1 LISP-DDT implementation status and deployment considerations Vince Fuller/Darrel Lewis, Cisco IETF-85 Atlanta, GA.

Slides:



Advertisements
Similar presentations
LISP Mobile Node LISP Mobile Node draft-meyer-lisp-mn-00.txt Dino Farinacci, Vince Fuller, Darrel Lewis and David Meyer IETF StockholmHiroshima LISP Working.
Advertisements

State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.
Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,
Why do current IP semantics cause scaling issues? −Today, “addressing follows topology,” which limits route aggregation compactness −Overloaded IP address.
IETF 72 – July 2008 Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Noel Chiappa, John Curran, Dino Farinacci, and David Meyer LISP Deployment.
Introduction to LISP (not (the (programming ( language))))
1 Overview of policy proposals Policy SIG Wednesday 26 August 2009 Beijing, China.
Internet Draft Status Internet Draft Status draft-farinacci-lisp-{00-12}.txt Dave Meyer, Vince Fuller, Darrel Lewis, Dino Farinacci IETF San Francisco.
1 draft-fuller-lisp-ddt-01 DDT Security V. Fuller, D. Lewis, V. Ermagan Presenter: Vina Ermagan IETF 83, Paris – March 2012.
LISP MIB draft-lisp-mib-05 Vancouver IETF - LISP WG Gregg Schudel, Amit Jain, Victor Moreno July 2012.
Securing the Border Gateway Protocol (S-BGP) Dr. Stephen Kent Chief Scientist - Information Security.
The Domain Name System Overview Introduction DNS overview How DNS helps us? Summary.
NANOG-46 Philadelphia, June 2009 Vince Fuller & Dave Meyer (for the rest of the LISP crew: Noel Chiappa, Dino Farinacci, Darrel Lewis, Andrew Partan, and.
CSEE W4140 Networking Laboratory Lecture 10: DNS Jong Yul Kim
RIPE-59 Lisbon, October 2009 Vince Fuller (for the rest of the LISP crew: Noel Chiappa, Dino Farinacci, Darrel Lewis, Dave Meyer, Andrew Partan, and John.
1IETF59 DNSOP WG IPv6 DNS Discovery Issues Jaehoon Paul Jeong ETRI 1st March th IETF – Seoul,
IAB/IESG Recommendations on IPv6 Address Allocation Bob Hinden at RIPE Sept Brian Carpenter at ARIN Oct Alain Durand at APNIC Oct
IAB/IESG Recommendations on IPv6 Address Allocation Bob Hinden at RIPE Sept Brian Carpenter at ARIN Oct Alain Durand at APNIC Oct
APNIC eLearning: Intro to RPKI 10 December :30 PM AEST Brisbane (UTC+10)
Scaling IXPs Scalable Infrastructure Workshop. Objectives  To explain scaling options within the IXP  To introduce the Internet Routing Registry at.
IIT Indore © Neminath Hubballi
LISP Mapping Request Format And related topics Joel M. Halpern
Draft-campbell-dime-load- considerations-01 IETF 92 DIME Working Group Meeting Dallas, Texas.
NAGing about LISP LISP Designers/Implementors: Dave Meyer, Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Dana Blair, Noel Chiappa, John.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 New LISP Mapping System: LISP-DDT Presentation to LNOG Darrel Lewis on behalf.
Regional Internet Registries Statistics & Activities IETF 55 Atlanta Prepared By APNIC, ARIN, LACNIC, RIPE NCC.
LISP BOF, IETF Dublin, July, 2008 Vince Fuller (for the LISP crew) LISP+ALT Mapping System.
1 Behcet Sarikaya Frank Xia Ted Lemon July 2011 DHCPv6 Prefix Delegation as IPv6 Migration Tool in Mobile Networks IETF 81
Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.
EID: RLOC: IRTF MobOpts – Quebec City July
Cisco Global Routing Summit, August, 2008 Vince Fuller (for the LISP crew) Introduction to LISP+ALT.
RIPE Berlin – May, 2008 Vince Fuller (for Dino, Dave, Darrel, et al) LISP: Intro and Update
1 EU SP Security Forum, December, 2008 Vince Fuller (for the LISP crew) Introduction to LISP.
Draft-vandevelde-v6ops-addcon-00.txt IPv6 Unicast Address Assignment Considerations Gunter Van de Velde (editor) Tim Chown Ciprian Popoviciu IETF 65, March.
Locator/ID Separation Protocol (LISP) Architecture & Protocols LISP Team: Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Elizabeth McGee,
1 Brian Carpenter (editor) Bing Liu (editor) Michael Richardson Tom Taylor Laurent Ciavaglia Michael Behringer Jéferson Campos Nobre IETF 93 July 2015.
Mar 3, 2006APNIC 21 Meeting -- Perth, AU1 IANA Status Report David Conrad, ICANN IANA General Manager.
Draft-ietf-v6ops-addcon-02.txt IPv6 Unicast Address Assignment Considerations Olaf Bonness, Tim Chown, Christian Hahn, Ciprian Popoviciu, Gunter Van de.
1 LISP-DDT update LISP IETF July 2012 Vince Fuller.
LISP Deployment Scenarios Darrel Lewis and Margaret Wasserman IETF 76, Hiroshima, Japan.
RFC 4477 DHCP: Dual-Stack Issues Speaker: Ching-Chen Chang Date:
IETF/IRTF Chicago - July 2007 Dino Farinacci Dave Meyer Vince Fuller Darrel Lewis LISP Implementation Report.
IPv6 Site-Local Discussion Bob Hinden & Margaret Wasserman IETF 56 San Francisco March 2003.
LISP BOF Update draft-farinacci-lisp-08.txt Dino Farinacci, Dave Meyer, Vince Fuller, Darrel Lewis, Scott Brim, Dave Oran IETF Dublin - July 2008.
LISP-CONS A Mapping Database Service IETF/IRTF - July 2007 Dave Meyer Dino Farinacci Vince Fuller Darrel Lewis Scott Brim Noel Chiappa.
LISP Internet Groper (LIG) LISP Internet Groper (LIG) draft-farinacci-lisp-lig-01.txt Dino Farinacci, Vince Fuller, Darrel Lewis and David Meyer IETF Stockholm/Hiroshima.
IPv6 WORKING GROUP (IPNGWG) December 2000 San Diego IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.
Introduction to Active Directory
Separating Location from Identification Dino Farinacci March 3, 2008.
NANOG Brooklyn – June, 2008 Vince Fuller (for Dino, Dave, Darrel, et al) LISP Update
LISP Document Status Darrel Lewis IETF 77, Concrete Wasteland, CA.
Extension of the MLD proxy functionality to support multiple upstream interfaces 1 Luis M. Contreras Telefónica I+D Carlos J. Bernardos Universidad Carlos.
Internet Naming Service: DNS* Chapter 5. The Name Space The name space is the structure of the DNS database –An inverted tree with the root node at the.
LISP Map Server LISP WG IETF-74 San Francisco draft-fuller-lisp-ms-00.txt Vince Fuller & Dino Farinacci.
S. Ali, K. Cartwright, D. Guyton, A. Mayrhofer, J-F. Mulé Data for Reachability of Inter/tra-NetworK SIP (drinks) DRINKS WG draft-mule-drinks-proto-02.
Basics of the Domain Name System (DNS) By : AMMY- DRISS Mohamed Amine KADDARI Zakaria MAHMOUDI Soufiane Oujda Med I University National College of Applied.
LISP L2 and L3 EID mobility using a unified control plane draft-portoles-lisp-eid-mobility-00 IETF 95 – Buenos Aires Vrushali Ashtaputre Dino Farinacci.
Lightweight 4over6: An Extension to DS-Lite Architecture draft-cui-softwire-b4-translated-ds-lite-09 Y. Cui, Q. Sun, M. Boucadair, T. Tsou, Y. Lee and.
November 2008 LISP Implementation Team: Vince Fuller, Darrel Lewis, David Meyer, Dino Farinacci, Andrew Partan, John Zwiebel LISP: Practice and Experience.
IDR WG, IETF Dublin, August, 2008 Vince Fuller (for the LISP crew) LISP+ALT Mapping System.
LISP Implementation Report
IETF/IRTF Vancouver - December 2007
Draft-ermagan-lisp-nat-traversal-00 Vina Ermagan, Dino Farinacci, Darrel Lewis, Fabio Maino, Jesper Skriver, Chris White Presenter: Vina Ermagan IETF.
LISP BOF, IETF 72 Dublin, July, 2008 Darrel Lewis (for the LISP crew)
Services DFS, DHCP, and WINS are cluster-aware.
draft-ietf-lisp-sec-12
NAT Traversal for LISP Mobile Node
IDR WG, IETF Dublin, July, 2008 Vince Fuller (for the LISP crew)
Internet Draft Status draft-ietf-lisp-10.txt draft-ietf-lisp-11.txt
Presentation transcript:

1 LISP-DDT implementation status and deployment considerations Vince Fuller/Darrel Lewis, Cisco IETF-85 Atlanta, GA

2 Agenda  Brief review of how DDT works  Implementation and deployment status  Future direction – soliciting feedback

3 Review: what is LISP-DDT?  LISP Delegated Database Tree – Hierarchy for Instance IDs and for EID Prefixes – Statically Configured – Delegations are signed (public-key) and verified when used  Conceptually, similar to DNS (IN-ADDR hierarchy) – but different prefix encoding, messages, etc. – we did try using DNS protocol directly, but proved unsuitable  Borrowed terminology: – DDT Node/Map-Server – defines EID topology and delegations – DDT Map-Resolver – walks EID topology to find ETR

4 Implementation Status  Cisco IOS and NXOS implementations complete –Multi-AF (LCAF) support, public/private EID space separation  OpenLISP implementation nearly complete  Verisign implementation in progress  Development and interoperability testing going on now – running on LISP beta network with around 200 end sites  Does not include proposed DDT-SEC extensions

5 Example: DDT Node/MS EID Delegation  Pretty simple – much easier than ALT  Root server configuration: lisp ddt authoritative-prefix * lisp ddt delegate instance-id 0 eid-prefix /24 lisp ddt delegate instance-id 0 eid-prefix /16 lisp ddt delegate instance-id 0 eid-prefix /16 lisp ddt delegate instance-id 0 eid-prefix 2610:d0::/32 lisp ddt delegate instance-id 0 eid-prefix 2610:d0::/32  Sub-delegations for pilot network: lisp ddt authoritative-prefix instance-id 0 eid-prefix 2610:d0::/32 lisp ddt authoritative-prefix instance-id 0 eid-prefix /16 lisp ddt delegate instance-id 0 eid-prefix /19 lisp ddt delegate instance-id 0 eid-prefix /19 lisp ddt delegate instance-id 0 eid-prefix 2610:d0:face::/48 lisp ddt delegate instance-id 0 eid-prefix 2610:d0:face::/48

6 DDT Map Server configuration  Further sub-delegation to DDT Map Server: lisp ddt authoritative-prefix instance-id 0 eid-prefix /19 lisp ddt map-server-peer instance-id 0 eid-prefix /19 lisp ddt map-server-peer instance-id 0 eid-prefix /19 lisp ddt map-server-peer instance-id 0 eid-prefix /19 lisp ddt map-server-peer instance-id 0 eid-prefix /19 lisp site vaf-xtr eid-prefix /24 authentication-key xxxx description Contact: Vince Fuller  “peer” configuration Allows DDT MS to respond with “go ask someone else” if it does not have current ETR registration

7 DDT Map Resolver Configuration  Very simple - just needs to know how to get to root: lisp ddt root lisp ddt root lisp ddt root  “root hints” file for DDT  non-root DDT Map-Servers have this configuration also  Pilot infrastructure boxes have combined functionality for both DDT Map-Resolver and DDT Map-Server

8 Static Delegation Hierarchy DDT Beta (IID0) Network Deployment Cisco’s DDT Roots: (Iota-Root) IID: * EID: * arin-ddt.rloc.lisp4.net ripe-ddt.rloc.lisp4.net vxnet-ddt.rloc.lisp4.net MR/MS: EID Aggregates: / :D0:1000::/ :D0:FACE::/ /24 TO MN /24 TO MN isc-mr-ms asp-mr-ms cisco-sjc-mr-ms1 eqx-ash-mr-ms Other DDT Roots IID * EID: * sigma.ddt-root.org (Verisign) mu.ddt-root.org ARIN- Region RIPE- Region AP-Region LACNIC- Region Mobile Node Region MR/MS: EID Aggregates: / :D0:2000::/36 l3-london-mr-ms tdc-mr-ms intouch-ams-mr-ms MR/MS: EID Aggregates: / :D0:3000::/36 apnic-mr-ms DDT Node with ‘child referrals’ MR/MS’s / / :d0:1219::/ :d0:120e::/48 asp-isis isc-isis intouch-isis MR/MS: EID Aggregates: / :D0:5000::/36 lacnic-mr-ms asp-isis DDT Beta- Network TLDs IID 0 v4-EID: /16 v6-EID: 2610:D0/32 uninett-ddt.rloc.lisp4.net sj-ddt.rloc.lisp4.net msn-ddt.rloc.lisp4.net Beta Network DDT TLD Iota- root Servers

9 Organization and Operational Status  Collaboration among Cisco, Verisign, Intouch NV – discussions with others, more welcome – close dependency on PITR providers  Common root: ddt-root.org – servers run by different companies/organizations  Running on LISP pilot network – transition from LISP+ALT in March, 2012 – ALT configurations removed in April, 2012  Looking at various options for organizational structure – emphasis on transparency, scalability, efficiency, simplicity

10 Thoughts on Future Work  LISP Mapping Provider “eco-system”(?) – need more public DDT providers and PITR providers  Internet-Scale Deployment(?)  DDT database syntax specification(?) – like RFC1035 sec. 5.3 for DNS – as an appendix to draft-ietf-lisp-ddt? – as a separate document?  Explicit specification for split between public and non- public EID space(?) – draft mentions “hints” but not how used by DDT-MR/DDT-MS – IID registry, with range defined for private use(?)

11 LISP-DDT and LISP resources  Recently adopted by WG: draft-ietf-lisp-ddt-00.txt  – background information, pointers to other presentations – pilot network topology, traffic, etc. – LISP Network Operators Group (LNOG)  lisp.cisco.com – Cisco implementation info, image downloads, etc.  LISP-DDT root operation -

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.