Presentation is loading. Please wait.

Presentation is loading. Please wait.

Extended Attributes RADEXT - IETF 81 Alan DeKok FreeRADIUS Avi Lior Bridgewater.

Published byRalph Bennett Modified over 9 years ago

Similar presentations

Presentation on theme: "Extended Attributes RADEXT - IETF 81 Alan DeKok FreeRADIUS Avi Lior Bridgewater."— Presentation transcript:

1 Extended Attributes RADEXT - IETF 81 Alan DeKok FreeRADIUS Avi Lior Bridgewater

2 RADEXT - IETF 81 Motivation RADEXT discussions have been long We need a solution soon (i.e. within 2-3 years) Other proposals were complex Attribute audit shows the needs to be simple

3 RADEXT - IETF 81 One Octet of Change Type 1 octet Length 1 octet Ext-Type 1 octet Value … 1..252 octets Type 1 octet Length 1 octet Value … 1..252 octets Now Extended format

4 RADEXT - IETF 81 That’s pretty much it. “Steal” one octet from “Value” for extended types Allocate 4 attributes of this format (241..244) 256*4 =~ 1K new attributes Should be enough for the forseeable future

5 RADEXT - IETF 81 Grouping Flexible grouping by defining a TLV data type Already in WiMAX, 3GPP2, and other SDOs / vendors. Code is widely deployed in production systems TLV-Type 1 octet TLV-Length 1 octet Value … 1..253 octets

6 RADEXT - IETF 81 TLV Properties Can carry any existing or future data type Including TLVs. Multiple TLVs can be carried in one Ext-Attr Nested or concatenated Nesting is limited only by TLV-Length field 253 / 3 =~ 80 Practicalities show a depth of 5 is sufficient

7 RADEXT - IETF 81 Naming: Not just 8 bits We need to name the new attribute types. Use OID style “dotted number” 241.{1-255} 241.1 “This-Is-A-New-attr” Versus 1 “User-Name” Naming applies only for the IANA registry

8 RADEXT - IETF 81 TLV Naming Leverage the same “dotted number” notation! 241.1.2 RADIUS Attr 241, of type “ext-attr” Extended Attr 1, data type “tlv” TLV 2, data type “integer” Allows for ~250 fields in a struct Extends type space past 1K attributes

9 RADEXT - IETF 81 “Long” Attributes Leverage the Ext-Type format, and add “flags” Allocate 2 attributes of this type (245, 246) Type 1 octet Length 1 octet Ext-Type 1 octet Flags 1 octet Value … 1..251 octets Extended format with flags

10 RADEXT - IETF 81 Flags 1 bit of “C” for Continuation Same meaning as existing ext-attrs / WiMAX 7 bits of “reserved” We have no idea what to do with these It’s likely that these will never be used

11 RADEXT - IETF 81 Additional notes 24{1-6}.26 are VSAs, with fixed format Allows for many more standardized VSAs 24{1-6}.{241-255} are reserved No “experimental” or “implementation- specific” They have not been useful Detailed instructions for IANA are included

12 RADEXT - IETF 81 Implementations Two interoperable implementations: In FreeRADIUS “master” branch http://git.freeradius.org IEA Software http://www.iea-software.com/products/radlogin4.cfm BSD licensed library will be released this year Looking for more!

13 RADEXT - IETF 81 Summary ~1.5K new attributes (many 1000’s with TLVs) Grouping via TLVs (proven to work in SDOs) Standard way to have “long” attrs (to 4K of data) Vendors have ~1.5K new VSAs to work with draft includes simple test encoder Helps with interoperability checks

14 RADEXT - IETF 81 Questions? Who has read the draft? Any feedback? Who will implement it soon?

Download ppt "Extended Attributes RADEXT - IETF 81 Alan DeKok FreeRADIUS Avi Lior Bridgewater."

Similar presentations

BGP AS Number Exhaustion Geoff Huston Research activity supported by APNIC March 2003.

BGP AS Number Exhaustion Geoff Huston Research activity supported by APNIC March 2003.
TRILL Header Extension Simplifications Donald Eastlake 3 rd Huawei Technologies 1July 2011.

TRILL Header Extension Simplifications Donald Eastlake 3 rd Huawei Technologies 1July 2011.
IETF draft-jeyatharan-mext-flow-tftemp-reference-01 Mohana Jeyatharan panasonic.com Chan-Wah Ng 1 IETF.

IETF draft-jeyatharan-mext-flow-tftemp-reference-01 Mohana Jeyatharan panasonic.com Chan-Wah Ng 1 IETF.
Overview of draft-ietf-sidr-roa-format-01.txt Matt Lepinski BBN Technologies.

Overview of draft-ietf-sidr-roa-format-01.txt Matt Lepinski BBN Technologies.
Uniform Resource Names: Deploying A New Namespace Michael Mealling 19 August 1999.

Uniform Resource Names: Deploying A New Namespace Michael Mealling 19 August 1999.
L3VPN WG2012-Jul-301 MVPN/BGP Support for Customers That Use mLDP RFCs 6513/6514: support Multicast VPN Service for customers that use PIM provide extensive.

L3VPN WG2012-Jul-301 MVPN/BGP Support for Customers That Use mLDP RFCs 6513/6514: support Multicast VPN Service for customers that use PIM provide extensive.
KMIP Vendor Extension Management KMIP supports ‘extensions’ but provides no mechanism for coordination of values between clients and servers or between.

KMIP Vendor Extension Management KMIP supports ‘extensions’ but provides no mechanism for coordination of values between clients and servers or between.
ICN Packet Format Design Requirements presented by Alex Afanasyev Alex Afanasyev (UCLA), Ravi Ravindran (Huawei), GQ Wang (Huawei), Lan Wang (University.

ICN Packet Format Design Requirements presented by Alex Afanasyev Alex Afanasyev (UCLA), Ravi Ravindran (Huawei), GQ Wang (Huawei), Lan Wang (University.
OSPF Operator Defined TLVs for Agile Service Deployment (previous name self-defined TLVs) draft-chunduri-ospf-operator-defined-tlvs-00 (previously: draft-chunduri-ospf-self-defined-sub-tlvs-03)

OSPF Operator Defined TLVs for Agile Service Deployment (previous name self-defined TLVs) draft-chunduri-ospf-operator-defined-tlvs-00 (previously: draft-chunduri-ospf-self-defined-sub-tlvs-03)
Format for the Session Initiation Protocol (SIP) Common Log Format (CLF) draft-ietf-sipclf-format-01 (G. Salgueiro, V. Gurbani, and A. B. Roach) Presenter:

Format for the Session Initiation Protocol (SIP) Common Log Format (CLF) draft-ietf-sipclf-format-01 (G. Salgueiro, V. Gurbani, and A. B. Roach) Presenter:
A RADIUS Attribute for SAML Messages draft-ietf-abfab-aaa-saml-01 ABFAB, IETF 80.

A RADIUS Attribute for SAML Messages draft-ietf-abfab-aaa-saml-01 ABFAB, IETF 80.
RADIUS Accounting Extensions on Traffic Statistics draft-yeh-radext-ext-traffic-statistics-01 + IETF 82 – Radext Nov. 14 th, 2011 Leaf Y. Yeh Huawei Technologies.

RADIUS Accounting Extensions on Traffic Statistics draft-yeh-radext-ext-traffic-statistics-01 + IETF 82 – Radext Nov. 14 th, 2011 Leaf Y. Yeh Huawei Technologies.
Dean Cheng Jouni Korhonen Mehamed Boucadair

Dean Cheng Jouni Korhonen Mehamed Boucadair
IETF SFC: Service Chain Header draft-zhang-sfc-sch-01

IETF SFC: Service Chain Header draft-zhang-sfc-sch-01
Draft-ietf-ospf-segment-routing-extensions-01 draft-psenak-ospf-segment-routing-ospfv3-extension- 02 IETF 88, November 3-8, 2013 P. Psenak, S.Previdi,

Draft-ietf-ospf-segment-routing-extensions-01 draft-psenak-ospf-segment-routing-ospfv3-extension- 02 IETF 88, November 3-8, 2013 P. Psenak, S.Previdi,
Handling MPLS-TP OAM Packets Targeted at Internal MIPs draft-farrel-mpls-tp-mip-mep-map-04 H. Endo, A. Farrel, Y. Koike, M. Paul, R. Winter.

Handling MPLS-TP OAM Packets Targeted at Internal MIPs draft-farrel-mpls-tp-mip-mep-map-04 H. Endo, A. Farrel, Y. Koike, M. Paul, R. Winter.
IS-IS WG - IETF 71 Summary Route with Detailed Reachability George Swallow, Clarence Filsfils, Stefano Previdi

IS-IS WG - IETF 71 Summary Route with Detailed Reachability George Swallow, Clarence Filsfils, Stefano Previdi
Dean Cheng Jouni Korhonen Mehamed Boucadair

Dean Cheng Jouni Korhonen Mehamed Boucadair
BGP Link-State extensions for Segment Routing

BGP Link-State extensions for Segment Routing
Extended Attributes RADEXT - IETF 79 Alan DeKok FreeRADIUS Avi Lior Bridgewater.

Extended Attributes RADEXT - IETF 79 Alan DeKok FreeRADIUS Avi Lior Bridgewater.

Similar presentations

Ads by Google