Presentation is loading. Please wait.

Presentation is loading. Please wait.

Extension of DHCP LEASEQUERY in Bridging/Switching networks draft-joshi-dhc-lease-query-ext-02.txt DHC Working Group Bharat Joshi ( bharat_joshi@infosys.com.

Published byLester Rich Modified over 8 years ago

Similar presentations

Presentation on theme: "Extension of DHCP LEASEQUERY in Bridging/Switching networks draft-joshi-dhc-lease-query-ext-02.txt DHC Working Group Bharat Joshi ( bharat_joshi@infosys.com."— Presentation transcript:

1 Extension of DHCP LEASEQUERY in Bridging/Switching networks draft-joshi-dhc-lease-query-ext-02.txt DHC Working Group Bharat Joshi ( ) Pavan Kurapati ( ) Infosys Technologies Ltd.

2 RFC 4388 for Layer 3 Access Network
STB RG ACCESS CONCENTRATOR IP DSLAM /BRAS Local Loop DHCP Server Service Provider’s IP Network PC STB RG Layer 3 Relay Agent Add option 82 and “giaddr” Extract information like MAC/IP/Lease time Forwards DHCP reply based on option 82 Extracted information can be used to: PC Avoid MAC/IP Spoofing Enhance Security by avoiding ARP generation Generates DHCP Lease Query

3 Extension of RFC 4388 to Layer 2 Access Networks
STB RG DHCP Server Local Loop L3 Relay Agent Ethernet Aggregation Switch Service Provider’s IP Network Access Concentrator L2 Relay Agent STB RG Add “giaddr” Local Loop Forwards reply based on “giaddr” [Destination IP in DHCP reply] Adds option 82 Extracts information like MAC/IP/Lease time Forwards reply based on option 82 Extracted information can be used to: Avoid MAC/IP Spoofing Avoid Unknown MAC Flooding Generates Lease Query

4 Changes from 00 to 02 New option for ‘Access Concentrator’ hardware address. Added text for: Layer 3 Relay Agent MUST NOT add option 82 to DHCPLEASEQUERY messages. DHCP server MUST add the new option only in the reply of DHCPLEASEQUERY messages. Handling multiple responses received for a DHCPLEASEQUERY message If a Layer 2 Relay Agent can use its management IP address to talk to DHCP server than that should be preferred. Added authentication details of DHCP LEASEQUERY messages as per RFC 3118 in security section. Removed the restriction of mandating the insertion of new option at the end Some minor comments and grammatical issues.

5 Next Step PoC implementation is done and verified.
More review in WG mailing list. Working group item?

6 Stefaan De Cnodder Alcatel Pavan Kurapati Infosys Technologies Ltd.
Unicast Address Sub-Option draft-decnodder-dhc-rai-unicast-01.txt DHC Working Group Stefaan De Cnodder Alcatel Pavan Kurapati Infosys Technologies Ltd.

7 Need for unicast-address sub-option
DHCP replies are broadcast/flooded to L2 RA under below conditions : If client sets Broadcast flag in DHCP requests If L2 RA does MAC translation, Ethernet aggregation devices does not learn client’s MAC address. Hence even if broadcast flag is not set, replies are flooded to all the L2 RAs. Flooding need to be avoided between L2 RA and L3 RA

8 New sub-option in Option-82
New sub-option called ‘unicast-address’ is defined for Relay agent option. L2 RA fills unicast-address sub-option with: ‘chaddr’ if L2 RA is acting as a bridge without MAC translation The hardware address which is used for translation (eg, ACs MAC address) if L2 RA does MAC translation. .

9 Processing of new sub-option
DHCP server MUST echo this sub-option as it is in option-82 L3 RA should look for this new sub-option and if present use this MAC address to forward the DHCP messages irrespective of the broadcast flag. L2 RA should respect the broadcast flag and should change the destination MAC address accordingly. i.e If broadcast flag is set, change the destination MAC as broadcast If broadcast flag is not set, change the destination MAC to that of ‘chaddr’

10 Next Step More review in WG mailing list. Working group item?

Download ppt "Extension of DHCP LEASEQUERY in Bridging/Switching networks draft-joshi-dhc-lease-query-ext-02.txt DHC Working Group Bharat Joshi ( bharat_joshi@infosys.com."

Similar presentations

Everything.

Everything.
Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,

Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,
CCNA3 v3 Module 7 v3 CCNA 3 Module 7 JEOPARDY K. Martin.

CCNA3 v3 Module 7 v3 CCNA 3 Module 7 JEOPARDY K. Martin.
IP over ETH over IEEE802.16 draft-riegel-16ng-ip-over-eth-over-80216-01 Max Riegel

IP over ETH over IEEE draft-riegel-16ng-ip-over-eth-over Max Riegel
Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.

Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.
Draft-ietf-dhc-stateless-dhcpv6- renumbering-01 Tim Chown dhc WG, IETF 60, San Diego, August 2, 2004.

Draft-ietf-dhc-stateless-dhcpv6- renumbering-01 Tim Chown dhc WG, IETF 60, San Diego, August 2, 2004.
Dynamic Host Configuration Protocol DHCP. Dynamic Host Configuration Protocol -- DHCP -- Networking protocol Obtains configuration information for operation.

Dynamic Host Configuration Protocol DHCP. Dynamic Host Configuration Protocol -- DHCP -- Networking protocol Obtains configuration information for operation.
 As defined in RFC 826 ARP consists of the following messages ■ ARP Request ■ ARP Reply.

 As defined in RFC 826 ARP consists of the following messages ■ ARP Request ■ ARP Reply.
CCNPv5 Minimizing Service Loss and Data Theft in a Campus Network 1 Minimizing Service Loss and Data Theft in a Switched BCMSN Module 8 – Sec 2.

CCNPv5 Minimizing Service Loss and Data Theft in a Campus Network 1 Minimizing Service Loss and Data Theft in a Switched BCMSN Module 8 – Sec 2.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Protecting Against Spoofing Attacks.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Protecting Against Spoofing Attacks.
Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn 2004-2005.

Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn
Internet Networking Spring 2003

Internet Networking Spring 2003
Chapter 5 Secure LAN Switching.  MAC Address Flooding Causing CAM Overflow and Subsequent DOS and Traffic Analysis Attacks.

Chapter 5 Secure LAN Switching.  MAC Address Flooding Causing CAM Overflow and Subsequent DOS and Traffic Analysis Attacks.
Chapter 23: ARP, ICMP, DHCP IS333 Spring 2015.

Chapter 23: ARP, ICMP, DHCP IS333 Spring 2015.
Host Configuration: BOOTP and DHCP

Host Configuration: BOOTP and DHCP
© 2002, Cisco Systems, Inc. All rights reserved..

© 2002, Cisco Systems, Inc. All rights reserved..
1 CMPT 471 Networking II DHCP © Janice Regan, 2006-2013.

1 CMPT 471 Networking II DHCP © Janice Regan,
Everything. MACIP End-host IP: 10.1.2.3 MAC: 11:11:11:11:11 gateway IP: 10.1.2.1 MAC: 22:22:22:22:22 Google server IP: 201.1.2.3 MACIP MACInterfaceMACInterface.

Everything. MACIP End-host IP: MAC: 11:11:11:11:11 gateway IP: MAC: 22:22:22:22:22 Google server IP: MACIP MACInterfaceMACInterface.
Layer 2 Security – No Longer Ignored Security Possibilities at Layer 2 Allan Alton, BSc CISA CISSP NetAnalyst UBC October 18, 2007.

Layer 2 Security – No Longer Ignored Security Possibilities at Layer 2 Allan Alton, BSc CISA CISSP NetAnalyst UBC October 18, 2007.
DHCP for Multi-hop Wireless Ad-Hoc Networks Presented by William List.

DHCP for Multi-hop Wireless Ad-Hoc Networks Presented by William List.

Similar presentations

Ads by Google