Hi, > It is clear that any solution which requires a temporary ip-address > will create more turn on a BRAS, and the subscriber setup rate will > very likely go down compared to a solution which will finish > authentication before ip-address allocation.
Can you please elaborate on the impact of using a link-local or DHCP-assigned IP address prior to running access authentication? Details would help us understand the level of impact, and let us see if we can identify any remedies. Thanks. Alper > > Peter > > > -----Original Message----- > > From: Alper Yegin [mailto:[EMAIL PROTECTED] > > Sent: 12. november 2007 14:34 > > To: 'Eric Voit (evoit)'; 'Ralph Droms (rdroms)' > > Cc: [EMAIL PROTECTED]; 'Internet Area' > > Subject: RE: [Int-area] Re: [dhcwg] Discussion of dhc > > WGrecharteringforDHCPauthentication > > > > > Doubling the load on the DHCP servers probably will not > > change the game. > > > > > > The extra load on the L3 Edge/BRAS could easily change the game (and > > > hence the emails from Peter (Redback) & Bill (Juniper)). > > > > Hmmm... I followed up this feedback with Bill Welch in more technical > > detail, and if you remember it ended with a "And yes your > > observation is > > correct, the DHCP auth solution with EAP has the same issues." > > > > http://www1.ietf.org/mail-archive/web/int-area/current/msg01129.html > > > > Alper > > > > > > > > > > The extra complexity with the CPE has always been my > > biggest concern, > > > and is why I entered the thread many weeks ago. > > > > > > Eric > > > > > > > > > > From: Ralph Droms, November 07, 2007 7:06 AM > > > > > > > > Eric - I was mostly responding to Ric's description of the > > > > excessive load on DHCP servers in the short-lease/long-lease > > > > scenario. As I understand the short-lease/long-lease > > > > scenario, if we assume that authentication takes place in the > > > > short-lease window, the load on the DHCP servers would > > > > double. Significant, sure, but not game-changing in the way > > > > Ric implied. > > > > > > > > - Ralph > > > > > > > > On Nov 6, 2007, at Nov 6, 2007,10:39 PM, Eric Voit (evoit) wrote: > > > > > > > > >> From: Ralph Droms, November 05, 2007 9:37 PM > > > > >> > > > > >> Does the short lease/long lease scenario scale the DHCP > > > > server load > > > > >> by more than a factor of two? > > > > > > > > > > Ralph, > > > > > > > > > > The messages the DHCP servers will double. > > > > > The messages with L3 edge (BRAS) will more than double. > > > > > The messages with the CPE will more than triple. > > > > > > > > > > (Below is some rough math. I might have missed a message or > > > > two, but > > > > > the general trend is what I am trying to show.) > > > > > > > > > > ----------------------------------------- > > > > > CPE Messages > > > > > ----------------------------------------- > > > > > DHCP Auth, assuming a 2 message EAP Method, the messages > > > > used by EAP > > > > > would be equal > > > > > + 6 Messages (draft-pruss-dhcp-auth-dsl-01) > > > > > > > > > > PANA+DHCP Method > > > > > + 4 Messages: DHCP 1st IP address > > > > > ~ (+2) DHCP renews per 60 seconds until authenticated > > > > > + 11 Messages PANA with BRAS (draft-ietf-pana-pana-18, > > section 4.1) > > > > > + 4 Messages: DHCP 2nd IP address > > > > > > > > > > ----------------------------------------- > > > > > L3 Edge (BRAS) Messages > > > > > ----------------------------------------- > > > > > DHCP Auth, EAP Method > > > > > + 8 Messages (draft-pruss-dhcp-auth-dsl-01) > > > > > > > > > > PANA Method > > > > > + 4 Messages: DHCP 1st IP address > > > > > ~ (+2) DHCP renews per 60 seconds until authenticated > > > > > + 11 Messages PANA with CPE (draft-ietf-pana-pana-18, > > section 4.1) > > > > > + 2 messages min for validating with EAP Server > > > > > + 4 Messages: DHCP 2nd IP address > > > > > > > > > > ----------------------------------------- > > > > > L2 Edge (DSLAM or Access Switch) Messages > > > > > ----------------------------------------- > > > > > DHCP Auth, EAP Method > > > > > + 6 Messages snooped (draft-pruss-dhcp-auth-dsl-01) > > > > > > > > > > PANA+DHCP Method > > > > > + 4 Messages Snooped: DHCP 1st IP address > > > > > ~ (+2) DHCP renews per 60 seconds until authenticated If > > > > snooping: 11 > > > > > Messages PANA (draft-ietf-pana-pana-18, section 4.1) Else > > > > if explicit > > > > > policy distribution like ANCP, ~4 messages (one policy > > per address) > > > > > + 4 Messages Snooped: DHCP 2nd IP address > > > > > > > > > > > > > > > Eric > > > > > > > > > > > > > > >> - Ralph > > > > >> > > > > > > > > > > > > _______________________________________________ > > > > Int-area mailing list > > > > [email protected] > > > > https://www1.ietf.org/mailman/listinfo/int-area > > > > > > > > > > > > > _______________________________________________ > > > Int-area mailing list > > > [email protected] > > > https://www1.ietf.org/mailman/listinfo/int-area > > > > > > > > _______________________________________________ > > Int-area mailing list > > [email protected] > > https://www1.ietf.org/mailman/listinfo/int-area > > > _______________________________________________ Int-area mailing list [email protected] https://www1.ietf.org/mailman/listinfo/int-area
