Appendix N. Classless Inter-domain Routing

The chapters in Part IV of the book work through the fundamentals of IPv4 addressing. However, most of the discussion about starting with a big block of addresses, and then creating smaller blocks called subnets, begins with a classful network (that is, a Class A, B, or C network). A thorough understanding of how to take a classful network and subdivide it into subnets is very important, because most enterprises do exactly that: They start with some private IPv4 network, often network 10.0.0.0, and divide it into subnets.

However, most enterprises also use Classless Inter-domain Routing (CIDR) with regard to the public IPv4 addresses used by the company. CIDR defines many ideas, including how an enterprise can be assigned a block of public IPv4 addresses called a classless prefix. Like Class A, B, or C networks, a CIDR classless prefix is a block of consecutive IP addresses. However, CIDR classless prefixes can be a variety of sizes—any power of 2—rather than the three sizes of classful networks based on Class A, B, and C rules.

This appendix uses three major sections to introduce the topics. The first discusses the meaning and use of CIDR when a classless prefix is assigned to an enterprise. The second major section then examines subnetting of a classless prefix inside an enterprise. The chapter ends with a section about terminology and calculations to help you connect the terms and math you learned in Part IV with the details covered in this appendix.

The one-classful-network-per-company strategy worked well as long as there were enough classful networks. However, the Internet grew, and it reached a stage where it grew very quickly, to the point that it was clear that the world would run out of IPv4 addresses. The long-term solution is to migrate from IPv4 to IPv6, with a 128-bit address. At the same time, the IETF came up with two other very useful tools to make better use of the existing IPv4 address space: NAT (as discussed in Chapter 27, “Network Address Translation”) and CIDR (as discussed in this appendix).

That original strategy of assigning each company an entire classful IP network worked well to ensure unique addresses, but the three-sizes-fits-all approach happened to waste addresses. That is, a company would receive an address block of the size of either a Class A, Class B, or Class C of size 2²⁴, 2¹⁶, and 2⁸, respectively. Sometimes those sizes matched the true needs of the company, but often those sizes did not.

CIDR allows blocks of consecutive addresses—called classless prefixes—that come in sizes of powers of 2. Basically, CIDR lets us continue to assign IPv4 address so that they are unique but better match the size of the address block to the needs of each company.

This first major section of this appendix discusses the ideas surrounding how the numbering authorities assign a public CIDR classless prefix to an enterprise. First, this section explains the administrative process to assign public IP address blocks. Second, this section shows why the old methods wasted too many IPv4 addresses and why CIDR wastes fewer addresses. Then, once you know the terms and ideas, this section reviews the math that lets you better understand what a company receives when it is assigned a classless prefix. Note that the math works much like the math from Parts IV and VI in the book.

You can still see some of those original assignments of Class A networks listed on the IANA.org website. Just go to the site and find the IP Address Allocations link, and you will find the list. Figure N-1 shows a few of those Class A networks for perspective.

As the Internet grew in popularity, IANA changed the address assignment process, in part due to growth and in part to better support the global nature of the process. Rather than having all requests come to IANA (whose offices were and still are in the United States), IANA distributed the address assignment work around the world to five different regional organizations called Regional Internet Registries (RIR). IANA ultimately owns all the IPv4 address spaces worldwide, but the RIRs ask IANA to allocate address blocks to the RIR. The RIR in turn assigns blocks of addresses to enterprises for them to use when connecting to the Internet (or further allocates addresses to Internet service providers [ISP], which in turn assign the addresses for use by their customers). Figure N-2 shows the names of the RIRs and the general flow of assignments of public IP addresses.

The figure shows the process as it normally works today. For example, ISPs can (and typically do) receive the allocation of an address block from one of the RIRs. Then, the ISP can assign subsets of its address block to its customers. In the end, each enterprise can choose to apply for a block of globally unique IPv4 addresses to use; it can apply to its RIR or to any ISP that serves its geography.

So, how did the process of using only three sizes of public IP address blocks cause waste? To understand, you need to connect a couple of points.

First, recall the size of Class A, B, or C networks, as listed here. Then notice how huge the difference is between the number of addresses in each.

Class A: 16,777,216

Class B: 65,536

Class C: 256

Second, focus on the fact that public addresses assigned to one company cannot be used by another.

Suppose, for example, that an enterprise is assigned some Class B network. It uses 10,000 or so IPv4 addresses. What about the other 55,000 or so in that Class B network? Wasted. No other company can use them. Or imagine a company has a Class A network and uses even 1 million addresses (that would be a pretty large company). How much waste? About 15.7 million addresses.

CIDR attacked the problem of wasted public IP addresses with several interrelated features. Most importantly for this appendix, CIDR allowed the assignment of address blocks of any power of 2. In comparison, think of Class A, B, and C networks as address blocks of size 2²⁴, 2¹⁶, and 2⁸, respectively. CIDR defines rules for any useful power of 2. For example:

A company needed 1000 addresses and received an entire Class B network, wasting 64,000+ addresses. With CIDR, the company received an address block with 1024 (2¹⁰) addresses, with little waste.

A company needed 10,000 addresses and received an entire Class B address, wasting 55,000+ addresses. With CIDR, the company received an address block with 16,384 (2¹⁴) addresses, wasting about 6,000 addresses.

A company needed 50 addresses and received an entire Class C network, wasting about 200 addresses. With CIDR, the company received an address block with 64 (2⁶) addresses, wasting about 14 addresses.

The specific classful network ID (that is, the Class A, B, or C network ID)

The prefix length—either explicitly listed in the document or implied as the default mask—used with that class of network (specifically, prefix lengths /8, /16, or /24, for Classes A, B, and C, respectively).

Based on those two facts, you can find other key facts about that network, as follows:

32 minus the prefix length tells you the number of host bits in the unsubnetted network (specifically, 24 host bits in a Class A network, 16 host bits in a Class B network, and 8 in a Class C network).

Interestingly, that classful network ID is the first/lowest dotted-decimal number in the range of public IPv4 addresses in that network.

The network ID and prefix length gives you enough information to calculate the numbers in the address range (as shown in detail in Chapter 14, “Analyzing Classful IPv4 Networks”).

Figure N-3 summarizes the idea of the prefix length for Classes A, B, and C, and the resulting size of the host parts of those networks.

For example, a company might be assigned classful network 9.0.0.0/8, meaning Class A network 9.0.0.0 with default mask /8 (255.0.0.0). Following the items in the bulleted list:

With a prefix length of /8, the network part of the address is length 8, leaving 24 host bits, so the Class A network’s size is 2²⁴ addresses, ignoring reserved values.

9.0.0.0 (the network ID) is also the first/lowest number in the range of numbers in Class A network 9.0.0.0 (although it is a reserved value).

Finally, what are the 2²⁴ addresses in network 9.0.0.0? Chapter 14 works through that math in some detail. However, for a quick review, the following is the range of addresses:

The numerically lowest number is the network ID.

The numerically highest number is the network broadcast address.

Continuing that same example with Class A network 9.0.0.0, mask 255.0.0.0, Figure N-4 shows the range of addresses in Class A network 9.0.0.0. (Note that although the network ID and network broadcast address are the literal lowest and highest number in the range, they cannot be assigned to a host for use as an IP address.)

The documentation received from the RIR or ISP lists a CIDR classless prefix. This classless prefix is a dotted-decimal number (DDN), and it serves the same purpose as a network ID. It is also the first/lowest DDN in the address block.

The document includes the classless prefix length (mask) for the block of addresses.

You can then calculate the number of host bits in the unsubnetted classless prefix, the size (number of addresses) in the block, and the range of addresses in the block.

Figure N-5 summarizes the terms for what a company receives before CIDR and with CIDR address assignment.

When using classless prefixes, you must quit thinking about class rules. Just do the math based on the input received from the RIR or ISP. In fact, that’s what the classless in classless inter-domain routing refers to: Quit using classful rules. Instead, ignore Classes A, B, and C, use the CIDR classless prefix ID (the first number in the range) and the CIDR classless prefix length, and do the math to figure out the details like the number of addresses and the range of addresses.

For example, consider a case in which a company has received a classless prefix documented as follows:

Classless prefix ID: 128.66.4.0

Classless prefix length: /22

First, before the company subnets this classless prefix into smaller subnets, this block of addresses exists as a single block. How many addresses are in this classless prefix? Well, similar to classful networks, an unsubnetted classless prefix also has a 32-bit two-part structure. The classless prefix length, as listed in the documentation from the RIR or ISP, defines the length of the first part. The second part is the host part, and the two parts add up to 32. Figure N-6 shows an unsubnetted classless prefix length of /22 (as is used with this most recent example).

The size of a CIDR classless prefix is 2^H; that is, 2 to the number of host bits, without subtracting 2. However, the fact that we do not subtract 2 in this case is trivia. But just so you know a bit of background:

The original definition of classful networks reserved the network number and network broadcast address, so we subtract 2 when calculating the number of addresses per classful network.

CIDR does not literally reserve the first and last number in the classless prefix, so we do not subtract 2.

The other bit of math to do with an assigned classless prefix is to find the range of addresses in the address block. With Class A, B, and C networks, you could use some pretty basic rules to find the range (as shown in detail in Chapter 14). With classless prefixes, you must go to a little more effort—but you already know the math!

The math to find the range of addresses in a classless prefix is identical to the math used to find the range of addresses in one subnet. If you got somewhat comfortable with the process to find the range of addresses in a subnet (in Chapter 16, “Analyzing Existing Subnets”), great, you should be ready to do the same math with classless prefixes.

Basically, you take the two key pieces of information from the classless prefix assignment—the classless prefix ID and the prefix length—and treat them like the subnet ID and the subnet mask, respectively. Then do the same math process shown in Chapter 16 to find the range of IP addresses.

Figure N-7 picks up the example of classless prefix 128.66.4.0/22 and shows part of the calculation to find the range of addresses. The figure begins with the lowest number in the range (128.66.4.0) already listed. The figure shows the decimal process shown in Chapter 14, which is as follows:

1. The DDN version of the /22 mask as 255.255.252.0

2. The calculated magic number (256 – 252 = 4)

3. The per-octet logic to convert the number at the low end of the range (128.66.4.0) to the number at the high end of the range (128.66.7.255)

That completes the descriptions of why and how classless prefixes are given to individual enterprises. The rest of the first major section of this appendix gives you a chance to practice the math.

Determine the size of the block (that is, the number of addresses in the block)

Determine the first and last numbers in that range of addresses in that address block

Earlier, Figures N-6 and N-7 and the surrounding text showed an example of how to find these pieces of information. This section summarizes the math processes and gives you some practice questions.

First, the formal process to find the size of a classless prefix is as follows:

Step 1. Find the prefix length (X) of the classless prefix as assigned to the company (from documentation).

Step 2. Calculate the number of host bits as H = 32 – X.

Step 3. The size of the block is 2^H (ignoring reserved values).

The logic is much more obvious from a figure like Figure N-8 as well.

To find the range of addresses in the classless prefix, you just have to repeat the same subnetting math you learned in Chapter 16. To find the range of addresses in the CIDR block, use that same math, starting with the CIDR classless prefix ID and the assigned CIDR prefix length. Summarizing the steps:

Step 1. Treat the assigned CIDR classless prefix as the subnet ID.

Step 2. Treat the assigned CIDR prefix length as the subnet mask.

Step 3. Use any method that you normally use to calculate the subnet ID and subnet broadcast address with these two values to find the lowest and highest numbers in the classless prefix range.

Now it is time to practice. Table N-1 shows several classless prefix assignments. First, calculate the size of the address block. Second, calculate the last number in the range of addresses. Note that the first number in the range is the classless prefix ID, so no calculation is needed.

You can find the answers to these practice problems at the end of this appendix, in the section titled “Answers to Earlier Practice Problems.”

In other words, the engineers still need to create subnets, whether starting with a classful prefix or a classful network.

Part IV of the book already set the stage for many of the big ideas in this chapter, but those chapters assumed a starting point of a single classful network. These next few pages now add CIDR classless prefixes into the mix, but using the same big ideas you already learned back in Part IV of the book.

In particular, think about what you have already learned about existing subnet designs. Back in Chapter 15, “Analyzing Subnet Masks,” the storyline went something like this:

Someone else, before today, either received a public IP network from a numbering authority or chose a private IP network to use for the company. The point is that the starting point was an entire classful network.

Someone else, before today, made a design choice to use one mask, and one mask only, for all subnets.

Someone else, before today, chose a subnetting plan for the company, specifically choosing that one mask to use for all subnets.

Still thinking back to Chapter 15, that chapter discusses how to interpret what those other people created when they made the choices in that list. And that analysis required that we think about the class of network used as a starting point.

Now think about using a classless prefix as a starting point, instead of either a public or a private classful network. The same kinds of things happen. Someone else, before today, asked for and obtained the classless prefix. Someone else already made the design choice to use one subnet mask, and they already chose that mask’s value.

For the next few pages, the text reviews the process of analyzing those existing subnetting choices, first when using a classful network and then when using a classless prefix.

A starting point of a classful network

A single subnet mask used for all subnets

With those assumptions, you can use simple addition and subtraction to find the structure of the subnetting design. You should be given the network number that is subnetted, from which you can derive the class, and remember the size of the network part of the subnet design. You should be given the one subnet mask used. From there, you can easily calculate the size of the subnet and host parts of the design using the details shown in Figure N-9.

In case the variables in the figure are not obvious:

P: The prefix length of the subnet mask per the subnetting design (given)

N: The size of the network part (per classful rules)

S: The size of the subnet field in the subnet design (calculated)

H: The size of the host field in the subnet design (calculated)

Once you calculate the size of the subnet and host parts of the subnetting design, you can find the number of subnets and hosts/subnet with these familiar formulas:

Subnets: 2^S

Hosts/subnet: 2^H – 2

For example, imagine you see an exam question with a design that uses the following:

A public Class B network 128.66.0.0

A single subnet mask for all subnets inside this company: /24

Using these facts, you can analyze the design to determine the following:

N = 16, because 128.66.0.0 is a Class B network

P = 24, as given to you

S = 8, because N + S = P

H = 8, because H = 32 – P

The number of subnets is 256 (2⁸)

The number of hosts/subnets is 254 (2⁸ – 2)

Figure N-10 summarizes those same facts with the familiar structure diagram.

Assuming you have read and practiced the topics in Chapter 15, the above should indeed be a review. If these ideas do not sound familiar, you might want to go back to Chapter 15 for some review and practice.

The short answer: Use the CIDR prefix length—that is, the prefix length as assigned to the company by the RIR or ISP—in the same way you use the length of network part of the address when starting with a classful network. The rest of the process works the same as before.

For example, imagine you see an exam question with a design that uses the following:

A classless prefix of 128.66.32.0 /20

A single subnet mask is used for all subnets inside the company: /24

Next, stop to think about this classless prefix before the company’s network engineer subnets the address block. The classless prefix structure looks like Figure N-11, with a /20 block length and a 12-bit host field. Basically, it is one block of 2¹² addresses, as assigned by an RIR or ISP.

To create subnets, the network engineer who came before us chose a subnet mask with more prefix bits than the classless prefix assigned by the RIR or ISP (/20 in this case). In this example, the engineer chose a /24 subnet mask for all subnets, 4 bits longer than the classless prefix length’s /20 mask. That design choice created a 4-bit subnet field, as shown in Figure N-12. It also left an 8-bit host field.

Summarizing, you can analyze the subnet design with similar logic, whether starting with a classful network or a classless prefix. The one big difference: With classless prefixes, you cannot start with class rules and a network part of 8, 16, or 24 bits. Thankfully, the replacement logic is easy: Just use the classless prefix length as assigned to the company by the RIR or ISP, and then proceed with the same simple addition and subtraction.

First, the key points of the analysis, both when starting from a classful network or a classless prefix, are included in the following list:

Step 1. Use P to represent the subnet mask’s value in prefix form (/P). (P does not represent the classless prefix length assigned by the RIR or ISP.)

Step 2. If subnetting a classful network, set aside N bits, value 8, 16, or 24, based on the class of the network.

Step 3. If subnetting a classless prefix, set aside X bits on the left equal to the classless prefix length as assigned to the company by the RIR or ISP.

Step 4. Calculate the size of the subnet field (S), as P – N (when starting from a classful network), or P – X (when starting from a classless prefix).

Step 5. Calculate the size of the host field (H) as 32 – P.

Step 6. The size of the subnet and host parts of the design tell us how many subnets exist (2^S) and how many hosts exist in each subnet (2^H – 2).

Figure N-13 summarizes those ideas and variables for the case of using CIDR.

Try some practice problems to get used to the process. Treat each line in Table N-2 as a separate practice problem. In each case, the table already supplies the classless prefix length (variable X in the figure) and the subnet mask used for all subnets in the subnet design (variable P). Use that information to calculate the number of subnet and host bits, the resulting number of subnets and hosts/subnets. Refer to Appendix A for a list of the powers of 2.

You can find the answers to these practice problems at the end of this appendix, in the section titled “Answers to Earlier Practice Problems.”

Does all this CIDR stuff change how I calculate the subnet ID, subnet broadcast address, and range of addresses in a subnet?

The answer: Nothing changes at all.

If you see a host’s IP address and subnet mask—the address and mask that the host uses—you already know (from Chapter 16) how to calculate the subnet ID, subnet broadcast address, and range of usable addresses in that subnet. Whether than enterprise happened to be using an entire classful private IP network, classful public IP network, or a classless prefix, those calculations about that one subnet remain the same. Period.

The figure also shows the process flow for what happens with IPv4 addressing inside a company beginning with the original IPv4 addressing plan. Some network engineer chooses a private IP network to use, or receives an assignment of a public IP network or CIDR classless prefix from an RIR or ISP. Then some engineer develops a subnetting plan on paper that tells the company how they will break down that one larger address block into subnets, which are used on individual LAN and WAN links.

Unfortunately, the world does not use a single term for every idea, including the ideas summarized in Figure N-14. As a result, you must be ready to determine whether someone is asking about a private IP network, a public IP network, a CIDR classless prefix, or a subnet, or even if the distinction matters.

First, Table N-3 summarizes the commonly used terms for the three major categories of address blocks.

The problem comes when someone uses one of the more common but more ambiguous terms, like network. For example, compare these three phrases from sample exam questions:

Company 1 uses network 172.16.0.0/16 with a subnetting plan...

Company 1 uses network 128.66.0.0/16 with a subnetting plan...

Company 1 uses network 128.66.4.0/22 with a subnetting plan...

To interpret phrases such as these, with ambiguous words, focus on the numbers instead of the words. Written just above each other, you can see that each phrase uses the word network, but each phrase refers to a different type of address block: a private IP network in the first item, a public IP network in the second, and a CIDR classless prefix in the third. How do you know? You must look at the numbers, not the words.

For instance, 172.16.0.0 is within the RFC 1918 range for private addresses and is one of the reserved private Class B networks, and /16 is the default mask for Class B networks. Clearly that example uses a private IP network. The last item uses a mask of /22, so it cannot be either a private or public IP network because /22 is not a default classful mask.

As another example of ambiguous terms, the term address block has been used more and more to refer to all three categories (private IP networks, public IP networks, and CIDR classless prefixes). Why? Well, each is a set or block of consecutive addresses, so the term address block makes sense to a lot of people.

Similarly, people often use the word subnet to refer to any set or block of addresses, whether an entire classful network, the CIDR classless prefix assigned by an RIR, or a true subnet as created by an enterprise subnetting plan.

By now you know the bigger issues of dealing with CIDR and other IPv4 addressing terminology. The following list summarizes the steps you should take to be ready for this kind of terminology:

Learn the formal and unambiguous alternative terms from Table N-3.

When the words appear to be ambiguous, look at the numbers, and ask yourself the following:

Is it a private network per RFC 1918?

If it is from the public address range, is it using a default mask for a Class A, B, or C network? If so, it might be a public IP network.

If it is from the public address range, is it using a mask other than a Class A, B, or C network? If so, it is likely a CIDR classless prefix.

Be ready for these common terms that refer to any of the three categories (private, public, and CIDR block): network, subnet, prefix, and address block.

If the discussion begins with a host’s IP address/mask or a router’s IP address/mask, then the type of address block (private, public network, CIDR prefix) probably does not matter. In these cases, you probably care most about the subnet ID and the range of addresses in the subnet, and you can find that from the IP address/mask.

classless prefix

classless prefix length

address block

IANA

RIR

ISP

Table N-7 lists the answers to questions posed earlier in Table N-2.