Renumber PXE LAN from 10.9.100.0/24 to 172.16.9.0/24

Single-site bay-stuck issue at WJ: GE Intune Report IP script filters
Get-NetIPAddress on StartsWith("10.") and posts everything matching
to the GE Tines webhook. Bays at WJ get the PXE LAN 10.9.100.x IP
captured and reported -> GE backend tags bays as on a non-corp 10.x
subnet -> dynamic group eligibility for SFLD policy never matches.
Other GE sites work because their PXE LANs aren't on 10.x at all.

Renumber PXE LAN to RFC1918 172.16.9.0/24 so the GE filter naturally
skips wired PXE addresses without any disable-NIC dance.

Server-side already in flight (netplan dual-bound, dnsmasq scope +
boot URL repointed, blancco preferences + grub.cfg + iPXE GetPxeScript
all sed'd to 172.16.9.1). This commit is the playbook / scripts /
docs side: 109 hits across 35 files sed'd in one shot.

After this lands + boot.wim is rebuilt + bays renumber off DHCP,
the 10.9.100.1 binding will be dropped from netplan as the final
cleanup step.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

docs/SITE-CUSTOMIZATION.md

@@ -22,9 +22,9 @@ contribute a `config/sites/<sitename>.yaml` template back to the repo.
 
 | Value             | Default              | Where it lives                                                                 |
 |-------------------|----------------------|--------------------------------------------------------------------------------|
-| PXE server IP     | 10.9.100.1           | `playbook/pxe_server_setup.yml` (dnsmasq config, iPXE script, samba conf, webapp env), `playbook/startnet.cmd` (mount paths), `boot-tools/blancco/grub-blancco.cfg` (TFTP/HTTP URLs) |
-| PXE subnet        | 10.9.100.0/24        | Same as above, plus `playbook/pxe_server_setup.yml` (UFW rules)                |
-| DHCP range        | 10.9.100.10-100      | `playbook/pxe_server_setup.yml` (dnsmasq config)                               |
+| PXE server IP     | 172.16.9.1           | `playbook/pxe_server_setup.yml` (dnsmasq config, iPXE script, samba conf, webapp env), `playbook/startnet.cmd` (mount paths), `boot-tools/blancco/grub-blancco.cfg` (TFTP/HTTP URLs) |
+| PXE subnet        | 172.16.9.0/24        | Same as above, plus `playbook/pxe_server_setup.yml` (UFW rules)                |
+| DHCP range        | 172.16.9.10-100      | `playbook/pxe_server_setup.yml` (dnsmasq config)                               |
 | Hostname          | pxeserver            | `autoinstall/user-data` (identity.hostname)                                    |
 
 ### Identity and credentials
@@ -143,7 +143,7 @@ Blob storage account.
 ### Image-upload paths on Windows
 
 `scripts/Upload-Image.ps1` defaults to:
-- `\\10.9.100.1\image-upload` as the destination
+- `\\172.16.9.1\image-upload` as the destination
 - `C:\ProgramData\GEAerospace\MediaCreator\Cache\` as the source
 
 Update both for a different site.
@@ -156,10 +156,10 @@ A site config file should drive substitution at build time. Proposed schema:
 # config/sites/<sitename>.yaml
 site:
   name: westjeff
-  pxe_server_ip: 10.9.100.1
-  pxe_subnet: 10.9.100.0/24
-  dhcp_range_start: 10.9.100.10
-  dhcp_range_end: 10.9.100.100
+  pxe_server_ip: 172.16.9.1
+  pxe_subnet: 172.16.9.0/24
+  dhcp_range_start: 172.16.9.10
+  dhcp_range_end: 172.16.9.100
   hostname: pxeserver
 
 credentials: