# # Sample naming defintions for network objects # RFC1918 = 10.0.0.0/8 # non-public 172.16.0.0/12 # non-public 192.168.0.0/16 # non-public INTERNAL = RFC1918 LOOPBACK = 127.0.0.0/8 # loopback ::1/128 # ipv6 loopback RFC_3330 = 169.254.0.0/16 # special use IPv4 addresses - netdeploy RFC_6598 = 100.64.0.0/10 # Shared Address Space LINKLOCAL = FE80::/10 # IPv6 link-local SITELOCAL = FEC0::/10 # Ipv6 Site-local MULTICAST = 224.0.0.0/4 # IP multicast FF00::/8 # IPv6 multicast CLASS-E = 240.0.0.0/4 RESERVED = 0.0.0.0/8 # reserved RFC1918 LOOPBACK RFC_3330 RFC_6598 MULTICAST CLASS-E 0000::/8 # reserved by IETF 0100::/8 # reserved by IETF 0200::/7 # reserved by IETF 0400::/6 # reserved by IETF 0800::/5 # reserved by IETF 1000::/4 # reserved by IETF 4000::/3 # reserved by IETF 6000::/3 # reserved by IETF 8000::/3 # reserved by IETF A000::/3 # reserved by IETF C000::/3 # reserved by IETF E000::/4 # reserved by IETF F000::/5 # reserved by IETF F800::/6 # reserved by IETF FC00::/7 # unique local unicast FE00::/9 # reserved by IETF LINKLOCAL # link local unicast SITELOCAL # IPv6 site-local PUBLIC = 1.0.0.0/8 2.0.0.0/7 4.0.0.0/6 8.0.0.0/7 11.0.0.0/8 12.0.0.0/6 16.0.0.0/4 32.0.0.0/3 64.0.0.0/3 96.0.0.0/6 100.0.0.0/10 100.128.0.0/9 101.0.0.0/8 102.0.0.0/7 104.0.0.0/5 112.0.0.0/5 120.0.0.0/6 124.0.0.0/7 126.0.0.0/8 128.0.0.0/3 160.0.0.0/5 168.0.0.0/8 169.0.0.0/9 169.128.0.0/10 169.192.0.0/11 169.224.0.0/12 169.240.0.0/13 169.248.0.0/14 169.252.0.0/15 169.255.0.0/16 170.0.0.0/7 172.0.0.0/12 172.32.0.0/11 172.64.0.0/10 172.128.0.0/9 173.0.0.0/8 174.0.0.0/7 176.0.0.0/4 192.0.1.0/24 192.0.3.0/24 192.0.4.0/22 192.0.8.0/21 192.0.16.0/20 192.0.32.0/19 192.0.64.0/18 192.0.128.0/17 192.1.0.0/16 192.2.0.0/15 192.4.0.0/14 192.8.0.0/13 192.16.0.0/12 192.32.0.0/11 192.64.0.0/10 192.128.0.0/11 192.160.0.0/13 192.169.0.0/16 192.170.0.0/15 192.172.0.0/14 192.176.0.0/12 192.192.0.0/10 193.0.0.0/8 194.0.0.0/7 196.0.0.0/7 198.0.0.0/12 198.16.0.0/15 198.20.0.0/14 198.24.0.0/13 198.32.0.0/12 198.48.0.0/15 198.50.0.0/16 198.51.0.0/18 198.51.64.0/19 198.51.96.0/22 198.51.101.0/24 198.51.102.0/23 198.51.104.0/21 198.51.112.0/20 198.51.128.0/17 198.52.0.0/14 198.56.0.0/13 198.64.0.0/10 198.128.0.0/9 199.0.0.0/8 200.0.0.0/7 202.0.0.0/8 203.0.0.0/18 203.0.64.0/19 203.0.96.0/20 203.0.112.0/24 203.0.114.0/23 203.0.116.0/22 203.0.120.0/21 203.0.128.0/17 203.1.0.0/16 203.2.0.0/15 203.4.0.0/14 203.8.0.0/13 203.16.0.0/12 203.32.0.0/11 203.64.0.0/10 203.128.0.0/9 204.0.0.0/6 208.0.0.0/4 ANY = 0.0.0.0/0 ANY_V6 = ::/0 ANY_MIXED = ANY ANY_V6 # http://www.team-cymru.org/Services/Bogons/bogon-bn-agg.txt # 22-Apr-2011 BOGON = 0.0.0.0/8 192.0.0.0/24 192.0.2.0/24 198.18.0.0/15 198.51.100.0/24 203.0.113.0/24 MULTICAST CLASS-E 3FFE::/16 # 6bone 5F00::/8 # 6bone 2001:DB8::/32 # IPv6 documentation prefix GOOGLE_PUBLIC_DNS_ANYCAST = 8.8.4.4/32 # IPv4 Anycast 8.8.8.8/32 # IPv4 Anycast 2001:4860:4860::8844/128 # IPv6 Anycast 2001:4860:4860::8888/128 # IPv6 Anycast GOOGLE_DNS = GOOGLE_PUBLIC_DNS_ANYCAST # The following are sample entires intended for us in the included # sample policy file. These should be removed. MANAGEMENT_SERVERS = 192.168.0.1/32 192.168.0.44/32 192.168.0.46/32 MAIL_SERVERS = 200.1.1.4/32 # Example mail server 1 200.1.1.5/32 # Example mail server 2 PUBLIC_NAT = 200.1.1.3/32 # Example company NAT address NTP_SERVERS = 10.0.0.1/32 # Example NTP server 10.0.0.2/32 # Example NTP server TACACS_SERVERS = 10.1.0.1/32 # Example tacacs server 10.1.0.2/32 # Example tacacs server PUBLIC_IPV6_SERVERS = 2606:700:e:550:b01a::b00a # Example public web server WEB_IPV6_SERVERS = 2620:15c:2c4:202:b0e7:158f:6a7a:3188/128 # Example web server