your
ARIN Whois information or have questions: – Contact Registration Services at
703.227.0660 Monday through Friday 7:00 AM to 7:00 PM EST
– Submit an Ask ARIN ticket from within your ARIN Online account
– Stop by our ARIN@TechEx desk this week
11
ARIN IPv4 Runout – Sept 2015
12
IPv6 Traffic Growing> 37% of US customers connected to Google via IPv6 - up from last year & growing rapidly
Credit: Google
13
Life After IPv4 Observations• IPv4 demand remains high
• Increased transfers/market activity • Decrease in free pool IPv4 requests
• Seeing an increase in attempted resource hijacking and fraudulent activities related to transfers • IPv4 blocks with stale contact information
(especially legacy) are the prime targets • IPv6 requests remain steady
14
Post-IPv4 Depletion Options
• IPv4 Waiting List
• IPv4 Transfers
• Dedicated IPv4 block to facilitate IPv6 deployment
• IPv6 Adoption15
Dedicated IPv4 block to facilitate IPv6 deployment
• /10 reserved under policy in April 2009 – 60 /24s issued to date (99.6% remains available)
• Must be used to facilitate IPv6 deployment – Dual stacking key servers, NAT-PT/NAT464, etc.
• Must have an IPv6 block
• One per organization every six months – /24 maximum size
16
Legacy Holders Who Request IPv6 from ARIN
• All legacy IPv4 holders qualify to receive IPv6 space under current ARIN policy – Once approved, must pay fee and sign RSA – RSA will cover only your IPv6 resources – Your IPv4 resources will retain legacy status
and will not be covered unless you specifically request to have them included
17
Higher Ed Case Studies
• teamarin.net/get6/ipv6-case-studies
18
Questions?
19