DN42 - AS4242420144

Peering Guidelines

  • WireGuard tunnels is used.
  • IPv6 is done with Link-Local addresses.
  • IPv4 is done with unnumbered interfaces (a.k.a. /32) addresses.
  • Multiple links is prefereable. But not required.
  • Closest geographical locations is chosen for peering link to minimize latency.

Looking to peer with me. Please see contact details in about.

Hosts

1. Marty (DE)

DNS: marty.netravnen.org
Loc: Frankfurt, DE
Pub v4: 80.240.17.49 
Pub v6: 2001:19f0:6c01:1f3d:5400:1ff:fe8e:14df
WG v4: 172.20.128.80/32
WG v6: fe80::42:1001/64
WG PubKey: MrTpgEqRm4yXSXVCrdUm8zq3ydiLXBUxAfbLxIWeHQI=
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

2. Bart (UK)

DNS: bart.netravnen.org
Loc: London, UK
Pub v4: 45.77.224.24
Pub v6: 2001:19f0:7402:1b4f:5400:1ff:fe94:f552
WG v4: 172.20.128.81/32
WG v6: fe80::42:fefe/64
WG PubKey: K38mqkETtqa1X9XqgLIpgg20il8zb5WnLDytsikhOD0=
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

3. Aristotle (AU)

DNS: aristotle.netravnen.org
Loc: Sidney, AU
Pub v4: -
Pub v6: 2001:19f0:5801:1733:5400:01ff:fec6:74ab
WG v4: 172.20.128.82/32
WG v6: fe80::42:ff82/64
WG PubKey:
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

4. Atkins (SG)

DNS: atkins.netravnen.org
Loc: Singapore, SG
Pub v4: -
Pub v6: 2001:19f0:4401:bbe:5400:01ff:fec6:74c4
WG v4: 172.20.128.83/32
WG v6: fe80::42:ff83/64
WG PubKey:
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

5. Mary (CA)

DNS: mary.netravnen.org
Loc: Toronto, CA
Pub v4: 149.248.50.188
Pub v6: 2001:19f0:b001:13d:5400:01ff:fecb:fa39 
WG v4: 172.20.128.84/32
WG v6: fe80::42:ff84/64
WG PubKey: pfwVmIfk4m1O+pKPM7LWO8LEb8h0OlnUgdEvDwvVAGM=
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

6. Lisa (DK)

DNS: lisa.netravnen.org
Loc: Skanderborg, DK
Pub v4: 87.116.6.4
Pub v6: 2a02:188:2:d6::4
WG v4: 172.20.128.85/32
WG v6: fe80::42:ff85/64
WG PubKey: 5tOLxGyq3vewWWEpd9tVeN/7SnLFUpZGBTveL9ulbD4=
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

7. Maggie (DK)

DNS: maggie.netravnen.org
Loc: Skanderborg, DK
Pub v4: 87.116.6.5
Pub v6: 2a02:188:2:d6::5
WG v4: 172.20.128.86/32
WG v6: fe80::42:ff86/64
WG PubKey: sOmN1OQih5H8EewqF6hidscn9mGcTVgOb7/m/p2VmDk=
WG ListenPort: <<Last five digits of your ASN>>
ASN: 4242420144

Allocations

IP addresses

AFI Prefix Size Purpose/Usage Link
IPv4 172.20.128.80 29 Loopbacks + Unnumbered P2P Git
IPv4 172.22.128.0 27 - Git
IPv4 172.22.128.32 27 - Git
IPv6 fd00:aaaa:251:: 48 - Git
IPv6 fd00:aaaa:255:: 48 - Git

Autonomous System Numbers

ASN 2/4-byte Purpose/Usage Link
4242420141 4-byte Returned to pool Git
4242420144 4-byte Currently used Git

All ASN is aggregated in this as-set.

Sub-allocations

AFI Prefix Size Purpose/Usage Size
IPv6 fd00:aaaa:255:42:: 64 Loopback /128

Routing policy

  1. ROA validation is used for all ingoing and outgoing BGP announcements. Invalid announcements is rejected.
  2. The below prefix filter rules from the dn42 website is used, too.
  3. All route announcements with as-paths longer than 32 is rejected. (This is to prevents a mishap in the event of an unlikely routing loop in the network)

Prefix filters

General filter rules used in ASN 4242420144.

172.20.0.0/14{21,29}, # dn42
172.20.0.0/24{28,32}, # dn42 Anycast
172.21.0.0/24{28,32}, # dn42 Anycast
172.22.0.0/24{28,32}, # dn42 Anycast
172.23.0.0/24{28,32}, # dn42 Anycast
172.31.0.0/16+,       # ChaosVPN
10.100.0.0/14+,       # ChaosVPN
10.0.0.0/8{15,24}     # Freifunk.net
fd00::/8{44,64}       # ULA address space as per RFC 4193

Infrastructure

Loopback interface addresses

Host Loopback v4 Loopback v6
marty 172.20.128.80 fd00:aaaa:255:42::80
bart 172.20.128.81 fd00:aaaa:255:42::81
aristotle 172.20.128.82 fd00:aaaa:255:42::82
atkins 172.20.128.83 fd00:aaaa:255:42::83
mary 172.20.128.84 fd00:aaaa:255:42::84
lisa 172.20.128.85 fd00:aaaa:255:42::85
maggie 172.20.128.86 fd00:aaaa:255:42::86

RPKI testing

Currently in the progress of writing a script to do RPKI JSON filter generation. See more at netravnen/dn42-rpki-export.json.

Network Diagram

NB: BGP Confederations is not yet deployed. Target is to implement it with the release of FRR 7.0

Network Diagram