APRICOT Taipei – February, 2008 Dave Meyer, Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Noel Chiappa, John Curran & Dino Farinacci Locator/ID.

Slides:



Advertisements
Similar presentations
LISP Mobile Node LISP Mobile Node draft-meyer-lisp-mn-00.txt Dino Farinacci, Vince Fuller, Darrel Lewis and David Meyer IETF StockholmHiroshima LISP Working.
Advertisements

Overlay Transport Virtualization (OTV)
Why do current IP semantics cause scaling issues? −Today, “addressing follows topology,” which limits route aggregation compactness −Overloaded IP address.
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
TCOM 509 – Internet Protocols (TCP/IP) Lecture 06_b Subnetting,Supernetting, CIDR IPv6 Instructor: Dr. Li-Chuan Chen Date: 10/06/2003 Based in part upon.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
IPv6 Victor T. Norman.
Project by: Palak Baid (pb2358) Gaurav Pandey (gip2103) Guided by: Jong Yul Kim.
Multihoming in IPV6 Habib Naderi Department of Computer Science University of Auckland.
COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
IETF 72 – July 2008 Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Noel Chiappa, John Curran, Dino Farinacci, and David Meyer LISP Deployment.
Introduction to LISP (not (the (programming ( language))))
LISP-CONS A Mapping Database Service NANOG 41 David Meyer, Dino Farinacci, Vince Fuller, Darrel Lewis, Scott Brim, Noel Chiappa NANOG 41 October, 2007.
Internet Draft Status Internet Draft Status draft-farinacci-lisp-{00-12}.txt Dave Meyer, Vince Fuller, Darrel Lewis, Dino Farinacci IETF San Francisco.
IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,
COM555: Mobile Technologies Location-Identifier Separation.
Network Layer Packet Forwarding IS250 Spring 2010
COS 420 Day 18. Agenda Assignment 4 Posted Chap Due April 6 Group project program requirements Submitted but Needs lots of work Individual Project.
NANOG-46 Philadelphia, June 2009 Vince Fuller & Dave Meyer (for the rest of the LISP crew: Noel Chiappa, Dino Farinacci, Darrel Lewis, Andrew Partan, and.
Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn
COS 420 Day 20. Agenda Group Project Discussion Protocol Definition Due April 12 Paperwork Due April 29 Assignment 3 Due Assignment 4 is posted Last Assignment.
RIPE-59 Lisbon, October 2009 Vince Fuller (for the rest of the LISP crew: Noel Chiappa, Dino Farinacci, Darrel Lewis, Dave Meyer, Andrew Partan, and John.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Considering the Advantages of Using BGP.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
Petteri Sirén. Content Preface Locator/ID Separation Protocol (LISP) How LISP works Methods how LISP was studied Test cases Result Summary.
LISP Traffic Engineering
G64INC Introduction to Network Communications Ho Sooi Hock Internet Protocol.
RRG Recommendation IETF77 March 26, 2010.
LISP Tech Talk - Part 3 Deployed Network and Use-Cases Dino Farinacci, Dave Meyer, Darrel Lewis, Vince Fuller, Gregg Schudel February 24, 2010.
NAGing about LISP LISP Designers/Implementors: Dave Meyer, Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Dana Blair, Noel Chiappa, John.
LISP-Multicast draft-farinacci-lisp-multicast-00.txt Dino Farinacci, Dave Meyer, John Zwiebel, Stig Venaas IETF Dublin - July 2008.
IETF Vancouver - December 2007 Dave Meyer, Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Noel Chiappa, John Curran & Dino Farinacci Locator/ID.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 New LISP Mapping System: LISP-DDT Presentation to LNOG Darrel Lewis on behalf.
Suez Canal University – Faculty of Computers & Informatics - Cisco Local Academy Network Fundamentals.
Chapter 9. Implementing Scalability Features in Your Internetwork.
LISP BOF, IETF Dublin, July, 2008 Vince Fuller (for the LISP crew) LISP+ALT Mapping System.
EID: RLOC: IRTF MobOpts – Quebec City July
Cisco Global Routing Summit, August, 2008 Vince Fuller (for the LISP crew) Introduction to LISP+ALT.
RIPE Berlin – May, 2008 Vince Fuller (for Dino, Dave, Darrel, et al) LISP: Intro and Update
1 EU SP Security Forum, December, 2008 Vince Fuller (for the LISP crew) Introduction to LISP.
Locator/ID Separation Protocol (LISP) Architecture & Protocols LISP Team: Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Elizabeth McGee,
Internetworking Internet: A network among networks, or a network of networks Allows accommodation of multiple network technologies Universal Service Routers.
LISP Deployment Scenarios Darrel Lewis and Margaret Wasserman IETF 76, Hiroshima, Japan.
IETF/IRTF Chicago - July 2007 Dino Farinacci Dave Meyer Vince Fuller Darrel Lewis LISP Implementation Report.
Approaches to Multi6 An Architectural View of Multi6 proposals Geoff Huston March 2004.
W&L Page 1 CCNA CCNA Training 3.4 Describe the technological requirements for running IPv6 in conjunction with IPv4 Jose Luis Flores /
LISP BOF Update draft-farinacci-lisp-08.txt Dino Farinacci, Dave Meyer, Vince Fuller, Darrel Lewis, Scott Brim, Dave Oran IETF Dublin - July 2008.
LISP-CONS A Mapping Database Service IETF/IRTF - July 2007 Dave Meyer Dino Farinacci Vince Fuller Darrel Lewis Scott Brim Noel Chiappa.
LISP Internet Groper (LIG) LISP Internet Groper (LIG) draft-farinacci-lisp-lig-01.txt Dino Farinacci, Vince Fuller, Darrel Lewis and David Meyer IETF Stockholm/Hiroshima.
1 12-Jan-16 OSI network layer CCNA Exploration Semester 1 Chapter 5.
Dave Meyer & Dino Farinacci LISP Designers: Dave Meyer, Vince Fuller, Darrel Lewis, Andrew Partan, John Zwiebel, Scott Brim, Noel Chiappa & Dino Farinacci.
Separating Location from Identification Dino Farinacci March 3, 2008.
NANOG Brooklyn – June, 2008 Vince Fuller (for Dino, Dave, Darrel, et al) LISP Update
LISP Locator Reachability Algorithms Dino Farinacci, Dave Meyer, Darrel Lewis, Vince Fuller, Andrew Partan, Noel Chiappa IETF Stockholm LISP Working Group.
LISP Document Status Darrel Lewis IETF 77, Concrete Wasteland, CA.
LISP Map Server LISP WG IETF-74 San Francisco draft-fuller-lisp-ms-00.txt Vince Fuller & Dino Farinacci.
COM594: Mobile Technologies Location-Identifier Separation.
November 2008 LISP Implementation Team: Vince Fuller, Darrel Lewis, David Meyer, Dino Farinacci, Andrew Partan, John Zwiebel LISP: Practice and Experience.
IDR WG, IETF Dublin, August, 2008 Vince Fuller (for the LISP crew) LISP+ALT Mapping System.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI network layer CCNA Exploration Semester 1 – Chapter 5.
Routing and Addressing in Next-Generation EnteRprises (RANGER)
IP: Addressing, ARP, Routing
LISP Implementation Report
IETF/IRTF Vancouver - December 2007
Draft-ermagan-lisp-nat-traversal-00 Vina Ermagan, Dino Farinacci, Darrel Lewis, Fabio Maino, Jesper Skriver, Chris White Presenter: Vina Ermagan IETF.
LISP BOF, IETF 72 Dublin, July, 2008 Darrel Lewis (for the LISP crew)
LISP: A Level of Indirection for Routing
IDR WG, IETF Dublin, July, 2008 Vince Fuller (for the LISP crew)
Presentation transcript:

APRICOT Taipei – February, 2008 Dave Meyer, Vince Fuller, Darrel Lewis, Eliot Lear, Scott Brim, Dave Oran, Noel Chiappa, John Curran & Dino Farinacci Locator/ID Separation Protocol (LISP) Tutorial

LISP TutorialIETF Vancouver Dec 2007Slide 2 Agenda What problem is LISP solving? Why Locator/ID Separation? Data Plane Operation Mapping Mechanisms –CONS, NERD, ALT, EMACS Incremental Deployability Prototype and Testing

LISP TutorialIETF Vancouver Dec 2007Slide 3 What Problem is LISP Solving? Provider A /8 Provider B /8 S (1) Improve site multi-homing R1R2 a) Can control egress with IGP routing b) Hard to control ingress without more specific route injection c) Desire to be low OpEx multi-homed (avoid complex protocols, no outsourcing) (2) Improve ISP multi-homing a) Same problem for providers, can control egress but not ingress, more specific routing only tool to circumvent BGP path selection BGP

LISP TutorialIETF Vancouver Dec 2007Slide 4 What Problem is LISP Solving? Provider A /8 Provider B /8 S R1R2 (3) Decouple site addressing from provider a) Avoid renumbering when site changes providers b) Site host and router addressing decoupled from core topology (4) Add new addressing domains a) From possibly separate allocation entities (5) Do 1) through 4) and reduce the size of the core routing tables

LISP TutorialIETF Vancouver Dec 2007Slide 5 What Provoked This? Stimulated by problem statement effort at the Amsterdam IAB Routing Workshop on October 18/ –Report published as RFC 4984 More info on problem statement:

LISP TutorialIETF Vancouver Dec 2007Slide 6 Why the Separation? The level of indirection allows us to: –Keep either ID or Location fixed while changing the other –Create separate namespaces which can have different allocation properties By keeping IDs fixed –Assign fixed addresses that never change for hosts and routers at a site You can change Locators –Now sites can change providers –Now hosts can move

LISP TutorialIETF Vancouver Dec 2007Slide 7 Locator/ID Separation Solutions First let’s look at Locator/ID solutions Host Based –shim6, HIP, Six/One Router Based –LISP, GSE, EFT, IVIP, Six/One

LISP TutorialIETF Vancouver Dec 2007Slide 8 What is LISP? Locator/ID Separation Protocol Ground rules for LISP –Network-based solution –No changes to hosts whatsoever –No new addressing changes to site devices –Very few configuration file changes –Imperative to be incrementally deployable –Address family agnostic

LISP TutorialIETF Vancouver Dec 2007Slide 9 What is LISP? Host Stack (end-to-end) Uses IDs LISPUses Locators “Jack-Up” or “Map-n-Encap”

LISP TutorialIETF Vancouver Dec 2007Slide 10 draft-farinacci-lisp-05.txt / |Version| IHL |Type of Service| Total Length | / / | Identification |Flags| Fragment Offset | / OH | Time to Live | Protocol = 17 | Header Checksum | \ \ | Source Routing Locator | \ \ | Destination Routing Locator | / | Source Port | Dest Port (4341) | UDP \ | UDP length | UDP Checksum | / | Locator Reach Bits | LISP \ | Nonce | / |Version| IHL |Type of Service| Total Length | / / | Identification |Flags| Fragment Offset | / IH | Time to Live | Protocol | Header Checksum | \ \ | Source EID | \ \ | Destination EID |

LISP TutorialIETF Vancouver Dec 2007Slide 11 What is LISP? Data plane –Design for encapsulation and tunnel router placement –Design for locator reachability –Data-triggered mapping service Control plane –Design for a scalable mapping service –Examples are: CONS, NERD, ALT, EMACS

LISP TutorialIETF Vancouver Dec 2007Slide 12 Some Brief Definitions IDs or EIDs –End-site addresses for hosts and routers at the site –They go in DNS records –Generally not globally routed on underlying infrastructure routable in site/local scope, so not “pure” EIDs –New namespace - essentially invisible to core routing/forwarding RLOCs or Locators –Infrastructure addresses for LISP routers and ISP routers –Hosts do not know about them –They are globally routed and aggregated along the Internet connectivity topology –Existing namespace - what routing/forwarding uses today

LISP TutorialIETF Vancouver Dec 2007Slide 13 Different Address Allocation Authorities Provider A /8 Provider B /8 R1R2 PI EID-prefix / ISP allocates 1 locator address per physical attachment point RIR allocates EID-prefixes for site-based address assignment Site Legend: EIDs -> Green Locators -> Red

LISP TutorialIETF Vancouver Dec 2007Slide 14 2 Network Elements Ingress Tunnel Router (ITR) –Finds EID to RLOC mapping –Encapsulates to Locators at source site Egress Tunnel Router (ETR) –Owns EID to RLOC mapping –Decapsulates at destination site

LISP TutorialIETF Vancouver Dec 2007Slide 15 Packet Forwarding Provider A /8 Provider B /8 S ITR D ETR Provider Y /8 Provider X /8 S1 S2 D1 D2 PI EID-prefix /8 PI EID-prefix /8 DNS: D -> EID-prefix: /8 Locator-set: , priority: 1, weight: 50 (D1) , priority: 1, weight: 50 (D2) Mapping Entry > > Legend: EIDs -> Green Locators -> Red > > >

LISP TutorialIETF Vancouver Dec 2007Slide 16 When the ITR has no Mapping ITR needs to obtain from ETR ITR sends Map Request (or Data Probe) ETR returns Map Reply

LISP TutorialIETF Vancouver Dec 2007Slide 17 Map Request & Reply Provider A /8 Provider B /8 S ITR D ETR Provider Y /8 Provider X /8 S1 S2 D1 D2 PI EID-prefix /8 PI EID-prefix /8 No Mapping Entry exists in ITR: LISP 1: route EID on Locator topology LISP 1.5: route EID on another topology > > Legend: EIDs -> Green Locators -> Red > > > > Map-Reply / , p: 1, w: , p: 1, w: 50

LISP TutorialIETF Vancouver Dec 2007Slide 18 Finding the ETR for an EID Need a scalable EID to Locator mapping lookup mechanism Network based solutions –Have query/reply latency –Can have packet loss characteristics –Or, have a full table like BGP does How does one design a scalable Mapping Service?

LISP TutorialIETF Vancouver Dec 2007Slide 19 Mapping Service Build a large distributed mapping database service Scalability paramount to solution How to scale: (state * rate) If both factors large, we have a problem –state will be O(10 10 ) hosts Aggregate EIDs into EID-prefixes to reduce state –rate must be small Damp locator reachability status and locator-set changes Each mapping system design does it differently

LISP TutorialIETF Vancouver Dec 2007Slide 20 Mapping Service Designs DNS – considered, many issues DHTs – considered, research pending CONS – new protocol, hybrid push+pull –Push EID-prefixes at top levels of hierarchy –Pull mappings from lower levels of hierarchy ALT – GRE/BGP based, current focus EMACS – like ALT, but multicast-based NERD – pure Push design

LISP TutorialIETF Vancouver Dec 2007Slide 21 Why so many? Difficult problem with tough questions: –Where to put the mappings? –How to find the mappings? –Is it a push model? –Is it a pull model? –Do you use secondary storage? –Do you use a cache? –What about securing the mapping entries? –How to secure control messages? –What about protecting infrastructure from DOS-attacks? –What about controlling packet loss and latency? Current focus is on LISP+ALT (see following)

LISP TutorialIETF Vancouver Dec 2007Slide 22 What are LISP 1, 2, 3, etc.? There is only one version of LISP The variants are ways the LISP data plane finds mappings –LISP 1 and LISP 1.5 use Data Probes –LISP 2 uses DNS - abandoned –LISP 3 are new Database Mapping Algorithms Current LISP mapping mechanisms –ALT and EMACS are LISP 1.5 variants –CONS, NERD and ALT are LISP 3.0 variants

LISP TutorialIETF Vancouver Dec 2007Slide 23 LISP+ALT Design Goals Use as much technology as reasonable –Use what works and no more Minimal memory impact on ITRs Provide data path to reduce latency Allow infrastructure players to achieve new revenue source

LISP TutorialIETF Vancouver Dec 2007Slide 24 LISP+ALT: What and How Hybrid push/pull approach –ALT pushes aggregates, LISP pulls specifics Hierarchical EID prefix assignment Aggregation of EID prefixes GRE-based overlay network BGP used to advertise EIDs on overlay Option for data-triggered Map-Replies

LISP TutorialIETF Vancouver Dec 2007Slide 25 LISP-ALT Routers and the LAT LISP+ALT routers form “Logical Alternative Topology” (LAT) –Interconnected by GRE tunnels –BGP used for EID prefix propagation –Logical hierarchy ITRs and ETRs connect at “edge” Who runs LISP+ALT routers? –ISPs, IXCs, RIRs, Neutral parties?

LISP TutorialIETF Vancouver Dec 2007Slide 26 GRE and BGP Operation EID prefixes originated into BGP at edge –by ETRs or LISP+ALT routers on behalf of site ITRs learn EID prefixes via BGP from LISP+ALT routers or use “default” –Map-Requests are forwarded into the LAT via first- hop LISP+ALT router(s) –LAT forwards Map-Request to “owning” ETR for EID prefix LISP+ALT routers aggregate prefixes “upward” in the alternative topology

LISP TutorialIETF Vancouver Dec 2007Slide 27 Data-Triggered Mappings ITRs have the option of forwarding data for “un-mapped” EIDs into LAT Data forwarded across LAT to ETR that originates the EID prefix LISP Map-Reply “triggered” from ETR to ITR, installed in ITR cache Following traffic uses cached RLOCs Scaling/performance issues

LISP TutorialIETF Vancouver Dec 2007Slide 28 The LISP Alternate Topology Legend: EIDs -> Green Locators -> Red GRE Tunnel TCP connection Physical link Data Packet Map-Reply ETR ITR EID-prefix /24 ITR EID-prefix /24 LAT EID-prefix / > > > EID-prefix / > > > ALT-rtr < /24 < /24 < / > >

LISP TutorialIETF Vancouver Dec 2007Slide 29 Hybrid Approaches Run ALT or CONS at lower levels –Have NERD push mappings at higher levels Use ALT or CONS devices as Default Mappers –They would re-encapsulate packets Use ALT and EMACS together on BGP topology –When groups get too large inject EID-prefix

LISP TutorialIETF Vancouver Dec 2007Slide 30 Interworking Deployability These combinations must be supported –Non-LISP site to non-LISP site Today’s Internet –LISP site to LISP site Encapsulation over IPv4 makes this work IPv4-over-IPv4 or IPv6-over-IPv4 –LISP-R site to non-LISP site When LISP site has PI or PA routable addresses –LISP-NR site to non-LISP site When LISP site has PI or PA non-routable addresses

LISP TutorialIETF Vancouver Dec 2007Slide 31 Interworking Deployability LISP-R site to non-LISP site –ITR at LISP site detects non-LISP site when no mapping exists Does not encapsulate packets –Return packets to LISP site come back natively since EIDs are routable –Same behavior as the non-LISP to non-LISP case LISP site acts as a non-LISP site

LISP TutorialIETF Vancouver Dec 2007Slide 32 Interworking Deployability LISP-NR site to a non-LISP site –ITR at LISP site detects non-LISP site when no mapping exists Does not encapsulate packets –For return packets to LISP site ITR translates to a source routable address so packets symmetrically sent natively PTR advertises NR prefixes close to non-LISP sites so return packets are encapsulated to ETR at LISP site

LISP TutorialIETF Vancouver Dec 2007Slide 33 Implementation Status cisco has a LISP prototype implementation –Started the week of IETF Prague (March 2007) OS platform is DC-OS –Linux underlying OS Hardware platform is Titanium –1 RU dual-core off-the-shelf PC with 7 GEs Based on draft-farinacci-lisp-05.txt Software switching only Supports both IPv4 and IPv6

LISP TutorialIETF Vancouver Dec 2007Slide 34 Prototype Functionality Supports ITR encap and ETR decap –Load-balancing among locators –Respects priority & weight per mapping Multiple EID-prefixes per site Support for locator reachability Multi-VRF support for BGP-over-GRE

LISP TutorialIETF Vancouver Dec 2007Slide 35 Prototype Functionality 240/4 support –To use as EIDs ‘glean-mapping’ support –And route-returnability check for verifying when an EID has moved to a new ITR LISP+ALT support –BGP advertises EID-prefixes over GRE tunnels –Data Probes sent over GRE topology –Map-Replies returned over GRE topology

LISP TutorialIETF Vancouver Dec 2007Slide 36 Prototype Testing Detailed Test Plan written and being executed against Multiple EID-prefix testing completed Multiple locator testing completed LISP+ALT testing underway Surprise: found a few bugs

LISP TutorialIETF Vancouver Dec 2007Slide 37 LISP-ALT Topology Dave’s Lab at UofO Vince’s Lab at cisco PI EID-prefix /8 Darrel’s Lab behind Comcast (L1,L2) L1 L1-L4 Legend: EIDs -> Green Locators -> Red eBGP-over-GRE PI EID-prefix / /16 Shep’s Lab at Shepfarm L1 PI EID-prefix / /16 PI EID-prefix / /16 PA-only Internet Dino’s Lab at cisco (non-LISP) ITR/ETR AS AS AS AS

LISP TutorialIETF Vancouver Dec 2007Slide 38 What’s Next for Prototype and Testing More complex, geographically-diverse topology Experiment with re-encap and recursive ITRs Analysis of latency for data probes on LAT More testing on map entry changing Think more about security mechanisms Think more and experiment with hybrid models –LISP+ALT with NERD –LISP+ALT with CONS

LISP TutorialIETF Vancouver Dec 2007Slide 39 What’s Next for Prototype and Testing Think more and experiment with movement Think more about aggregation and anti-entropy models Implement Address-Family crossover support –IPv6 EIDs over IPv4 Locators Implement Interworking Draft

LISP TutorialIETF Vancouver Dec 2007Slide 40 Status on Pilot Deployment Taking names for external pilot –Must be able to dedicate minimum of 1 day a week Shooting for Spring ‘08 start date Goals: –Test multiple implementations –Experience with operational practices –Learn about revenue making opportunities

LISP TutorialIETF Vancouver Dec 2007Slide 41 Wanna Play With Us? It’s been > one year since the IAB RAWS –Some of us committed to working in the IETF and IRTF in an open environment This is not a Cisco only effort –We have approached and recruited others –There are no patents (cisco has no IPR on this) –All documents are Internet Drafts We need designers We need implementers We need testers We need research analysis We want this to be an open effort! Contact us:

LISP TutorialIETF Vancouver Dec 2007Slide 42 Internet Drafts draft-farinacci-lisp-05.txt draft-meyer-lisp-cons-03.txt draft-lear-lisp-nerd-02.txt draft-fuller-lisp-alt-02.txt draft-curran-lisp-emacs-00.txt draft-lewis-lisp-interworking-00.txt

LISP TutorialIETF Vancouver Dec 2007Slide 43