我的 ASN 之旅系列 (2024)
My ASN Journey series (2024)

原始链接: https://www.animmouse.com/p/my-asn-journey/

本指南探讨了获取自主系统号(ASN)和 IP 地址段的过程——这通常是大企业才会进行的项目,但目前个人也已越来越容易实现。 **为什么要这样做?** 拥有自己的 IP 空间可以摆脱 ISP 的限制,例如 IPv6 支持不足或 CGNAT 带来的麻烦(这可能导致 IP 被列入黑名单及频繁出现验证码)。它实际上是一个高信誉的私有网络,能让你更好地掌控自己的数字身份。 **权衡与代价** - **隐私:** 与域名注册不同,此处没有“WHOIS 隐私保护”。你的个人信息将被公开关联到你的 ASN。 - **复杂性:** 配置错误的 BGP 可能会干扰全球路由表,且维护这些系统需要深厚的网络专业知识。 - **成本:** 你需要预留年度 RIPE 注册费用,以及托管 BGP 会话所需的专用 VPS 基础设施成本。 本系列项目提供了一份详尽的路线图,分步介绍了如何搭建 BGP、管理 IPv6 前缀以及与互联网交换中心(IXP)进行对等互联。建议具备扎实网络基础,并已准备好投入必要技术和行政成本的用户参考。

Hacker News 最新 | 往日 | 评论 | 提问 | 展示 | 招聘 | 提交 登录 我的 ASN 之旅系列 (2024) (animmouse.com) 6 分,由 antonalekseev 发布于 1 小时前 | 隐藏 | 往日 | 收藏 | 1 条评论 帮助 antonalekseev 1 小时前 [–] 一份关于获取你自己的 ASN 和 IP 地址的综合新手指南 回复 准则 | 常见问题 | 列表 | API | 安全 | 法律 | 申请 YC | 联系 搜索:
相关文章

原文

Hello, and welcome to my ASN journey, where we explore BGP, and getting our own IP address.

People are buying domain names, which is part of what we called “internet resources.”
If an ordinary people like me can buy domain names, then what about owning an IP address?
Why can’t ordinary people buy an IP address just like domain names?
Most of the IP address that exist today are owned by the big business and big government.

There are still no concrete tutorials on how to set up BGP from the ground up, so I created my own.

List of my ASN/BGP tutorials

  1. My ASN Journey: Acquiring your own ASN
  2. My ASN Journey: Setting up your own ASN
  3. My ASN Journey: Configuring BGP on VPS
  4. My ASN Journey: Bring home the IPv6 via SOCKS5
  5. My ASN Journey: Bring home the IPv6 via WireGuard
  6. My ASN Journey: Joining an Internet Exchange (IXP)
  7. My ASN Journey: Getting more upstreams
  8. My ASN Journey: Setting up IP geolocation
  9. My ASN Journey: Acquiring more IPv6 prefixes (TBD)
  10. My ASN Journey: Setting up RPKI
  11. My ASN Journey: Setting up reverse DNS (rDNS) (TBD)
  12. My ASN Journey: Free IPv6 transit with Hurricane Electric (TBD)

Rationale

Getting your own IP address has several advantages.

  1. Your ISP does not have IPv6, and you want to have IPv6.
    By getting your own ASN and IPv6, you get IPv6 connectivity.
  2. Your ISP uses CGNAT, which shares a single IPv4 address across their customers.
    What if someone is abusive? Then that IPv4 address gets banned, and you are also banned.
    Since you are the only one who uses that IPv6 prefix, then your IPv6 prefix is tagged clean.
  3. This is basically a VPN, but your IP address is not tagged as a proxy, allowing you to edit on Wikipedia or watch Netflix for example.
  4. No more CAPTCHAs since you are the only one using your own IPv6 address.

Limitations

Why you shouldn’t get your own ASN and IP address.

  1. Self-doxxing. Unlike domain names, ASN registration has no “domain privacy,” and your personal information needs to be published to the internet.
    Unless you have registered a company, RIPE NCC requires verifying your ID.
    Every website you visit using your own IP address has a name tag to you.
  2. You can mess up the DFZ. Messing up the default-free zone because of BGP misconfiguration will make network engineers get mad at you.
  3. You contribute to the growth of the Internet routing table. Remember 512K day? Brace yourself, 768K day is coming.

Costs and expenses

  • ASN: £15 one-off fee from Lagrange Cloud.
  • RIPE ASN Fee: £54.99 per year.
  • BGP IPv6 only VPS: 5 CHF per 3 months from iFog GmbH.

Optional expenses

  • FogIXP for BGP IPv6 only VPS: Additional 3 CHF per 3 months from iFog GmbH.
  • BGP VPS with ONIX: $3 per month from HYEHOST.

FAQs

  1. Do I need to have an ASN to get and announce my own IP address?
    No, you can ask your provider to announce the IPs for you via a private ASN, but I have not seen a provider that is cheap enough to do BYOIP without an ASN. Getting your own ASN is the best option.

  2. Is it possible to get your own IPv4 address?
    Yes, but make sure you have deep pockets ready, this is why this tutorial will focus more about IPv6.

  3. Difference between IP transit and peering?

    • IP transit: You will get all prefixes on the internet or a default route.
    • Peering: You will get only prefixes for that particular AS and their downstream AS.
      • Semi-transit: When a network became so large like Hurricane Electric that peering with them allows you to access almost half of the world’s internet.
  4. Should I play on dn42 first before going inside the BGP rabbit hole?
    You can, but not a requirement. But some knowledge about networking and setting up a VPS is definitely needed.

  5. If I brought an IPv6 only VPS, how can I access it if my ISP does not have IPv6?
    Use Cloudflare WARP. Or better yet setup Cloudflare WARP Connector on your router.

Other useful resources

联系我们 contact @ memedata.com