Uploaded image for project: 'DC/OS'
  1. DC/OS
  2. DCOS_OSS-4257

Default VIP CIDR Block conflicts with DoD address space

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Medium
    • Resolution: Duplicate
    • Affects Version/s: DC/OS 1.11.6
    • Fix Version/s: None
    • Component/s: minuteman
    • Labels:
      None

      Description

      In minuteman, the default CIDR for VIPs is 11.0.0.0/8:

      https://github.com/dcos/minuteman/blob/185970eb0148cc659bd096ebdd385b9342fb8a76/src/minuteman_config.erl#L49 

      which is actually a DoD address block: https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks

      Perhaps this should be changed to be 10/8? Given the documentation for minuteman "you should choose IPs from the RFC1918 range, " (https://github.com/dcos/minuteman#ip-overlay) which 11/8 is not.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                dgoel Deepak Goel
                Reporter:
                mcdan mcdan
                Team:
                Networking Team
                Watchers:
                mcdan
              • Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: