IP Address Manager (IPAM) provides global IP address management. When you create an IPAM, a default public scope and a default private scope are automatically created. You can also create custom private scopes based on your network planning. Each scope is an independent address domain where you can create address pools to manage and allocate IP address resources.
Create an IPAM
Log on to the IPAM console.
In the top menu bar, select the region where you want to create the IPAM.
On the IPAM page, click Create IPAM and configure the following parameters. You can use the default values for other parameters or modify them as needed.
Configuration
Description
Effective Region
Select the regions where the IPAM is effective.
You must set at least one effective region when you create an IPAM. The effective regions must include the managed region of the IPAM.
The managed region is the region where the current IPAM is located. It cannot be deleted.
Create an IPAM scope
Before you create a scope, note the following:
When you create an IPAM, a default public scope and a default private scope are automatically created. These scopes cannot be deleted.
The default public scope supports only Alibaba Cloud default IPv6 address ranges for network planning and IPv6 resource allocation.
Currently, you can create only custom private scopes. These scopes support only the allocation and management of IPv4 address ranges.
CIDR blocks of address pools within the same IPAM scope cannot conflict or overlap. CIDR blocks of address pools in different IPAM scopes can overlap.
Log on to the IPAM console.
In the top menu bar, select the region where you want to create the scope. In the navigation pane on the left, click IPAM Scope.
On the IPAM Scope page, click Create Scope and configure the following parameters. You can use the default values for other parameters or modify them as needed.
Configuration
Description
IPAM
The system automatically displays the IPAM to which the scope belongs.
Scope Type
The system automatically displays the scope type. Only the Private type is supported.
Resource monitoring
IPAM provides comprehensive IP address monitoring capabilities. These capabilities include continuous monitoring of IP address usage, compliance checks for address segments, and IP address conflict detection. This lets you promptly scale out or resolve address conflicts, which improves IP address usage and ensures network stability and security.
On the IPAM Scope page, click the ID of the target IPAM scope instance or click Manage in the Operation column. You can then view information about resource CIDR blocks, management status, overlap status, and compliance status within the IPAM scope.
Resource Overview: Click the Overview tab to view statistics about resource CIDR blocks, management status, overlap status, and compliance status in the IPAM scope, displayed in a doughnut chart.
Resource Management: Click the Resource Management tab to view a list of information about resource types, CIDR blocks, management status, compliance status, overlap status, and IP address usage in the IPAM scope. If a network segment overlaps, you can click View under Overlap Status to view the specific instance that conflicts with the current resource.
VPC Resource: Click the ID of the target VPC instance to view information about VPC CIDR block allocation, overlap status, and VPC IP address usage in the IPAM scope.
VSwitch Resource: Click the ID of the target vSwitch instance to view the vSwitch CIDR block usage, IP address usage, and total IP address count in the IPAM scope.
Address Pool: Click the Address Pool tab to view information such as the effective region, CIDR block, and IP version of the address pool.
Monitoring Chart: Click the Monitoring Chart tab to view a line chart that shows statistics over time for the management status, overlap status, compliance status, number of CIDR blocks, VPC usage, and vSwitch usage of monitored resources in the IPAM scope.
Resource discovery
Resource discovery is an IPAM component that helps you automatically detect and track IP address usage in your network environment. It discovers and manages VPC and vSwitch CIDR block resources within the specified Effective Regions, including resources that are not allocated by IPAM. When you create an IPAM, a resource discovery is created by default and associated with it. You can also create a resource discovery independent of an IPAM.
1. The effective regions of a default resource discovery are the same as those of the IPAM and cannot be modified. You can delete a default resource discovery only by deleting the IPAM.
2. Resource discovery currently supports monitoring of the following resource types: VPC and vSwitch CIDR blocks.
3. Resource discovery is updated every 5 minutes.
Log on to the IPAM console.
In the top menu bar, select the region where you want to create the resource discovery. In the navigation pane on the left, click Resource Discovery.
On the Resource Discovery page, click Create Resource Discovery and configure the following parameters. You can use the default values for other parameters or modify them as needed.
Effective Region: Select the regions where the resource discovery is effective. When you create a resource discovery, you must include the managed region of the current resource discovery. You can add other regions as needed.
For a resource discovery, the managed region is the region where the creation request is made. The effective regions include the managed region and any other specified regions.
After the resource discovery is created, you can click its instance ID to open the details page. On the Discovered Resources tab, you can view the VPC and vSwitch CIDR block resources within the Effective Regions.
In a multi-account enterprise environment, network administrators must centrally plan, allocate, and manage resources. A business account can share a created resource discovery with a network administrator for centralized address resource management. This prevents business accounts from using unplanned network segments to create resources, which helps avoid address conflicts and ensures business stability.
More operations
Log on to the IPAM console.
In the top menu bar, select the region of the target IPAM.
You can perform the following operations as needed.
Add or delete an effective region of an IPAM
On the IPAM page, find the target IPAM and add an effective region in one of the following ways.
Click the instance ID. On the Effective Region tab, click Add Effective Region.
In the Operation column, click Manage. On the Effective Region tab, click Add Effective Region.
In the Operation column, choose
> Add Effective Region.
To delete an effective region, on the Effective Region tab, find the effective region that you want to delete and click Delete in the Operation column.
Before you delete an effective region, note the following:
The managed region is the region where the current IPAM is located. It cannot be deleted.
All address pools in the region are deleted. For more information about how to delete an address pool, see Create and manage IPAM address pools.
Add or delete a private IPAM scope
Find the target IPAM, and in the Operation column, choose
> Add Scope.In the Create Scope dialog box, configure the parameters to create a private scope. For more information about the parameters, see Create an IPAM scope.
To delete a scope, find the target IPAM scope and click Delete in the Operation column.
Before you delete an IPAM scope, note the following:
The two IPAM scopes created by default cannot be deleted.
All address pools in the IPAM scope are deleted. For more information about how to delete an address pool, see Delete an IPAM address pool.
Delete an IPAM
References
For more information about the features, limits, and billing of IPAM, see IP Address Manager (IPAM).
To create and manage address pools in a private IPAM scope, see Create and manage IPAM address pools.