Re: [rrg] IRON-RANGER scalability and support for packets from non-upgraded networks
Robin Whittle <rw@firstpr.com.au> Fri, 12 March 2010 00:17 UTC
Return-Path: <rw@firstpr.com.au>
X-Original-To: rrg@core3.amsl.com
Delivered-To: rrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4FA4B3A6849 for <rrg@core3.amsl.com>; Thu, 11 Mar 2010 16:17:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.802
X-Spam-Level:
X-Spam-Status: No, score=-1.802 tagged_above=-999 required=5 tests=[AWL=0.093, BAYES_00=-2.599, HELO_EQ_AU=0.377, HOST_EQ_AU=0.327]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q3Eh6sg6YZZY for <rrg@core3.amsl.com>; Thu, 11 Mar 2010 16:17:43 -0800 (PST)
Received: from gair.firstpr.com.au (gair.firstpr.com.au [150.101.162.123]) by core3.amsl.com (Postfix) with ESMTP id B4E3D3A6910 for <rrg@irtf.org>; Thu, 11 Mar 2010 16:17:36 -0800 (PST)
Received: from [10.0.0.6] (wira.firstpr.com.au [10.0.0.6]) by gair.firstpr.com.au (Postfix) with ESMTP id E08F2175AED; Fri, 12 Mar 2010 11:17:37 +1100 (EST)
Message-ID: <4B998826.9070104@firstpr.com.au>
Date: Fri, 12 Mar 2010 11:17:42 +1100
From: Robin Whittle <rw@firstpr.com.au>
Organization: First Principles
User-Agent: Thunderbird 2.0.0.23 (Windows/20090812)
MIME-Version: 1.0
To: RRG <rrg@irtf.org>
References: <C7B93DF3.4F45%tony.li@tony.li> <4B94617E.1010104@firstpr.com.au> <E1829B60731D1740BB7A0626B4FAF0A649511933 94@XCH-NW-01V.nw.nos.boeing.com> <4B953EA5.4090707@firstpr.com.au> <E1829B60731D1740BB7A0626B4FAF0A649511934CF@XCH-NW-01V.nw.nos.boeing.com> <4B97016B.5050506@firstpr.com.au> <E1829B60731D1740BB7A0626B4FAF0A6495119413D@XCH-NW-01V.nw.nos.boeing.com>
In-Reply-To: <E1829B60731D1740BB7A0626B4FAF0A6495119413D@XCH-NW-01V.nw.nos.boeing.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Subject: Re: [rrg] IRON-RANGER scalability and support for packets from non-upgraded networks
X-BeenThere: rrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IRTF Routing Research Group <rrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/rrg>, <mailto:rrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/rrg>
List-Post: <mailto:rrg@irtf.org>
List-Help: <mailto:rrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/rrg>, <mailto:rrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Mar 2010 00:17:44 -0000
Hi Fred, Thanks for this: > In catch-up mode, your suggestion of a need for more > discussion of scaling properties is a good one, and > something I think that can be accommodated in the > next IRON update. Also, in "Re: [rrg] Why won't supporters of Loc/ID Separation ..." you wrote: > IRON-RANGER used to speak of using IPv6 neighbour discovery > as the means for locator liveness testing, dissemination > of routing information, secure redirection, etc. However, > the VET and SEAL mechanisms are being revised to instead > use a different mechanism called the SEAL Control Message > Protocol (SCMP) for tunnel endpoint negotiations that occur > *within* the tunnel sublayer and are therefore not visible > to either the outer IP protocol nor the inner network layer > protocol. Hence, the inner network layer protocol could be > anything, including IPv4, IPv6, OSI CLNP, or any other network > layer protocol that is eligible for encapsulation in IP. OK. I hope you will be able to explain these things not just in terms of high-level concepts, but to give examples of how the whole thing would actually work on a large scale. For instance, how many IRON routers are there in an IPv4 I-R system, and how many individual EID prefixes? Then, how do these IRON routers, for each of these EID prefixes continually and repeatedly (I guess every 10 minutes or less) securely inform a given number of VP routers they are the router, or one of the routers, to which packets matching a given EID prefix should be tunneled. Since there could be multiple VP routers for a given VP, and the IRON routers don't and (I think) can't know where they are, how does this process work securely and scalably? If the VP routers act like DITRs or PTRs by advertising their VP in the DFZ, then in order to make them work well in this respect - to generally minimise the extra path length taken to and from them compared to the path from the sending host to the proper IRON router - I think you need at least a dozen of them. This directly drives the scaling problems in the process just mentioned where the IRON routers continually register each of their EID prefixes with the dozen or so VP routers which cover that EID prefix. Your IDs tend to be very high level and tend to specify external RFCs for how you do important functions in I-R. Yet those RFCs say nothing about I-R itself. I think your I-Ds generally need more material telling the reader specifically how you use these processes in I-R. Then, for each such process, have a detailed discussion with real worst-case numbers to show that it is scalable at every level for some worst-case numbers of EID prefixes, IRON routers etc. - as well as secure against various kinds of attack. >> 8 - Apart from Ivip's Modified Header Forwarding arrangements, >> CES architectures involve encapsulation for tunneling >> packets from ITRs to ETRs (IRON-RANGER doesn't have ITRs and >> ETRs, but it still requires encapsulated tunneling). There >> are some problems with this - but they do not appear to be >> prohibitive. > > IRON-RANGER calls them as ITEs/ETEs because it is possible > to also configure a tunnel endpoint on a host and not just > on routers. In terms of routers, the IRON-RANGER ITE/ETE > are exactly equivalent to what the other proposals are > calling as ITR/ETR. OK. In Ivip the sending host can have in "ITR" function - though it is not a router and this "ITR" function doesn't advertise routes to the MABs (Mapped Address Blocks) inside the host. It does however only handle packets sent by the host's stack which have destination addresses matching any of the MABs. I am sticking with "ITR" and "ETR" in Ivip, to remain compatible with LISP - and because I think they are easier to pronounce than "ITE" and "ETE". - Robin
- [rrg] FW: I-D Action:draft-irtf-rrg-recommendatio… Tony Li
- [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] FW: I-D Action:draft-irtf-rrg-recommend… Robin Whittle
- Re: [rrg] Recommendation and what happens next Tony Li
- Re: [rrg] FW: I-D Action:draft-irtf-rrg-recommend… Tony Li
- Re: [rrg] FW: I-D Action:draft-irtf-rrg-recommend… Robin Whittle
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] FW: I-D Action:draft-irtf-rrg-recommend… Tony Li
- Re: [rrg] Recommendation and what happens next Tony Li
- Re: [rrg] Recommendation and what happens next Brian E Carpenter
- Re: [rrg] Recommendation and what happens next Tony Li
- [rrg] Why won't supporters of Loc/ID Separation (… Robin Whittle
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] Why won't supporters of Loc/ID Separati… Tony Li
- Re: [rrg] Recommendation and what happens next Tony Li
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] Why won't supporters of Loc/ID Separati… Robin Whittle
- Re: [rrg] Recommendation and what happens next Russ White
- Re: [rrg] Recommendation and what happens next Templin, Fred L
- Re: [rrg] Recommendation and what happens next Templin, Fred L
- [rrg] IRON-RANGER scalability and support for pac… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] Recommendation and what happens next Tony Li
- Re: [rrg] Why won't supporters of Loc/ID Separati… Tony Li
- Re: [rrg] Recommendation and what happens next Brian E Carpenter
- Re: [rrg] Recommendation and what happens next Scott Brim
- Re: [rrg] Recommendation and what happens next Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] Recommendation and what happens next Tony Li
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] Recommendation and what happens next Robin Whittle
- Re: [rrg] Recommendation and what happens next Scott Brim
- Re: [rrg] Why won't supporters of Loc/ID Separati… Scott Brim
- Re: [rrg] Why won't supporters of Loc/ID Separati… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] Recommendation and what happens next Templin, Fred L
- Re: [rrg] Why won't supporters of Loc/ID Separati… Templin, Fred L
- Re: [rrg] Recommendation and what happens next Scott Brim
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- Re: [rrg] IRON-RANGER scalability and support for… Robin Whittle
- Re: [rrg] IRON-RANGER scalability and support for… Templin, Fred L
- [rrg] Comments on 'draft-whittle-ivip-arch' Templin, Fred L
- Re: [rrg] Comments on 'draft-whittle-ivip-arch' Robin Whittle
- Re: [rrg] Comments on 'draft-whittle-ivip-arch' Robin Whittle