Decide on Organization Supernet CIDR Ranges
Problemβ
-
We need to record all existing and provisioned CIDR ranges as a system of record, as well as any additional context as necessary (E.g. what the CIDRs are used for).
-
We need to decide on the all-encompassing CIDR for this organization for contiguous networks. Itβs not a requirement, but a strong recommendation.
-
All VPCs subnets should be carved out of this supernet. Decide on AWS Account VPC Subnet CIDR Strategy
Solutionβ
-
Document the CIDR ranges provisioned for all the accounts in ADR so we know what is in use today
-
Add any other known CIDR ranges (e.g. from other accounts not under this AWS organization)
-
Take into account any multi-cloud, multi-region strategies.
Exampleβ
--img src="-assets-refarch-e8e9b129-c0b7-4723-a1c6-bf5e5811eb6c-media-blob-url-true-id-66a8" />
Pro Tipβ
Use the https://tidalmigrations.com/subnet-builder/ with an additional overlay from CleanshotX.
--img src="-assets-refarch-image-20211025-172520.png" />