[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[RAM] Re: LISP-01 I-D - UDP vs. IP-in-IP encapsulation

To: ram at iab.org
Subject: [RAM] Re: LISP-01 I-D - UDP vs. IP-in-IP encapsulation
From: Robin Whittle <rw at firstpr.com.au>
Date: Fri, 06 Jul 2007 20:35:29 +1000
Cc:
In-reply-to: <F8DC5C83-835E-445C-B5CB-7E1B6217A2D6@cisco.com>
List-archive: <http://www1.ietf.org/pipermail/ram>
List-help: <mailto:ram-request@iab.org?subject=help>
List-id: Routing and Addressing Mailing List <ram.iab.org>
List-post: <mailto:ram@iab.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=unsubscribe>
Organization: First Principles
References: <466FFEB8.9080701@cisco.com> <76EB0C5F-16DF-42FB-ADEC-680AE6E241 54@muada.com> <468A4554.5030105@cisco.com><B0B9C056-8D8B-45EA-BC8F-65910B1 1F2A0@cisco.com><468C7643.6040305@firstpr.com.au> <37C01E2C-1F92-4AA1-A247-136EFA203F35@cisco.com> <21051657-BA9F-4DEE-9425-1DF772245212@it.uc3m.es> <F8DC5C83-835E-445C-B5CB-7E1B6217A2D6@cisco.com>
User-agent: Thunderbird 2.0.0.4 (Windows/20070604)

Dino wrote:

> That is correct. We are using UDP encapsulation with a LISP
> header for the following reasons:
>
>  o Get through firewalls
>  o ITR hashes on inner header to produce a source port LAG
>    router can hash on
>  o Can carry nonce for ETR anti-spoofing
>  o Can carry Locator reachability bits

With Ivip, there is no TE functionality in the ITR, no
reachability detection of the ETR and no signalling one way or the
other between ITR and ETR.  All that happens is the packet is
tunneled to an IP address which the end-user selects - presumably
the address of an ETR.  So Ivip doesn't need the last three things.

I don't know enough about firewalls in all the various situations
to know what problems IP-in-IP would suffer.

What sort of firewalls would an ETR be located behind?

If an edge network wanted to put an ETR behind a firewall, maybe
they should configure their firewall to handle a major
architectural aspect of getting packets to the ETR - the simplest
and most standardised of which is IP-in-IP, as far as I know.

I am not arguing against UDP encapsulation, except that it is
longer, since it requires a UDP header too.  Ivip could easily use
UDP instead of IP-in-IP.

By the way, links to the current LISP I-Ds are at:

  http://www.firstpr.com.au/ip/sram-ip-forwarding/#LISP

The RRG wiki:

  http://www3.tools.ietf.org/group/irtf/trac/wiki/RoutingResearchGroup

doesn't yet point to all three LISP I-Ds.

 - Robin

_______________________________________________
RAM mailing list
RAM at iab.org
https://www1.ietf.org/mailman/listinfo/ram

References:
- [RAM] draft-lear-lisp-nerd-01
  - From: Eliot Lear
- Re: [RAM] draft-lear-lisp-nerd-01
  - From: Eliot Lear
- [RAM] LISP-01 I-D
  - From: Robin Whittle
- [RAM] Re: LISP-01 I-D
  - From: Dino Farinacci
- Re: [RAM] Re: LISP-01 I-D
  - From: marcelo bagnulo braun
- Re: [RAM] Re: LISP-01 I-D
  - From: Dino Farinacci

Prev by Date: Re: [RAM] 5 Database <--> ITR push, pull and notify
Next by Date: [RAM] question about LISP v1
Previous by thread: Re: [RAM] Re: LISP-01 I-D
Next by thread: RE: [RAM] Re: LISP-01 I-D
Index(es):
- Date
- Thread