IPv6 RADIUS attributes for IPv6 access networks draft-lourdelet-radext-ipv6-access-01 Glen Zorn, Benoit Lourdelet Wojciech Dec, Behcet Sarikaya Radext/dhc.

Slides:

Advertisements

Similar presentations

Benoit Lourdelet Wojciech Dec Behcet Sarikaya Glen Zorn July 2009 IPv6 RADIUS attributes for IPv6 access networks IETF-75

Advertisements

Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,

Why do current IP semantics cause scaling issues? −Today, “addressing follows topology,” which limits route aggregation compactness −Overloaded IP address.

1IETF57 DNSOP WG IPv6 Router Advertisement based DNS Autoconfiguration Jaehoon Paul Jeong ETRI 14 th.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made.

Network Mobility with Proxy Mobile IPv6 draft-petrescu-netext-pmip-nemo-01 Alexandru Petrescu (speaker), Michael BOC, and Christophe Janneteau IETF 84,

Multicast Reconfiguration Protocol for Stateless DHCPv6 DHC 61 st IETF S. Daniel Park

Draft-ietf-dhc-stateless-dhcpv6- renumbering-01 Tim Chown dhc WG, IETF 60, San Diego, August 2, 2004.

1 Behcet Sarikaya Frank Xia July 2010 Flexible DHCPv6 Prefix Delegation in Mobile Networks IETF 78

DNS zone suffix option for DHCPv6 (draft-yan-dhc-dhcpv6-opt-dnszone-02.txt) IETF 62 (Minneapolis) Yan Renxiang Alcatel Shanghai Bell.

1 Improved DNS Server Selection for Multi-Homed Nodes draft-savolainen-mif-dns-server-selection-04 Teemu Savolainen (Nokia) Jun-ya Kato (NTT) MIF WG meeting.

IPv6 Address Provisioning In IPv6 world there are three provisioning aspects wich are independent of whether the IPv6 node is a Host or CE router: IPv6.

1 Service-Oriented Address Assignment Using DHCP draft-ietf-dhc-soa-option-00.txt draft-syam-dhc-soav4-option-00.txt Syam Madanapalli Samsung ISO IETF.

1IETF59 DNSOP WG IPv6 DNS Discovery Issues Jaehoon Paul Jeong ETRI 1st March th IETF – Seoul,

DHCPv6 and other IPv6 docs Ralph Droms IETF 55, Atlanta.

DHCP: Dual-Stack Issues draft-ietf-dhc-dual-stack-01 Tim Chown dhc WG, IETF 60, San Diego, August 2, 2004.

DNS zone suffix option for DHCPv6 (draft-yan-dhc-dhcpv6-opt-dnszone-01.txt) IETF 61 (Washington, DC) Yinglan Jiang Renxiang Yan

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 10: DHCP Routing and Switching Essentials.

Dynamic IPv4 Provisioning for Lightweight 4over6 draft-liu-softwire-lw4over6-dhcp-deployment-04 C. Liu (Presenter), Q. Sun, J. Wu 1.

November st IETF MIP6 WG Mobile IPv6 Bootstrapping Architecture using DHCP draft-ohba-mip6-boot-arch-dhcp-00 Yoshihiro Ohba, Rafael Marin Lopez,

DHCPv6 Route Option (draft-dec-dhcpv6-route-option-03.txt) IETF 77, March 2010 : Wojciech Dec Richard Johnson

The Future of DHCP Dr. Ralph Droms Bucknell University.

Using DHCPv6 for DNS Configuration in Hosts draft-ietf-droms-dnsconfig-dhcpv6-00.txt Ralph Droms.

Prefix Delegation Protocol Selection T.J. Kniveton MEXT Working Group IETF 70 - December ’07 - Vancouver.

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: March 17, 2011 Presented at IEEE session.

1 Behcet Sarikaya Frank Xia Ted Lemon July 2011 DHCPv6 Prefix Delegation as IPv6 Migration Tool in Mobile Networks IETF 81

DHCPv6 Redundancy Considerations Redundancy Proposals in RFC 6853.

Authentication Mechanism for Port Control Protocol (PCP) draft-wasserman-pcp-authentication-01.txt Margaret Wasserman Sam Hartman Painless Security Dacheng.

Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.

March 15, 2005 IETF #62 Minneapolis1 EAP Discovery draft-adrangi-eap-network-discovery-10.txt Farid Adrangi ( )

Dean Cheng Jouni Korhonen Mehamed Boucadair

DHC WG IETF 55, 11/18/ /18/2002IETF 552 Agenda Administrivia, agenda bashingRalph Droms Use of IPsec for Securing DHCPv4 Messages Exchanged Between.

Exposing Source IP Address Type Requirements with DHCPv6 D. Moses, A. Yegin draft-moses-dmm-dhcp-ondemand-mobility-00.

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: September 23, 2009 Presented at IEEE session.

DHCP Option for Proxy Server Vijayabhaskar A K DHC WG IETF 59 Seoul.

DHCP Options for Configuring Tenant Identifier and Multicast Addresses in Overlay Networks Behcet Sarikaya Frank Xia.

LISP Deployment Scenarios Darrel Lewis and Margaret Wasserman IETF 76, Hiroshima, Japan.

Guidance for Running Multiple IPv6 Prefixes (draft-liu-v6ops-running-multiple-prefixes-02) Bing Liu, Sheng Jiang (Speaker), Yang Bo IETF91

RFC 4477 DHCP: Dual-Stack Issues Speaker: Ching-Chen Chang Date:

IETF-90 (Toronto) DHC WG Meeting Wednesday, July 23, GMT IETF-90 DHC WG1 Last Updated: 07/21/ :10 EDT.

Dynamic Stateless GRE Tunnel Li Xue Dayong Guo 1.

DSLF Subscriber Auth Requirements and IETF PANA Protocol PANA WG Chairs IETF 70 Dec 7, 2007 – Vancouver, Canada.

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: January 17, 2013 Presented at IEEE session.

DHCP options for PAA Status report of draft-ietf-dhc-paa-option-01.txt Lionel Morand IETF-65, Dallas.

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: September 16, 2010 Presented at IEEE session.

Extension of the MLD proxy functionality to support multiple upstream interfaces 1 Luis M. Contreras Telefónica I+D Carlos J. Bernardos Universidad Carlos.

Per-MS Prefix Model for IPv6 in WiMAX by Frank Xia Behcet Sarikaya Raj Patil Presented by Jonne Soininen.

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: May 14, 2009 Presented at IEEE session.

DHCPv4 option for PANA Authentication Agents draft-suraj-dhcpv4-paa-option-00.txt DHC/PANA WG IETF-63 France, Paris.

IETF 78 RADIUS extensions for DS-Lite draft-maglione-softwire-dslite-radius-ext-00 R. Maglione – Telecom Italia A. Durand – Juniper Networks.

Exposing Source IP Address Type Requirements with DHCPv6 D. Moses, A. Yegin draft-moses-dmm-dhcp-ondemand-mobility-02.

© 2015 Infoblox Inc. All Rights Reserved. Tom Coffeen, IPv6 Evangelist UKNOF January 2015 Tom Coffeen, IPv6 Evangelist UKNOF January 2015 DHCPv6 Operational.

Dhc WG 3/2/2004, IETF 59, Seoul. 3/2/2004dhc WG - IETF 59, Seoul2 Agenda Administrivia, Agenda bashing Ralph Droms 05 minutes DHCP Option for Proxy Server.

RADIUS attributes commonly used in fixed networks draft-klammorrissette-radext-very-common-vsas-00 Devasena Morrissette, Frederic Klamm, Lionel Morand.

Lightweight 4over6: An Extension to DS-Lite Architecture draft-cui-softwire-b4-translated-ds-lite-09 Y. Cui, Q. Sun, M. Boucadair, T. Tsou, Y. Lee and.

Instructor Materials Chapter 8: DHCP

Network Localized Mobility Management using DHCP

Discussion on DHCPv6 Routing Configuration

Booting up on the Home Link

Lionel Morand DHCP options for PAA Lionel Morand

Current Issues with DNS Configuration Options for SLAAC

DHCPv6-Shield: Protecting Against Rogue DHCPv6 Servers

Radius Attribute for MAP draft-jiang-softwire-map-radius-03

Proposal for IEEE 802.1CQ-LAAP

IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: IETF Liaison Report Date Submitted: May 13, 2010 Presented at IEEE session.

Update on DHCPv6 On-Demand Mobility Extension draft

Dayong GUO Sheng JIANG (Speaker) Remi Despres

MIF DHCPv6 Route Option Update

Presentation transcript:

IPv6 RADIUS attributes for IPv6 access networks draft-lourdelet-radext-ipv6-access-01 Glen Zorn, Benoit Lourdelet Wojciech Dec, Behcet Sarikaya Radext/dhc WG group IETF 74, 03/27/2008

Problem Statement RFC3162 needs additions to accommodate IPv6 production networks –Feedback coming from actual deployments – Pionners time is over and large scale deployments requires flexibility These new attributes may be used in DHCP or SLAAC contexts

Requirements (1) IPv6 DNS location needs to be configured on a subscriber basis Wholesale, VPN Implementation can happen in A DHCP context – RFC3646 – Recursive DNS Option A SLAAC context : RFC5006

Requirements (2) Individual IPv6 addresses must be offered to the Subscriber concatenation of prefix and interface-id attributes does not cover all cases RFC 5080 Section 2.11 suggests that “Framed- IPv6-Prefix” is not appropriate to carry an IPv6 address Implementation can happen in A DHCP context – to offer an individual address A SLAAC context : This new attribute could be used in “a posteriori” check

Requirements (3) More specific routes should be transmitted to the subscriber Multi-homing, multiple attachments Implementation can happen in DHCP context : New DHCPv6 option maps this attribute : draft- dec-dhcpv6-route-option-01 SLACC context : The attributes is mapped into the RA more specific routes. RFC4191

Requirements (4) Prefix Lifetimes must be configured on a prefix basis Implementation can happen in SLAAC: Valid and Prefered inserted in the RA sent to the subscriber In the context of “RADIUS Support for Prefix Authorization “ –draft-sarikaya-radext-prefix-authorization-03

DHCP Deployment scenario New RADIUS attributes mapping to key DHCPv6 attributes A list of DNS Server IPv6 addresses IPv6 address A list of specific routes DHCP Client DHCP Server RADIUS Client RADIUS Server SOLLICIT ADVERTISE (DNS, IA_NA) REQUEST (DNS, IA_NA) REPLY (DNS, IA_NA) REQUEST ACCEPT (DNS list, IPv6-1, IPv6-2, etc.) Session initiation Session up

SLAAC Deployment scenario New RADIUS attributes mapping to key RA fields Valid and Preferred lifetime A list of specific routes DNS addresses Possible validation of IPv6 address DHCP Client DHCP Server RADIUS Client RADIUS Server RA REQUEST ACCEPT (DNS list, IPv6-1, IPv6-2, etc.) Session initiation Session up

How to move forward Acknowledge the DHCP independence of the attributes Agree on the documentation path –RFC3162 bis (too lengthy) –Separate document (preferred) Adopt as a WG item (with the changes to -00 as explained)

Thank You !