Re: [RAM] Just posted: draft-meyer-lisp-cons-00.txt
Dino Farinacci <dino@cisco.com> Tue, 03 July 2007 00:10 UTC
Return-path: <ram-bounces@iab.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I5Vyc-0005vb-19; Mon, 02 Jul 2007 20:10:42 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I5Vya-0005tR-AT for ram@iab.org; Mon, 02 Jul 2007 20:10:40 -0400
Received: from sj-iport-3-in.cisco.com ([171.71.176.72] helo=sj-iport-3.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1I5VyU-0000Ij-I7 for ram@iab.org; Mon, 02 Jul 2007 20:10:40 -0400
Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-3.cisco.com with ESMTP; 02 Jul 2007 17:10:34 -0700
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Ao8CAEcwiUarR7O6/2dsb2JhbAA
X-IronPort-AV: i="4.16,489,1175497200"; d="scan'208"; a="499562935:sNHT38966244"
Received: from sj-core-3.cisco.com (sj-core-3.cisco.com [171.68.223.137]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id l630AXkP012569; Mon, 2 Jul 2007 17:10:33 -0700
Received: from xbh-sjc-231.amer.cisco.com (xbh-sjc-231.cisco.com [128.107.191.100]) by sj-core-3.cisco.com (8.12.10/8.12.6) with ESMTP id l630AUvx023817; Tue, 3 Jul 2007 00:10:30 GMT
Received: from xfe-sjc-212.amer.cisco.com ([171.70.151.187]) by xbh-sjc-231.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 2 Jul 2007 17:10:30 -0700
Received: from [192.168.0.5] ([10.21.113.235]) by xfe-sjc-212.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 2 Jul 2007 17:10:30 -0700
In-Reply-To: <46860642.2080606@firstpr.com.au>
References: <20070629175414.GA4939@1-4-5.net> <46860642.2080606@firstpr.com.au>
Mime-Version: 1.0 (Apple Message framework v752.3)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <11A5F613-2314-491F-8B76-C42977D18503@cisco.com>
Content-Transfer-Encoding: 7bit
From: Dino Farinacci <dino@cisco.com>
Subject: Re: [RAM] Just posted: draft-meyer-lisp-cons-00.txt
Date: Mon, 02 Jul 2007 17:10:28 -0700
To: Robin Whittle <rw@firstpr.com.au>
X-Mailer: Apple Mail (2.752.3)
X-OriginalArrivalTime: 03 Jul 2007 00:10:30.0472 (UTC) FILETIME=[9112A480:01C7BD06]
DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=9390; t=1183421433; x=1184285433; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dino@cisco.com; z=From:=20Dino=20Farinacci=20<dino@cisco.com> |Subject:=20Re=3A=20[RAM]=20Just=20posted=3A=20draft-meyer-lisp-cons-00.t xt |Sender:=20; bh=V9s/F/A+eTGkT3ce3Q4RFlnm7bAZxCJFAjjPq10lmJM=; b=DibmQtixOroxTZMK8EO6eAWuUceANVaCQq967BTGXUV39xbV49g5diNDdXiKlBYSB8UNE5kz a9VqaSzEqnUX2/oWRiu7xXnSG3rjifjrR9AVJYkCcvqo+ejYvmWyZWIN;
Authentication-Results: sj-dkim-2; header.From=dino@cisco.com; dkim=pass (si g from cisco.com/sjdkim2002 verified; );
X-Spam-Score: 0.0 (/)
X-Scan-Signature: bcd240e64c427d3d3617cfc704e7fd7f
Cc: sbrim@cisco.com, ram@iab.org
X-BeenThere: ram@iab.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Routing and Addressing Mailing List <ram.iab.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/ram>
List-Post: <mailto:ram@iab.org>
List-Help: <mailto:ram-request@iab.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=subscribe>
Errors-To: ram-bounces@iab.org
> Hi Dave, > > I read your I-D and have some questions, observations, suggestions > etc. Thanks for the quick turnaround Robin. > In the Map Reply message, I think there needs to be some information > on how long to cache the results for. That is what the "Record TTL" is for. Look again at the packet format section. > Likewise, in the "Unreachable" message. Not clear at this point that a Record TTL is needed. It all depends on if the CAR/ITR will cache a negative entry. We'll know more when we get the implementation done and start testing CONS. > I understand the "Unreachable" message means that the EID in the > request > is not within any prefix which any CAR known to the system is > currently > authoritative for. Ideally, the requester would be told to cache this Or not in the CONS database at all. > result for some period of time. Also, ideally, the system would be > smart enough to know what the nearest addresses above and below this > were for which there was a CAR with authoritative mapping information. > There is no mechanism for this in your proposal, as far as I can see, > but I think the "Unreachable" message should contain something like: We could do this if the CARs are configured with the same mask- length. But again, we need deployment experience before just adding stuff like this. > The system has no CARs which have mapping information for > this address, or for addresses below it to XXX inclusive, or > for addresses above it to YYY inclusive. > > That will save the ITRs and caching CARs from bugging any CDRs in the > near future with mapping requests for nearby addresses. Right, understand your suggestion. > Perhaps this "Unreachable" reply could be renamed, because it does not > imply anything about reachability of any host which might be using a > mapped address - just that while an ITR enquired about this address > because it assumed it might be part of the LISP system, that as far as > the system knows at present, the address is not mapped by the LISP > system. Noted. > I am not sure at what point such a reply would be generated. I > understand it should be generated when a CDR gets a request and then > decides it couldn't pass it on to another CDR. (Sect 5.2 para 5.). > But > how did the request get that far, unless this is the very first CDR? It got that far because there was a more-specific in a CAR that was aggregated and the CDR has the aggregate and matches the request EID against it. > I understand a CAR sending the request on to the one or more CDRs it > connects to. Maybe that first CDR (or multiple such CARs) would > find it > had no entry in its EID-prefix database, so it has no parent or > sibling > CDR to send the request on to - so the first CDR would always be > the one > which generates this "Unreachable" reply. We believe that the Map-Requests will go all the way to an aggregating/replying CAR since we are proposing aggressive aggregation. > What if a CAR is authoritative for mapping the EID range: > > 11.0.0.0 > to 11.0.255.255 > > but there is a whole range: > > 11.0.27.3 > to 11.0.27.127 > > which currently does not map to any RLOC. There would probably be > many > such ranges with no current mapping. That is right. And the replying CAR will reply with an Unreachable. > Let's say this CAR gets a request for the mapping of an EID > 11.0.27.16. > Not only should it reply that there is no mapping, with a cache time, > but I think it should also include in the reply something to the > effect: > > "The requested EID is part of a range 11.0.27.3 to 11.0.27.127 for > which there is no mapping at present." > > Then the requesting ITR and its CAR(s) can cache this and stop bugging > the system with further requests when it gets a packet addressed to > other addresses in this range, for as long as the cache time says so. The only way to solve this is to hole-punch the aggregate with a more- specific. And we know what that does to the Internet. ;-) So we are not going to do this. > I don't understand how you make each CAR's data become replicated > somewhere else, so the system still works when the CAR is down. I was > looking in your I-D to see how you implemented something like what is > done with nameservers, with one being the master and others slaves, > but > all being authoritative to answer queries. We don't replicate it everywhere. The mappings stay at the level-0 CAR level. And the Requests hunt for the mapping by following an aggregated and reaggregated path in a strict hierarchy. > I don't understand why the devices which are authoritative for mapping > information for a particular prefix of EID space also have to be the > first point of call for requests from ITRs, other perhaps than your > plan > of making something like a three layer model for the whole system: The functionality of a Requesting-CAR and a Replying-CAR can be separated. And a Replying CAR does not need to peer with ITRs. We present it this way to show you that both are at level-0 of the hierarchy. > 1 - Caching devices which one or more ITRs talk to, and which > interface > to the CDR core by one or more links to CDRs. This is a CAR that sends Requests. We have received comments from others about this and in the next rev we will call them "Requesting CARs" and "Replying CARs" to differentiate the functionality. And, of course, the 2 pieces of functionality can be co-located in the same device. > In two places your I-D states: > > This case could arise when source-site is LISP-enabled (i.e., > there is an ITR deployed), . . . > > This confirms my original understanding that all LISP variants require > an ITR in the edge network of any host which will successfully send a > packet to a host with EID address. It doesn't require it. We envision it will be deployed this way. An ITR could go into a PE device at an ISP that is serving multiple customer connections from that device. > When I wrote of Ivip (originally ViP) on 15 June, the key difference > from LISP is that the mapped addresses (EIDs in LISP terminology) are > part of advertised BGP prefixes, and so packets with destination > addresses matching these prefixes will be forwarded out of edge > networks > which lack ITRs, ultimately to be encapsulated by one of the many Ivip > ITRs in the core of the Net. This makes Ivip much more easy to > incrementally deploy, since all senders will have their packets sent, > whereas with LISP, only those senders in edge networks with ITRs will > have their packets sent. And I have mentioned to you that you don't want PI addresses to be routeable and hence "BGP prefixes". So what you propose can work for PA addresses but if you apply them to PI prefixes, then the routing table cannot get smaller. > I have asked for clarification of what LISP 1.5 involves, since Dino > stated that what I was proposing was in fact LISP 1.5. So far I have > had no clarification or examples. Can you give any explanation of > what > LISP 1.5 entails, regarding the location of ITRs inside or outside > edge > networks, and whether prefixes for which the system does EID-to-RLOC > mapping are routed by the current BGP system? LISP 1.5 entails having a separate topology. Either tunneled or physical. You can run BGP on it. The namespace advertise in this instance of BGP are EID-prefixes. Think of it as another VRF on the Internet. The LISP probe packets (packets that are encapsulated by an ITR with the inner DA equal to the outer DA) are sent on this topology so the data can be used as a Request for the ETR to return a data-triggered mapping. Think of a data-triggered mapping an instance of LISP 1.5. Think of a control-plane mapping an instance of LISP 3. CONS is an example of a LISP 3 variant. So is NERD. > Page 10: > > Each CAR will also have a /32 EID assigned to it from each of its > configured blocks. This /32 EID is used in a Map-Request > message so > a replier can get the Map-Reply back to this requesting CAR in the > event that no CAR has been configured with the the requested EID > block. This case could arise when source-site is LISP-enabled > (i.e., > there is an ITR deployed), but the destination-site has not > deployed > LISP yet so there is no ETR. This is old text we forgot to remove. We will fix it. The design passes an originator prefix which is the one the CAR is aggregating. So we don't need to assign a /32 EID to a CAR. > This text just seems to confirm my understanding of this IP > address, but > doesn't help me understand why such a mechanism is needed or desired. Just a bug in the spec. Sorry for the confusion. > Finally, when I read the title of the I-D "... Content Distribution > Overlay ..." I thought this would be for a fancy use of the LISP > network > to efficiently transport video, sound etc. multicast or on-demand > media > files, which are widely referred to as "content" by those who own the > pipes and packaging systems. Well we had to use the name CONS. ;-) Dino _______________________________________________ RAM mailing list RAM@iab.org https://www1.ietf.org/mailman/listinfo/ram
- Re: [RAM] Just posted: draft-meyer-lisp-cons-00.t… Robin Whittle
- [RAM] Just posted: draft-meyer-lisp-cons-00.txt David Meyer
- Re: [RAM] Just posted: draft-meyer-lisp-cons-00.t… Dino Farinacci