Internet Area IPv6 Multi-Addressing, Locators and Paths.

Slides:

Advertisements

Similar presentations

The leader in session border control for trusted, first class interactive communications.

Advertisements

SIP, Firewalls and NATs Oh My!. SIP Summit SIP, Firewalls and NATs, Oh My! Getting SIP Through Firewalls Firewalls Typically.

The Architecture of the Internet or Waist Watching in IP

Who Are You? JPNIC GA Presentation Tokyo Geoff Huston Chief Scientist APNIC Identity and Location in IP.

Who Are You? Geoff Huston Chief Scientist APNIC Identity and Location in IP.

Who Are You? Geoff Huston APNIC Identity and Location in IP.

ID / LOC Split - Basic Approach Sender A Receiver B src = ULID(A) dst = ULID(B) src = ULID(A) dst = ULID(B) src = Loc(A) dst = Loc(B) src = Loc(A) dst.

Approaches to Multi-Homing for IPv6 An Architectural View of IPv6 MultiHoming proposals Geoff Huston 2004.

Architectural Approaches to Multi-Homing for IPv6 A Walk-Through of draft-huston-multi6-architectures-00 Geoff Huston June 2004.

Identity and Locators in IPv6 IAB Meeting IETF 60 August 2004.

SHIM6 Update Geoff Huston Kurtis Lindqvist SHIM6 co-chairs.

1 An Update on Multihoming in IPv6 Report on IETF Activity IPv6 Technical SIG 1 Sept 2004 APNIC18, Nadi, Fiji Geoff Huston.

MIF API Extension Discussion MIF IETF 78 Dapeng Liu Yuri Ismailov.

© 2004 SafeNet, Inc. All rights reserved. Mobike Protocol Design draft-ietf-mobike-design-00.txt Tero Kivinen

Mobile IPv6. Why study Mobility in IPv6? What is so different about Mobile IPv6 ?

Loose Source Routing as a Mechanism for Traffic Policies Katerina Argyraki and David R. Cheriton Presented by Thuan Huynh, Robert Patro, and Shomir Wilson.

Umut Girit  One of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer.

IPv6 Multihoming Support in the Mobile Internet Presented by Paul Swenson CMSC 681, Fall 2007 Article by M. Bagnulo et. al. and published in the October.

UNIT-IV Computer Network Network Layer. Network Layer Prepared by - ROHIT KOSHTA In the seven-layer OSI model of computer networking, the network layer.

Who Are You? Geoff Huston Identity and Location in IP.

IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,

1 © NOKIA NSIS MIPv6 FW/ November 8 th 2004 Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-01 S. Thiruvengadam.

1 © 2005 Nokia mobike-transport.ppt/ MOBIKE Transport mode usage and issues Mohan Parthasarathy.

CS533 - Concepts of Operating Systems 1 Remote Procedure Calls - Alan West.

IP Multicast Channels: EXPRESS Support for Large-scale Single-source Applications Authors: Hugh W. Holbrook and David R. Cheriton Presenter: Mridul Sharma.

1 MPLS Architecture. 2 MPLS Network Model MPLS LSR = Label Switched Router LER = Label Edge Router LER LSR LER LSR IP MPLS IP Internet LSR.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

Host Identity Protocol

Host Mobility for IP Networks CSCI 6704 Group Presentation presented by Ye Liang, ChongZhi Wang, XueHai Wang March 13, 2004.

Light Weight Access Point Protocol (LWAPP) IETF 57 Pat Calhoun, Airespace.

Overview of SHIM6 Multihoming Protocol Fuad Bin Naser Std. No A presentation for CSE6806: Wireless & Mobile Communication Networks.

Chapter 17 Networking Dave Bremer Otago Polytechnic, N.Z. ©2008, Prentice Hall Operating Systems: Internals and Design Principles, 6/E William Stallings.

What is a Protocol A set of definitions and rules defining the method by which data is transferred between two or more entities or systems. The key elements.

I-D: draft-rahman-mipshop-mih-transport-01.txt Transport of Media Independent Handover Messages Over IP 67 th IETF Annual Meeting MIPSHOP Working Group.

Module 3: Designing IP Addressing. Module Overview Designing an IPv4 Addressing Scheme Designing DHCP Implementation Designing DHCP Configuration Options.

03/07/2005IETF 62, Minneapolis NAT requirements for TCP (BEHAVE WG) draft-sivakumar-behave-nat-tcp-req-00.txt S.Sivakumar, K.Biswas, B.Ford.

Tag Switching Architecture Overview Qingfeng Zhuge Fangxia Li Xin Jiang.

1 November 2006 in Dagstuhl, Germany

DNS SRV and NAPTR Use for SPEERMINT - Tom Creighton, Gaurav Khandpur Comcast SPEERMINT Intermin Meeting Philadelphia Sept

Security, NATs and Firewalls Ingate Systems. Basics of SIP Security.

4.1.4 multi-homing.

An Update on Multihoming in IPv6 Report on IETF Activity RIPE IPv6 Working Group 22 Sept 2004 RIPE 49 Geoff Huston, APNIC.

Approaches to Multi6 An Architectural View of Multi6 proposals Geoff Huston March 2004.

Mar del Plata, Argentina, 31 Aug – 1 Sep 2009 ITU-T Kaleidoscope 2009 Innovations for Digital Inclusion Ved P. Kafle, Hideki Otsuki, and Masugi Inoue National.

Ασύρματες και Κινητές Επικοινωνίες Ενότητα # 10: Mobile Network Layer: Mobile IP Διδάσκων: Βασίλειος Σύρης Τμήμα: Πληροφορικής.

Shim6 Architecture Geoff Huston IETF-63 August 2005.

Ασύρματες και Κινητές Επικοινωνίες

Site Multihoming for IPv6 Brian Carpenter IBM TERENA Networking Conference, Poznan, 2005.

IPSec is a suite of protocols defined by the Internet Engineering Task Force (IETF) to provide security services at the network layer. standard protocol.

IETF 55 Nov A Two-Level Architecture for Internet Signaling draft-braden-2level-signal-arch-01.txt Bob Braden, Bob Lindell USC Information.

Multi-protocol Label Switching

Mobile IP THE 12 TH MEETING. Mobile IP  Incorporation of mobile users in the network.  Cellular system (e.g., GSM) started with mobility in mind. 

HIP-Based NAT Traversal in P2P-Environments

What is a Protocol A set of definitions and rules defining the method by which data is transferred between two or more entities or systems. The key elements.

IP Telephony (VoIP).

Mobile Networking (I) CS 395T - Mobile Computing and Wireless Networks

Networking Applications

4.1.5 multi-homing.

Mobile IP and Upper Layer Interaction

Instructor Materials Chapter 9: NAT for IPv4

Global Locator, Local Locator, and Identifier Split (GLI-Split)

Routing and Switching Essentials v6.0

Dave Thaler A Comparison of Mobility-Related Protocols: MIP6,SHIM6, and HIP draft-thaler-mobility-comparison-01.txt Dave Thaler.

Who Are You? Identity and Location in IP Geoff Huston APNIC.

Instructor Materials Chapter 9: NAT for IPv4

ID / LOC Split - Basic Approach

An Update on Multihoming in IPv6 Report on IETF Activity

FARA: Reorganizing the Addressing Architecture

Chapter 11: Network Address Translation for IPv4

Presentation transcript:

Internet Area IPv6 Multi-Addressing, Locators and Paths

Objective To facilitate an Internet Area discussion in the next 45 (or so) minutes on IPv6, Multi- Addressing and Path Maintenance approaches Goals: Raise awareness of the concepts Summarize current activities Flag open issues Consider further activity

Background Conventionally, IP addresses are Endpoint identifiers Routing objects Key value for Forwarding Lookup (but you knew this already)

Background Challenges to the IP Address Model Mobility and nomadism Multi-homed endpoints Scoped address realms Routing Complexity and Scaling VOIP and Peer-to-Peer applications NATs, ALGs, and firewalls Unwanted traffic, session hijacking and disruption

* Our current direction appears to be developing solutions in diverse permutations of this split identity / locator space simultaneously: Multi-Party Applications Application Agents Rendezvous protocols DNS Incremental Updates and DNSSEC DNS Indirection and Referral SCTP, HIP at the transport-layer Mobile IPv6 Mobile IPv4 Multi6 And probably many more! * Let a hundred flowers bloom: let a hundred schools of thought contend Mao Zedong, 1956

Background Generic approach: decouple the semantics of identity and location: Associate multiple locations to a single identity Consequent binding state: mapping an identity into a viable locator in a packet header for the sender reverse mapping for the receiver Using the IP layer as the point where this binding state is maintained Once a binding state is established transport and above uses identifiers IP and below uses locators

Background A number of current IETF activities are looking at aspects of decoupling identity and location at the IP layer: IKEv2 + MOBIKE (+ BTNS) MIP4 + MIP6 + combinations (MIPSHOP, MOBOPTS) NEMO SHIM6 HIP

Functional Components From a functional perspective, the approaches appear to have similar structural components: Discovery of locator functionality between end-hosts Identity / Locator mapping state Setup State Update (locator set change) Path Maintenance

We already have multiple Discovery and Setup protocols … Different security assumptions behind each approach IKEv2 (+MOBIKE), MIP6, SHIM6, HIP, … Different functionality requirements Different domains of intended applicability There appears to be limited capacity and/or benefit in attempting to unify these approaches

Could we have a single locator / path Update and Maintenance module? Is it possible to use a single common locator update protocol as a plug-in to the signalling protocol? Is it possible to use a single common path property discovery / maintenance mechanism as a plug-in to the signalling protocol?

Issues – Transport Requirements Who cares about locator switch events (and why)? Various different transport session requirements: TCP avoid session resets optimise path performance UDP streamers avoid stream disruption Prefer rapid failover to pre-configured path match path performance to media requirements UDP transactions avoid excessive transaction overhead

Issues - Locator / Path Maintenance Path integrity monitoring: Upper Level Signalling vs IP Level Monitoring Indirect: Use Transport Session referred signals Transport session timeout generates a locator switch signal Locator pair testing? Interpretation of signals? (Firewalls and filters for specific transport ports?) Direct: Use pseudo-transport session Probe and response within the shim layer Complete pair-wise locator maintenance On failure locator testing

Issues - Identity Equivalences Locator State Maintenance What is an identity state equivalence set? Per Host pair For some generic form of associating multiple IDs with a single endpoint Per ID pair The ID pair forms a unique lookup key to the mapping state Per session class The ID pair plus a session type value forms the state lookup key Per transport session The ID Pair plus the session identifier forms the state lookup key What is required to identify an incoming packet in terms of selecting the correct mapping state?

Issues - Path Maintenance Passive: await locator switch signal and then select a new pair and test Maintain timed cache of bad pairs Test new candidate locator pair Testing may generate n**2 probes Testing of new pairs requires extended timeouts Parallel vs serial test procedures Active: Actively maintain and probe all locator pairs asynchronously Rapid failover – high overhead Active ++ : maintain path characteristics per locator pair Path matching failover options – higher overhead

So - is it possible… To construct the identifier / locator mapping module in such a way that it can be modular? That the signals in / out of the module can be defined in a functionally complete manner? That the module can support multiple setup and signalling protocols? Sharing the mechanisms and probe information but Probably not sharing the (complete) state That the modules internal operation can be opaque to the calling interface?