Universal DDI Tokens

Documentation page for Universal DDI Licensing is here.

Note. The Network Address and Broadcast address are marked as reservations and treated as Active IP addresses for Token calculations. e.g. if you create subnet 10.10.10.0/24, then 10.10.10.0 and 10.10.10.255 are created as reservations. The exception is /31 and /32 subnets. These do not include the reservations for network and broadcast.

Public cloud providers also restrict certain IP addresses in subnets.

(VNet Doc)

Azure subnets are specific to a region (not an availability zone).

• IPv4 Smallest subnet is /29
• IPv4 Largest subnet is /2
• First four addresses (including Network address) are reserved
• Last address (Broadcast address) is reserved
• 10.0.0.0/24
  • 10.0.0.0: Network address.
  • 10.0.0.1: Default gateway address.
  • 10.0.0.2: Azure DNS IP addresses.
  • 10.0.0.3: Azure DNS IP addresses.
  • 10.0.0.255: Network broadcast address.

• IPv6 subnets can only be /64

(VPC Doc)

AWS subnets are specific to a availability zone (not a region).

• IPv4 Smallest subnet is /16
• IPv4 Largest subnet is /28
• First four addresses (including Network address) are reserved
• Last address (Broadcast address) is reserved
• 10.0.0.0/24
  • 10.0.0.0: Network address.
  • 10.0.0.1: Default gateway address.
  • 10.0.0.2: AWS DNS IP addresses. For VPCs with multiple CIDR blocks, the IP address of the DNS server is located in the primary CIDR. We also reserve the base of each subnet range plus two for all CIDR blocks in the VPC. For more information, see Amazon DNS server.
  • 10.0.0.3: Reserved by AWS for future use.
  • 10.0.0.255: Network broadcast address. We do not support broadcast in a VPC, therefore we reserve this address.

• Possible IPv6 netmask lengths are between /44 and /64 in increments of /4.
• The first four IPv6 addresses and the last IPv6 address in each subnet CIDR block are not available for your use, and they cannot be assigned to an EC2 instance. For example, in a subnet with CIDR block 2001:db8:1234:1a00/64, the following five IP addresses are reserved:
• 2001:db8:1234:1a00/64
  • 2001:db8:1234:1a00::
  • 2001:db8:1234:1a00::1: Reserved by AWS for the VPC router.
  • 2001:db8:1234:1a00::2
  • 2001:db8:1234:1a00::3
  • 2001:db8:1234:1a00:ffff:ffff:ffff:ffff
• In addition to the IP address reserved by AWS for the VPC router in the example above, the following IPv6 addresses are reserved for the default VPC router:
  • A link-local IPv6 address in the FE80::/10 range generated using EUI-64. For more information about link-local addresses, see Link-local address.
  • The link-local IPv6 address FE80:ec2::1

(Subnet Doc)

GCP subnets are specific to a region (not an availability zone).

• IPv4 Smallest subnet is /29
• IPv4 Largest subnet is /4 (Google recommend not going larger than /8)
• First two addresses (including Network address) are reserved
• Last two address (Broadcast address) are reserved
• 10.0.0.0/24
  • 10.0.0.0: Network address.
  • 10.0.0.1: Default gateway address.
  • 10.0.0.254: This range is reserved by Google Cloud for potential future use.
  • 10.0.0.255: Network broadcast address.
• Following Subnets are Prohibited
  • Public IPs for Google APIs and Services, including Google Cloud Networks. See here.
  • 199.36.153.4/30 - Private Google Access-specific virtual IP addresses
  • 199.36.153.8/30 - Private Google Access-specific virtual IP addresses
  • 0.0.0.0/8 - Current (local) network RFC 1122
  • 127.0.0.0/8 - Local host RFC 1122
  • 169.254.0.0/16 - Link-local RFC 3927
  • 224.0.0.0/4 - Multicast (Class D) RFC 5771
  • 255.255.255.255/32 - Limited broadcast destination address RFC 8190 and RFC 919

Subnets Automatically Created in GCP - See here.

• VPC must be /48
• Subnet must be /64
• VM instance must be /96
• The first and last /96 range of a subnet's internal /64 range cannot be specified manually because Google Cloud reserves the first and last /96 range of a subnet's internal /64 range for system use. You can manually specify any other valid /96 IPv6 range from the subnet's internal /64 range to be assigned to your VM network interfaces.

(VNet Doc)

Oracle subnets can be specific to availability domain (AD) or they can span the region.

• IPv4 Smallest subnet is /29
• IPv4 Largest subnet is /2
• First two addresses (including Network address) are reserved
• Last address (Broadcast address) is reserved
• 10.0.0.0/24
  • 10.0.0.0: Network address.
  • 10.0.0.1: Default gateway address.
  • 10.0.0.255: Network broadcast address.

• IPv6 subnets can only be /64