Presentation is loading. Please wait.

Presentation is loading. Please wait.

Routing in Fat Trees (RIFT) Update draft-rift-rift-04 IETF 104, 3/19, Prague The RIFT Authors RIFT-04 Update, IETF 104.

Published byIda Lesmono Modified over 5 years ago

Similar presentations

Presentation on theme: "Routing in Fat Trees (RIFT) Update draft-rift-rift-04 IETF 104, 3/19, Prague The RIFT Authors RIFT-04 Update, IETF 104."— Presentation transcript:

1 Routing in Fat Trees (RIFT) Update draft-rift-rift-04 IETF 104, 3/19, Prague
The RIFT Authors RIFT-04 Update, IETF 104

2 Update from -03 Last version presented in Montreal -03
We went to -04 since then Specification Holes pretty much all closed now Lost of Open Source Code written and interop’ed Once or twice weekly online meetings has been held by the ‘core crew’ on ongoing basis Most meetings recorded and posted to mailing list RIFT-04 Update, IETF 104

3 Update -03/-04, Green is Done
Optimal Flooding Reduction and Load Balancing Fabric Bandwidth Balancing LIE FSM ZTP FSM Mobility Security Envelope BFD Interactions Multi-Plane Super-Spine Negative, Transitive Disaggregation Positive Disaggregation Multicast? Flooding FSM and Procedures RIFT-04 Update, IETF 104

4 Rough Statistics s on “core contributor” threads since last IETF: hundreds Commits on Open Source version since last IETF without branch merges: 380 (last time was 205) Lines on Open Source version patch since last IETF: 24’622 (last time was 15’897) Diff Size Between -03 and -04 specification: 5’683 lines of text (last time was 6’574) Objects on encoding model changed 3 (last time was 7) Ideas Discussed and Scrapped: Dozens and dozens ;-) RIFT-03 Update, IETF 103 RIFT-04 Update, IETF 104

5 What Changed ? Security Envelope and Security Model
Packet Numbering (Debugging and Loss Detection) Sequence Number Arithmetic Link Capabilities More Tightening of Flooding Rules Clarifications on Flood Reduction Based on Open Source Implementation Flooding In-Cast Reduction Explanation RIFT-04 Update, IETF 104

6 Security Model Port-Association Model Node-Association Model
^ /\ | /|\ / \ | | / \ | | / PAM \ | Increasing / \ Increasing Integrity Flexibility & / NAM \ & Increasing Less Provisioning / FAM \ Configuration | | | / Level Provisioning \ | | \|/ | / Zero Configuration \ v Port-Association Model Node-Association Model Fabric-Association Model Can prevent all known attacks Lifetime protected Nonce exchange prevents replay Origin integrity Does NOT Provide confidentiality Provide a chain-of-trust RIFT-04 Update, IETF 104

7 Security Envelope RIFT Magic Outer Key Envelope
UDP Header: | Source Port | RIFT destination port | | UDP Length | UDP Checksum | | RIFT MAGIC | Packet Number | Outer Security Envelope Header: | Reserved | RIFT Major | Outer Key ID | Fingerprint | | | Version | | Length | | | ~ Security Fingerprint covers all following content ~ | Nonce Local | Nonce Remote | | Remaining TIE Lifetime (all 1s in case of LIE) | TIE Origin Security Envelope Header: | Inner Key ID | Fingerprint | | | Length | Serialized RIFT Model Object ~ Serialized RIFT Model Object ~ Security Envelope RIFT Magic Outer Key Envelope Generated link by link Protected by Nonces, encapsulates TIE Lifetime Inner Key Envelope (only on TIEs) Protects TIE TIE can be passed through opaquely without deserialization Allows to extend the model with optional elements without breaking backwards compatibility RIFT-04 Update, IETF 104

8 New Link Capabilites Link BFD available or not
RIFT-04 Update, IETF 104

9 Final Cases and Tightening of Flooding Rules
Open Source Implementors ask lots of questions ;-) Lifetime difference where lifetimes equal specified (60 secs) Last case of flooding inconsistency Only occurs if 3 levels reboot in a specific sequence and the bottom generates a lower number on its N-TIE that the biggest held and middle cannot get Cosmetic change that asks a node to flush all other TIEs than its own on level change Was leading to harmless but also useless TIEs hanging in a node until expiry RIFT-04 Update, IETF 104

10 Flooding Incast Solved and Explained
RIFT-04 Update, IETF 104

11 Smaller Stuff Packet numbering on each packet type
Optionally increasing on each sent packet Allows detection of losses on remote side and throttling Sequence Number Arithmetic On TIE Types Sequence Numbers Type Tightening Types got smaller to save space (we don’t be too concerned about it but wasting if we can be more frugal is not wise) Seq# Packet Numbers Level Type Version Types Unsolicited, optional downstream label RIFT-04 Update, IETF 104

12 THANK YOU FOR YOUR ATTENTION
RIFT-04 Update, IETF 104

Download ppt "Routing in Fat Trees (RIFT) Update draft-rift-rift-04 IETF 104, 3/19, Prague The RIFT Authors RIFT-04 Update, IETF 104."

Similar presentations

Overlay Transport Virtualization (OTV)

Overlay Transport Virtualization (OTV)
IPv6 The Next Generation Presented by Anna La Mura Jens Waldecker.

IPv6 The Next Generation Presented by Anna La Mura Jens Waldecker.
IPv4 - The Internet Protocol Version 4

IPv4 - The Internet Protocol Version 4
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.

1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
MOBILITY SUPPORT IN IPv6

MOBILITY SUPPORT IN IPv6
By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.

By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.
Ext3 Journaling File System “absolute consistency of the filesystem in every respect after a reboot, with no loss of existing functionality” chadd williams.

Ext3 Journaling File System “absolute consistency of the filesystem in every respect after a reboot, with no loss of existing functionality” chadd williams.
© 2007 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved.1 Computer Networks and Internets with Internet Applications, 4e By Douglas.

© 2007 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved.1 Computer Networks and Internets with Internet Applications, 4e By Douglas.
Aodv. Distance vector routing Belman principle AODV - overview Similar to DSR –On demand –Route request when needed and route reply when a node knows.

Aodv. Distance vector routing Belman principle AODV - overview Similar to DSR –On demand –Route request when needed and route reply when a node knows.
TRILL over IP draft-ietf-trill-over-ip-01.txt IETF 91, Honolulu Margaret Wasserman Donald Eastlake, Dacheng Zhang.

TRILL over IP draft-ietf-trill-over-ip-01.txt IETF 91, Honolulu Margaret Wasserman Donald Eastlake, Dacheng Zhang.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 9 Internet Control Message.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 9 Internet Control Message.
IETF 68, MPLS WG, Prague P2MP MPLS-TE Fast Reroute with P2MP Bypass Tunnels draft-leroux-mpls-p2mp-te-bypass-01.txt J.L. Le Roux (France Telecom) R. Aggarwal.

IETF 68, MPLS WG, Prague P2MP MPLS-TE Fast Reroute with P2MP Bypass Tunnels draft-leroux-mpls-p2mp-te-bypass-01.txt J.L. Le Roux (France Telecom) R. Aggarwal.
Layer 3: Internet Protocol.  Content IP Address within the IP Header. IP Address Classes. Subnetting and Creating a Subnet. Network Layer and Path Determination.

Layer 3: Internet Protocol.  Content IP Address within the IP Header. IP Address Classes. Subnetting and Creating a Subnet. Network Layer and Path Determination.
Stateless Transport Tunneling draft-davie-stt-01.txt Bruce Davie, Jesse Gross, Igor Gashinsky et al.

Stateless Transport Tunneling draft-davie-stt-01.txt Bruce Davie, Jesse Gross, Igor Gashinsky et al.
Attacking on IPv6 W.lilakiatsakun Ref: ipv6-attack-defense-33904http://www.sans.org/reading-room/whitepapers/protocols/complete-guide-

Attacking on IPv6 W.lilakiatsakun Ref: ipv6-attack-defense-33904http://
Mobile IP Definition: Mobile IP is a standard communication protocol, defined to allow mobile device users to move from one IP network to another while.

Mobile IP Definition: Mobile IP is a standard communication protocol, defined to allow mobile device users to move from one IP network to another while.
IPSec – IP Security Protocol By Archis Raje. What is IPSec IP Security – set of extensions developed by IETF to provide privacy and authentication to.

IPSec – IP Security Protocol By Archis Raje. What is IPSec IP Security – set of extensions developed by IETF to provide privacy and authentication to.
OSPF WG Security Extensions for OSPFv2 when using Manual Keying Manav Bhatia, Alcatel-Lucent Sam Hartman, Huawei Dacheng Zhang, Huawei IETF 80, Prague.

OSPF WG Security Extensions for OSPFv2 when using Manual Keying Manav Bhatia, Alcatel-Lucent Sam Hartman, Huawei Dacheng Zhang, Huawei IETF 80, Prague.
1 cellhost-ipv6-52.ppt/ December 13, 2001 / John A. Loughney Minimum IPv6 Functionality for a Cellular Host John Loughney, Pertti Suomela, Juha Wiljakka,

1 cellhost-ipv6-52.ppt/ December 13, 2001 / John A. Loughney Minimum IPv6 Functionality for a Cellular Host John Loughney, Pertti Suomela, Juha Wiljakka,
DVMRP Distance Vector Multicast Routing Protocol Jerad Bates UMBC - Fall 2006.

DVMRP Distance Vector Multicast Routing Protocol Jerad Bates UMBC - Fall 2006.

Similar presentations

Ads by Google