IETF Logo Mail Archive

Re: [dc] Requirement for a method to manage mac address in DC

Mallik Mahalingam <mallik@vmware.com> Thu, 02 February 2012 19:21 UTC

Return-Path: <mallik@vmware.com>
X-Original-To: dc@ietfa.amsl.com
Delivered-To: dc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 954C721F8609 for <dc@ietfa.amsl.com>; Thu, 2 Feb 2012 11:21:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.598
X-Spam-Level:
X-Spam-Status: No, score=-102.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yYPHfldQMdxE for <dc@ietfa.amsl.com>; Thu, 2 Feb 2012 11:21:57 -0800 (PST)
Received: from smtp-outbound-1.vmware.com (smtp-outbound-1.vmware.com [208.91.2.12]) by ietfa.amsl.com (Postfix) with ESMTP id 1EB7E21F85CF for <dc@ietf.org>; Thu, 2 Feb 2012 11:21:57 -0800 (PST)
Received: from sc9-mailhost1.vmware.com (sc9-mailhost1.vmware.com [10.113.161.71]) by smtp-outbound-1.vmware.com (Postfix) with ESMTP id CC75528432; Thu, 2 Feb 2012 11:21:56 -0800 (PST)
Received: from zimbra-prod-mta-2.vmware.com (zimbra-prod-mta-2.vmware.com [10.113.160.174]) by sc9-mailhost1.vmware.com (Postfix) with ESMTP id C610E18427; Thu, 2 Feb 2012 11:21:56 -0800 (PST)
Received: from localhost (localhost.localdomain [127.0.0.1]) by zimbra-prod-mta-2.vmware.com (Postfix) with ESMTP id B1F6B3BB55; Thu, 2 Feb 2012 11:21:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at zimbra-prod-mta-2.vmware.com
Received: from zimbra-prod-mta-2.vmware.com ([127.0.0.1]) by localhost (zimbra-prod-mta-2.vmware.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8F0hA5HsY-Wd; Thu, 2 Feb 2012 11:21:56 -0800 (PST)
Received: from zimbra-prod-mbox-3.vmware.com (zimbra-prod-mbox-3.vmware.com [10.113.160.203]) by zimbra-prod-mta-2.vmware.com (Postfix) with ESMTP id 849713BB40; Thu, 2 Feb 2012 11:21:56 -0800 (PST)
Date: Thu, 02 Feb 2012 11:21:56 -0800
From: Mallik Mahalingam <mallik@vmware.com>
To: Truman Boyes <tboyes@gmail.com>
Message-ID: <1199197439.684939.1328210516419.JavaMail.root@zimbra-prod-mbox-3.vmware.com>
In-Reply-To: <CA+E6a66cxJoX3ahEt8E5uQgGoWoP269QXXpozKxN5k7PRw8J3w@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_684938_1721942573.1328210516418"
X-Originating-IP: [10.113.60.13]
X-Mailer: Zimbra 7.1.3_GA_3374 (ZimbraWebClient - FF3.0 (Linux)/7.1.3_GA_3346)
Cc: Thomas Narten <narten@us.ibm.com>, yu jinghai <yu.jinghai@zte.com.cn>, dc@ietf.org, Lizhong Jin <lizho.jin@gmail.com>
Subject: Re: [dc] Requirement for a method to manage mac address in DC
X-BeenThere: dc@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF Data Center Mailing List <dc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dc>, <mailto:dc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dc>
List-Post: <mailto:dc@ietf.org>
List-Help: <mailto:dc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dc>, <mailto:dc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Feb 2012 19:21:59 -0000

In a virtualized environment MAC addresses are not totally random generated. 
There is some notion of Management-Entity(s)/controller(s) allocating the 
MAC addresses for VMs and ensures that it does not assign the same MAC 
address to two different VMs and this work only within the scope of that 
management/controller administration. There are some exceptions of course 
(a) MAC address exhaustion under a given OUI category (b) manual 
copy/cloning of VMs and powering on them using standalone management 
entities (c) VMs that use MAC address override for legitimate reasons 
[because else things like licensing software breaks]. There are some 
mechanisms in place to address (a), but (b) and (c) requires co-operation at 
the management-entity/controllers. 

Mallik 

----- Original Message -----

From: "Truman Boyes" <tboyes@gmail.com> 
To: "Thomas Narten" <narten@us.ibm.com> 
Cc: "yu jinghai" <yu.jinghai@zte.com.cn>, dc@ietf.org, "Lizhong Jin" <lizho.jin@gmail.com> 
Sent: Thursday, February 2, 2012 10:20:07 AM 
Subject: Re: [dc] Requirement for a method to manage mac address in DC 




On Thu, Feb 2, 2012 at 10:55 AM, Thomas Narten < narten@us.ibm.com > wrote: 



Truman Boyes < tboyes@gmail.com > writes: 

> The L2 separation between multiple tenants is true in most circumstances in 
> DCs, but in commodity computing (ie. VPS, low cost dedicated servers, or 
> co-location) there is a concern on IPv4 address exhaustion or waste, so 
> machines/instances are grouped on single L2 segments. It is possible to 
> have virtual MAC overlaps on these segments. Is this something that this 
> group wishes to evaluate options to solve? 

IMO, this is putting the cart before the horse. 

Can we first get a sense for how big a problem this is in practice and 
whether existing mitigation approaches are not sufficient? 

I.e., is this a real problem causing significant pain today, or are 
their other bigger "pain points" that we should be looking at? 

Thomas 




In the VPS/VM world, I would say it's not a significant issue because there are single entities (Organizations) that manage the MAC addresses. Typically software would just increment the virtual MACs, and this does not require external protocols to ensure uniqueness. If there are many provisioning systems that manage VMs on the same network segment then they will need to keep their database in sync. 


-- 
--truman 


_______________________________________________ 
dc mailing list 
dc@ietf.org 
https://www.ietf.org/mailman/listinfo/dc

v2.23.0 | Report a Bug | By Email