Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Owen DeLong]

OK... As entertaining as the debate on the definition of multihomed host
is so far, I'd like to point out that on NANOG, we are generally NOT
concerned with that term.  The term that we are most interested in
is multihomed network.

I would submit that host multihoming is irrelevant to the charter of
NANOG and that the definition of a multihomed network is a network
or collection of networks that meet the definition of an autonomous
system (whether an ASN is assigned to them or not) which are
topologically adjacent to more than one network or collection
of networks which each meet the definition of an autonomous
system, but, are not, themselves, a single autonomous system
or part of the same autonomous system as the network in question.


To attempt to translate that into English:

Autonomous System:  One or more networks which are topologically
contiguous and share a common routing policy.

Whether an ASN is assigned to an Autonomous System or not is a different
matter.

If an autonomous system is topologically adjacent to two or more other
autonomous system, then, the networks within that autonomous system
can generally be said to be multihomed for the purposes of discussions
on NANOG.  Technically, the AS is multihomed, but, we often use the
term network to mean AS or network.

Owen


pgpjv0ZMZNrfL.pgp
Description: PGP signature

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[william(at)elan.net]

On Mon, 24 Oct 2005, Owen DeLong wrote:


Yes... The network is still multihomed, but, instead of using routing to
handle the source/dest addr. selection, it is managed at each end host
independent of the routers.  The routers function sort of like the
network is single homed.  It's very convoluted.


That is to say the least. Offices who want to be multihomed would want
to do it once for all the computers there using one device like they
now can do with a router. Web farms would similarly want to do it for 
all the servers there again as they now do with one router or 
load-balancer, etc. Managing it if multihoming is entirely host-based 
would be hard (I note that for office multihoming you could potentially 
create one router that would do shim6 on its out interfaces and would do
NAT between that and its inside network - but we don't want NAT for ipv6 
if I understand IETF and IAB direction).


So while I really do think that we need some-kind of multi6 design which 
works for small multi-homing networks without need for them to have to

use ASN and have their routes in global BGP table (leaving all that
primarily to NSPs with /32 and larger as IETF envisioned), the current
shim6 design does not seem properly done to be usable for that audience
and as somebody noticed yesterday it would instead be great for multi-dsl 
users, especially gamers and p2p.


Now if we resurrected A6 with its ability to separately enter ip address 
with host and network parts at the dns level - then we're at least part 
the way done as far as multi6 multi-homing setup in dns for entire network 
at once. But I still don't see easy way to do it for the device management
and yet another new protocol would probably be needed for automatic 
assignment of locators and secondary ipv6 addresses (BTW - did I hear 
right that there is going to be new WG related to MIP6 to work out issues 
of assignment and using of multiple ipv6 addresses and interfaces - IETF 
seems to be doing lots of things in parallel at this potential L3.5 layer 
that could be done lot better together as part of proper TCP/IP redesign).


---
William Leibzon
Elan Networks
[EMAIL PROTECTED]

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Pekka Savola]

On Mon, 24 Oct 2005 [EMAIL PROTECTED] wrote:

A single tier-2 ISP who uses BGP multihoming with several
tier 1 ISPs can provide multihoming to it's customers
without BGP. For instance, if this tier-2 has two PoPs
in a city and peering links exist at both PoPs and they
sell a resilient access service where the customer has
two links, one to each PoP, then it is possible to route
around many failures. This is probably sufficient for most
people and if the tier-2 provider takes this service seriously
they can engineer things to make total network collapse exteremely
unlikely.


From RFC 3582, this is not multihoming (see the defs below). The above 
is referred to as multi-connecting or multi-attaching (also see 
RFC 4116).


I agree, this is sufficient for many sites.  Especially in academic 
world, many universities are just multi-connected, trusting the 
stability of their NREN's backbone and transit providers.  Lots of 
commercial sites do it too, but some are wary due to events like 
L3/Cogent, L3 backbone downtime, etc.


.

A multihomed site is one with more than one transit provider.
Site-multihoming is the practice of arranging a site to be
multihomed.

and:

A transit provider operates a site that directly provides
connectivity to the Internet to one or more external sites.  The
connectivity provided extends beyond the transit provider's own site.
A transit provider's site is directly connected to the sites for
which it provides transit.

--
Pekka Savola You each name yourselves king, yet the
Netcore Oykingdom bleeds.
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Robert Bonomi]

 From [EMAIL PROTECTED]  Mon Oct 24 15:33:02 2005
 Date: Mon, 24 Oct 2005 13:31:17 -0700
 Subject: Re: What is multihoming was (design of a real routing v. endpoint id
  seperation)

 Stephen Sprunk wrote:
 [snip]

  Other people use this term in very different ways. To some people
  it means using having multiple IP addresses bound to a single
  network interface. To others it means multiple websites on one
  server.
  
  
  That is virtual hosting in a NANOG context.  Some undereducated MCSEs 
  might call it multihoming, but let's not endorse that here.

 Unfortunately, this is a common and standards blessed way to refer to
 any host with multiple interfaces/addresses (real or virtual). For example,
 from the Terminology section, 1.1.3, of RFC1122, Requirements for
 Internet Hosts -- Communication Layers, says,

   Multihomed
A host is said to be multihomed if it has multiple IP
addresses.  For a discussion of multihoming, see Section
3.3.4 below.


*sigh*  Multi-homing simply means 'having external connections to more than 
one network' -- be it a network with multiple, disjoint, ingress/egress paths,
or a host with interfaces (real or virtual) on distinct LAN subnets (even if
those subnets are agregated into a single net somewhere upstream.

A host with multiple adresses utilizing the _same_ netblock/netmask _should_
_not_ be called multi-homed (because there is only one path to that host), it
is simply a single-homed host with multiple identities.  might be called
poly-ip-any or some such.  grin

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Joe Abley]

On 25-Oct-2005, at 05:56, Robert Bonomi wrote:


*sigh*  Multi-homing simply means [...]


As became clear when we wrote the draft that became RFC 3582,  
apparently simple terms such as transit provider and multi-homing  
mean surprisingly different things to different people.


The important thing is not who is right, and not which definition is  
the best, but that everybody uses the same definitions so that they  
can talk to each other without running around in circles.



Joe

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Crist Clark]

Robert Bonomi wrote:

From [EMAIL PROTECTED]  Mon Oct 24 15:33:02 2005
Date: Mon, 24 Oct 2005 13:31:17 -0700
Subject: Re: What is multihoming was (design of a real routing v. endpoint id
seperation)

Stephen Sprunk wrote:
[snip]



Other people use this term in very different ways. To some people
it means using having multiple IP addresses bound to a single
network interface. To others it means multiple websites on one
server.



That is virtual hosting in a NANOG context.  Some undereducated MCSEs 
might call it multihoming, but let's not endorse that here.


Unfortunately, this is a common and standards blessed way to refer to
any host with multiple interfaces/addresses (real or virtual). For example,
from the Terminology section, 1.1.3, of RFC1122, Requirements for
Internet Hosts -- Communication Layers, says,

 Multihomed
  A host is said to be multihomed if it has multiple IP
  addresses.  For a discussion of multihoming, see Section
  3.3.4 below.




*sigh*  Multi-homing simply means 'having external connections to more than 
one network' -- be it a network with multiple, disjoint, ingress/egress paths,

or a host with interfaces (real or virtual) on distinct LAN subnets (even if
those subnets are agregated into a single net somewhere upstream.

A host with multiple adresses utilizing the _same_ netblock/netmask _should_
_not_ be called multi-homed (because there is only one path to that host), it
is simply a single-homed host with multiple identities.  might be called
poly-ip-any or some such.  grin


Depends who you ask. Again, RFC1122 says (section 1.1.1),

 A host is generally said to be multihomed if it has more than
 one interface to the same or to different networks.

And also section 3.3.4.1,

A multihomed host has multiple IP addresses, which we may
think of as logical interfaces.  These logical interfaces
may be associated with one or more physical interfaces, and
these physical interfaces may be connected to the same or
different networks.

As far as a multihomed host is concerned, RFC1122 sure seems to call
anything with multiple IPs multihomed. Multihomed is a trait of the host
independent of any network topology around the host.

But whatever. It just means people need to be clear what they are talking
about when they say multihomed. As is clear from this thread, there is
not clear agreement on what the precise meaning is.
--
Crist J. Clark   [EMAIL PROTECTED]
Globalstar Communications(408) 933-4387

What is multihoming was (design of a real routing v. endpoint id seperation)

[Michael . Dillon]

  the market wouldn't
  feel the need to have to dual home.

 the internet model is to expect and route around failure.

Seems to me that there is some confusion over the meaning
of multihoming. We seem to assume that it means BGP multihoming
wherein a network is connected to multiple ASes and uses BGP
to manage traffic flows. 

Other people use this term in very different ways. To some people
it means using having multiple IP addresses bound to a single
network interface. To others it means multiple websites on one
server.

And to many consumers of network access it is a synonym for
redundancy or resiliency or something like that. BGP multihoming
is not the only way to satisfy the consumers of network access
and design a solution in which failure is expected and it is
possible for the customer to route around failure.

A single tier-2 ISP who uses BGP multihoming with several
tier 1 ISPs can provide multihoming to it's customers 
without BGP. For instance, if this tier-2 has two PoPs
in a city and peering links exist at both PoPs and they
sell a resilient access service where the customer has
two links, one to each PoP, then it is possible to route
around many failures. This is probably sufficient for most
people and if the tier-2 provider takes this service seriously
they can engineer things to make total network collapse exteremely
unlikely.

Another way in which consumer's could be multihomed would be 
to have their single access link going to an Internet exchange
where there is a choice of providers. If one provider's network
fails, they could phone up another provider at the exchange and
have a cross-connect moved to restore connectivity in an hour or
so. This will satisfy many people.

Of course there are many variations on the above theme. This is
an issue with multiple solutions, some of which will be superior 
to BGP multihoming. It's not a simple black or white scenario.
And being a tier-1 transit-free provider is not all good. It may
give some people psychological comfort to think that they are in
the number 1 tier, but customers have good reason to see tier-1
transit-free status as a negative.

--Michael Dillon

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Owen DeLong]

--On October 24, 2005 10:01:21 AM +0100 [EMAIL PROTECTED] wrote:




 the market wouldn't
 feel the need to have to dual home.



the internet model is to expect and route around failure.


Seems to me that there is some confusion over the meaning
of multihoming. We seem to assume that it means BGP multihoming
wherein a network is connected to multiple ASes and uses BGP
to manage traffic flows.


As I understand it, the term multihoming in a network operations
context is defined as:

(A multihomed network is)
A network which is connected via multiple distinct
paths so as to eliminate or reduce the likelihood that a single
failure will significantly reduce reachability.

Note, this is independent of the protocols used, or, even of
whether or not what is being connected to is the internet.
So, it does not assume BGP.  It does not assume an AS.

Now, in the context of an ARIN or NANOG discussion, I would expect
to be able to add the following assertions to the term:

1.  The connections are to the internet.  A connection which
is not to the internet is of little operational
significance to NANOG, and, ARIN has very little to
do with multihoming in general, and, even less if it is
not related to the internet.

2.  The connections are likely to distinct ISPs, although, in
some cases, not necessarily so.  Certainly, if one is to
say one is addressing the issues of multihoming, then,
one must address both values for this variable.

3.  Most multihoming today is done using BGP, but, many other
solutions exist with various tradeoffs.  In V6, there is
currently only one known (BGP) and one proposed, but,
unimplemented (Shim6) solution under active consideration
by IETF. (this may be untrue, but, it seems to be the
common perception even if not reality).


Other people use this term in very different ways. To some people
it means using having multiple IP addresses bound to a single
network interface. To others it means multiple websites on one
server.


That is not multihoming.  That may be an implementation artifact
of some forms of multihoming (using the addresses assigned by
multiple providers ala Shim6 proposal), but, multiple addresses
on an interface do not necessarily imply multihoming.  In fact,
more commonly, that is virtual hosting.


And to many consumers of network access it is a synonym for
redundancy or resiliency or something like that. BGP multihoming
is not the only way to satisfy the consumers of network access
and design a solution in which failure is expected and it is
possible for the customer to route around failure.


It certainly is one component of a redundancy/resiliency solution.


A single tier-2 ISP who uses BGP multihoming with several
tier 1 ISPs can provide multihoming to it's customers
without BGP. For instance, if this tier-2 has two PoPs
in a city and peering links exist at both PoPs and they
sell a resilient access service where the customer has
two links, one to each PoP, then it is possible to route
around many failures. This is probably sufficient for most
people and if the tier-2 provider takes this service seriously
they can engineer things to make total network collapse exteremely
unlikely.


As long as you are willing to accept that a policy failure in
said Tier2 ISP could impact both pops simultaneously, and,
accept that single point of failure as a risk, then, yes,
it might meet some customers' needs. It will not meet all
customers' needs.


Another way in which consumer's could be multihomed would be
to have their single access link going to an Internet exchange
where there is a choice of providers. If one provider's network
fails, they could phone up another provider at the exchange and
have a cross-connect moved to restore connectivity in an hour or
so. This will satisfy many people.


Again, there are tradeoffs and risks to be balanced here as there
are multiple single points of failure inherent in such a
scenario.  However, at the IP level, such a network would, indeed
be multihomed.  The layer 1 and 2 issues not withstanding.


Of course there are many variations on the above theme. This is
an issue with multiple solutions, some of which will be superior
to BGP multihoming. It's not a simple black or white scenario.
And being a tier-1 transit-free provider is not all good. It may
give some people psychological comfort to think that they are in
the number 1 tier, but customers have good reason to see tier-1
transit-free status as a negative.


I'm not sure why you say some are superior to BGP multihoming.
I can see why some are more cost effective, easier, simpler
in some cases, or, possibly more hassle-free, but, the term
superior is simply impossible to define in this situation,
so, I'm unsure how you can categorize something as superior
when the term can't be defined sufficiently.

Owen


--
If this message was not signed with gpg key 0FE2AA3D, it's 

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Jeroen Massar]

On Mon, 2005-10-24 at 02:24 -0700, Owen DeLong wrote:
SNIP
 3.Most multihoming today is done using BGP, but, many other
   solutions exist with various tradeoffs.  In V6, there is
   currently only one known (BGP) and one proposed, but,
   unimplemented (Shim6) solution under active consideration
   by IETF. (this may be untrue, but, it seems to be the
   common perception even if not reality).

As for multihoming in the sense that one wants redundancy, getting two
uplinks to the same ISP, or what I have done a couple of times already,
multiple tunnels between 2 sites (eg 2 local + 2 remote) and running
BGP/OSPF/RIP/VRRP/whatever using (private) ASN's and just providing a
default to the upstream network and them announcing their /48 works
perfectly fine.

The multihoming that people here seem to want though is the Provider
Independent one, and that sort of automatically implies some routing
method: read BGP.

Greets,
 Jeroen



signature.asc
Description: This is a digitally signed message part

Re: design of a real routing v. endpoint id seperation

[Michael . Dillon]

 The way around it is to stop growing the DFZ routing table by the size
 of the Prefixes.  If customers could have PI addreses and the DFZ
 routing table was based, instead, on ASNs in such a way that customers
 could use their upstream's ASNs and not need their own, then, provider
 switch would be a change to the PI-ASN mapping and not affect the
 DFZ table at all.

One way to do this is for two ISPs to band together
in order that each ISP can sell half of a joint
multihoming service. Each ISP would set aside a
subset of their IP address space to be used by many
such multihomed customers. Each ISP would announce 
the subset from their neighbor's space which means
that there would be two new DFZ prefixes to cover
many multihomed customers. 

Each multihomed customer would run BGP using a private
AS number selected from a joint numbering plan. This
facilitates failover if one circuit goes down but
doesn't consume unneccesary public resources per customer.

This does require the two ISPs to maintain a strict
SLA on their interconnects in order to match the SLAs
on their customer contracts. The interconnect then
becomes more than just a peering connection, it also
becomes a mission critical service component.

Of course, the whole thing multihoming thing could
be outsourced to a 3rd party Internet exchange
operator with some creativity at both the technical
level and the business level. The IP address aggregate
would then belong to the exchange. More than 2 ISPs could
participate. Customers could move from one ISP to another
without changing addresses. The SLA on interconnects could
be managed by the exchange. Etc.

--Michael Dillon

Re: design of a real routing v. endpoint id seperation

[Owen DeLong]

--On October 24, 2005 10:44:31 AM +0100 [EMAIL PROTECTED] wrote:



One way to do this is for two ISPs to band together
in order that each ISP can sell half of a joint
multihoming service. Each ISP would set aside a
subset of their IP address space to be used by many
such multihomed customers. Each ISP would announce
the subset from their neighbor's space which means
that there would be two new DFZ prefixes to cover
many multihomed customers.


[snip...]

Except this completely disregards some customers concerns about having
provider independence and being able to change providers without
having a major financial disincentive to do so.  That _IS_ a real
business concern, no matter how much the IETF would like to pretend
it does not matter.

Owen



--
If this message was not signed with gpg key 0FE2AA3D, it's probably
a forgery.


pgpkFXpytrwxe.pgp
Description: PGP signature

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Jeroen Massar]

[re-ordered front-posting]

24 okt 2005 kl. 11.35 skrev Jeroen Massar:
  The multihoming that people here seem to want though is the Provider
  Independent one, and that sort of automatically implies some routing
  method: read BGP.

On Mon, 2005-10-24 at 11:40 +0200, Peter Salanki wrote:
 Or shim6 :)

Of course, note that I wrote 'some routing method', which effectively
shim6 will be doing using some translations. Though I have to see it
first that it is up and running and people start using it, having good
hopes though but there are too many requirements and thus it won't fit
everybody the way they like it. Some people will simply require PI space
and nothing else... (*)

Greets,
 Jeroen


* = For IPv6 this means: be a LIR, plan 200 customers - get it.



signature.asc
Description: This is a digitally signed message part

Re: design of a real routing v. endpoint id seperation

[John Dupuy]

One way to do this is for two ISPs to band together
in order that each ISP can sell half of a joint
multihoming service. Each ISP would set aside a
subset of their IP address space to be used by many
such multihomed customers. Each ISP would announce
the subset from their neighbor's space which means
that there would be two new DFZ prefixes to cover
many multihomed customers.

Each multihomed customer would run BGP using a private
AS number selected from a joint numbering plan. This
facilitates failover if one circuit goes down but
doesn't consume unneccesary public resources per customer.

[...]

I've heard of this from others as well. It seems to be technically 
feasible, but I am curious about the social aspect: would ISPs actually do 
this? Would customer's find it acceptable? (given it still locks them to an 
ISP, now to two of them.)


In fact, this is technically feasible right now with IPv4. Does anyone know 
of a pair of ISPs doing this?


John  

Re: design of a real routing v. endpoint id seperation

[Valdis . Kletnieks]

On Mon, 24 Oct 2005 12:53:12 CDT, John Dupuy said:

 In fact, this is technically feasible right now with IPv4. Does anyone know 
 of a pair of ISPs doing this?

technically feasible and business case reasonable are two different things.

Under what conditions does this sort of cooperation with a competitor make 
sense?


pgpQnNfVuZEUb.pgp
Description: PGP signature

Re: design of a real routing v. endpoint id seperation

[Joe Maimon]

[EMAIL PROTECTED] wrote:


On Mon, 24 Oct 2005 12:53:12 CDT, John Dupuy said:


In fact, this is technically feasible right now with IPv4. Does anyone know 
of a pair of ISPs doing this?



technically feasible and business case reasonable are two different things.

Under what conditions does this sort of cooperation with a competitor make 
sense?


When your customer demands it and is willing to either pay for it or 
stop paying you for anything.

Re: design of a real routing v. endpoint id seperation

[Joe Abley]

On 24-Oct-2005, at 11:21, [EMAIL PROTECTED] wrote:


On Mon, 24 Oct 2005 12:53:12 CDT, John Dupuy said:

In fact, this is technically feasible right now with IPv4. Does  
anyone know

of a pair of ISPs doing this?


technically feasible and business case reasonable are two  
different things.


Under what conditions does this sort of cooperation with a  
competitor make sense?


As a customer, I would prefer to multi-home between ISPs who rarely  
talk to each other rather than those who are in collusion. From a  
technical perspective I want the operator-induced failures in each  
ISP to be as independent as possible; from the business perspective I  
want them both to fight for my money.



Joe

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Stephen Sprunk]

Thus spake [EMAIL PROTECTED]

 the market wouldn't
 feel the need to have to dual home.



the internet model is to expect and route around failure.


Seems to me that there is some confusion over the meaning
of multihoming. We seem to assume that it means BGP multihoming
wherein a network is connected to multiple ASes and uses BGP
to manage traffic flows.


AFAICT, that is the accepted definition in this forum.  Anything less is 
best called by a different, more precise term to avoid confusion.



Other people use this term in very different ways. To some people
it means using having multiple IP addresses bound to a single
network interface. To others it means multiple websites on one
server.


That is virtual hosting in a NANOG context.  Some undereducated MCSEs might 
call it multihoming, but let's not endorse that here.



A single tier-2 ISP who uses BGP multihoming with several
tier 1 ISPs can provide multihoming to it's customers
without BGP. For instance, if this tier-2 has two PoPs
in a city and peering links exist at both PoPs and they
sell a resilient access service where the customer has
two links, one to each PoP, then it is possible to route
around many failures. This is probably sufficient for most
people and if the tier-2 provider takes this service seriously
they can engineer things to make total network collapse exteremely
unlikely.


I bet customers who bought two links to Cogent no longer believe they're 
multihomed; policy failures are disturbingly frequent in Tier 2s, 
particularly those wanting to join the Tier 1 club.  Total network failures 
are rarer, but even folks like UUNET, WorldCom, ATT, MCI, etc. have them 
from time to time.  With restoral times measured in days on both types of 
occasions, you can't discount them as extremely unlikely if your business 
can't function without a network.  Ask the folks at Starbucks how many 
millions of dollars of coffee they gave away when their cash registers 
didn't work for a couple days... and how many customers (i.e. future 
revenue) they would have lost if they hadn't.


Two links to the same provider is merely redundancy or link/POP 
diversity, not multihoming.  Don't let your marketing department override 
your common sense or engineering clue.


S

Stephen SprunkStupid people surround themselves with smart
CCIE #3723   people.  Smart people surround themselves with
K5SSS smart people who disagree with them.  --Aaron Sorkin

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Crist Clark]

Stephen Sprunk wrote:
[snip]


Other people use this term in very different ways. To some people
it means using having multiple IP addresses bound to a single
network interface. To others it means multiple websites on one
server.



That is virtual hosting in a NANOG context.  Some undereducated MCSEs 
might call it multihoming, but let's not endorse that here.


Unfortunately, this is a common and standards blessed way to refer to
any host with multiple interfaces/addresses (real or virtual). For example,
from the Terminology section, 1.1.3, of RFC1122, Requirements for
Internet Hosts -- Communication Layers, says,

 Multihomed
  A host is said to be multihomed if it has multiple IP
  addresses.  For a discussion of multihoming, see Section
  3.3.4 below.

--
Crist J. Clark   [EMAIL PROTECTED]
Globalstar Communications(408) 933-4387

The information contained in this e-mail message is confidential,
intended only for the use of the individual or entity named above.
If the reader of this e-mail is not the intended recipient, or the
employee or agent responsible to deliver it to the intended recipient,
you are hereby notified that any review, dissemination, distribution or
copying of this communication is strictly prohibited.  If you have
received this e-mail in error, please contact [EMAIL PROTECTED]

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Valdis . Kletnieks]

On Mon, 24 Oct 2005 13:31:17 PDT, Crist Clark said:
 
 Stephen Sprunk wrote:
 [snip]
 
  Other people use this term in very different ways. To some people
  it means using having multiple IP addresses bound to a single
  network interface. To others it means multiple websites on one
  server.
  
  
  That is virtual hosting in a NANOG context.  Some undereducated MCSEs 
  might call it multihoming, but let's not endorse that here.
 
 Unfortunately, this is a common and standards blessed way to refer to
 any host with multiple interfaces/addresses (real or virtual).

I think Stephen meant Some undereducated McSE (you want fries with that?)
call multiple websites on one server multihoming.


pgpkX5TH1Cunu.pgp
Description: PGP signature

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[John Reilly]

On Mon, 2005-10-24 at 10:01 +0100, [EMAIL PROTECTED] wrote:
 Other people use this term in very different ways. To some people
 it means using having multiple IP addresses bound to a single
 network interface. To others it means multiple websites on one
 server.

Do you not mean a single host with multiple interfaces?  I didn't think
anyone with multiple IPs on a single interface would consider it to be
multihomed.

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[John Reilly]

On Mon, 2005-10-24 at 02:24 -0700, Owen DeLong wrote:
 As I understand it, the term multihoming in a network operations
 context is defined as:
 
 (A multihomed network is)
 A network which is connected via multiple distinct
 paths so as to eliminate or reduce the likelihood that a single
 failure will significantly reduce reachability.

Given that definition of multhoming.

 3.Most multihoming today is done using BGP, but, many other
   solutions exist with various tradeoffs.  In V6, there is
   currently only one known (BGP) and one proposed, but,
   unimplemented (Shim6) solution under active consideration
   by IETF. (this may be untrue, but, it seems to be the
   common perception even if not reality).


... shim6 doesn't fit into the definition does it?  Its seems to be a
question of multihomed networks Vs. multihomed hosts (although the
effect may be the same at the end of the day).

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Owen DeLong]

I believe RFC1122 was written in the days when there was a one-to-one
correlation
between IP addresses and interfaces, and, you couldn't have one machine with
multiple addresses on the same network.  Obviously, also, we are talking
about
network multihoming, not host multihoming in a NANOG context.  It is hard
to perceive a situation where Host Multihoming would require coordination.

Owen


--On October 24, 2005 1:31:17 PM -0700 Crist Clark
[EMAIL PROTECTED] wrote:

 
 Stephen Sprunk wrote:
 [snip]
 
 Other people use this term in very different ways. To some people
 it means using having multiple IP addresses bound to a single
 network interface. To others it means multiple websites on one
 server.
 
 
 That is virtual hosting in a NANOG context.  Some undereducated MCSEs 
 might call it multihoming, but let's not endorse that here.
 
 Unfortunately, this is a common and standards blessed way to refer to
 any host with multiple interfaces/addresses (real or virtual). For
 example,
 from the Terminology section, 1.1.3, of RFC1122, Requirements for
 Internet Hosts -- Communication Layers, says,
 
   Multihomed
A host is said to be multihomed if it has multiple IP
addresses.  For a discussion of multihoming, see Section
3.3.4 below.
 
 -- 
 Crist J. Clark   [EMAIL PROTECTED]
 Globalstar Communications(408) 933-4387
 
 The information contained in this e-mail message is confidential,
 intended only for the use of the individual or entity named above.
 If the reader of this e-mail is not the intended recipient, or the
 employee or agent responsible to deliver it to the intended recipient,
 you are hereby notified that any review, dissemination, distribution or
 copying of this communication is strictly prohibited.  If you have
 received this e-mail in error, please contact [EMAIL PROTECTED]



-- 
If it wasn't crypto-signed, it probably didn't come from me.


pgpLC3TxiLj7v.pgp
Description: PGP signature

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

[Owen DeLong]

 ... shim6 doesn't fit into the definition does it?  Its seems to be a
 question of multihomed networks Vs. multihomed hosts (although the
 effect may be the same at the end of the day).
 
 
Yes... The network is still multihomed, but, instead of using routing to
handle the source/dest addr. selection, it is managed at each end host
independent of the routers.  The routers function sort of like the
network is single homed.  It's very convoluted.


Owen



-- 
If it wasn't crypto-signed, it probably didn't come from me.


pgpFoAy33vdT9.pgp
Description: PGP signature

Re: design of a real routing v. endpoint id seperation

[Randy Bush]

 the internet model is to expect and route around failure.
 You cannot stop the last mile backhoes.

no, but if your facility is critical, you have redundant physical
and layer one exits from it.  and you have parallel sites.

randy

Re: design of a real routing v. endpoint id seperation

[Michael . Dillon]

 ISPs who wish to connect customers who have allocations from the 
 multihoming space must
 
 a) announce the whole space aggregated
 b) peer with other providers who host other customers

As mentioned, this huge aggregate attracts unwanted traffic.
It would make more sense if this so-called multi-homing
aggregate was to be carved up into smaller aggregates
based on the geographical topology of the network. That
way, providers whose PoPs are geographically close to
each other (in the same city) could use multihoming 
addresses from the same aggregate. Providers could then
choose to only offer multihoming services in those 
cities where they peer with other multihoming providers.
The number of aggregate routes announced mushrooms to
about 5,000 because there are that many cities in the
world with a population greater than 100,000 people.

This geotopological address aggregation will still
result in some unwanted traffic but a provider is
at liberty to carry more detail internally and hand
it off closer to the source. For instance, a provider
with PoPs in New York and Paris, could elect to carry
all Paris routes in New York in order to shed peer
traffic before it crosses the Atlantic.

I wonder if the solution to these issues would
be facilitated by carrying some additional policy
info in a routing protocol. Attributes like
ROUTE_COMES_FROM_A_PEER_WHO_SELLS_MULTIHOMING
or similar. If there are only 5000 or so
peering locations in the world, then perhaps
an attribute like ROUTE_HEARD_FROM_PEER_IN_CITY_439
would also be useful.

--Michael Dillon

Re: design of a real routing v. endpoint id seperation

[Jeroen Massar]

On Thu, 2005-10-20 at 07:49 -0400, Joe Maimon wrote:
SNIP
 C)
 
 - end node performs locator lookup
 - end node encaps
 - destnode decaps
 
 This could be as easy as performing IPinIP with srv records and DDNS.

There is an 'example possible alternate use' in the following document:
http://unfix.org/~jeroen/archive/drafts/draft-massar-v6ops-ayiya-02.txt

page 20, section 9.3 which describes something that could be called:
 - double NAT
or:
 - encapsulation

The problem though is that this requires the end-site/host to upgrade on
both sides otherwise you loose this special multihoming capability. You
need to detect that, which costs overhead etc and of course how do you
figure out where the other end is at that moment and how do you know
that the path between them is optional and and and a lot more issues :)

To repeat: that section is only an 'example possible alternate use' so
don't comment on it (except if you find typos or so ;)

Greets,
 Jeroen



signature.asc
Description: This is a digitally signed message part

Re: design of a real routing v. endpoint id seperation

[Joe Maimon]

(apologies to Owen for CC'ng list, his points are valid concerns that I 
hadnt addressed or considered properly)


Owen DeLong wrote:





c) Carry a much larger table on a vastly more expensive set of routers
in order to play.


ISPs who dont wish to connect these customers should feel free not to,
and that will have no bearing on the rest of those who do.


Somehow, given C) above, I am betting that most providers will be in this
latter category.


Considering that most people who are in favor of multihoming for ipv6 
believe that there is customer demand for it, the market forces would 
decide this one.


Additionally, until there are a few hundred thousand routes in the 
multihoming table, I dont see any more expense than today, merely an 
extra box in the pop. It could be years away that the doomsday table 
growth the anti-multihoming crowd predicts could occur. Only at that 
point would expensive seperate routers be needed.


In fact seperate routers makes the multihoming table very small, at 
least to start with. It would be an implementation detail. An ISP could 
easily start off by simply not announcing the more specifics in the 
prefix space, without the new router systems.


The point is, that the scaling problems multihoming brings would be 
limited to


a) ISP's who want to offer service to customers who want to multihome
b) The system that the ISP runs to provide this service.

This is in contrast to todays mechanism, where customers who want to 
multihome affect everyone who accepts a full BGP feed.


At the time customer demand worldwide demanded seperate routing tables, 
would be the time that ISPs would be able to decide whether the roi 
would be sufficient or not for them to keep their investment.


Such a scheme would be a money where your mouth is.

You say there is customer demand for multihoming? Well here it is. Lets 
see which ISPs want to implement it and which customers want to pay 
extra (FSVO extra) for it.


In fact, customers who multihome in this way, need not use the same ASN 
space as the rest of the world, just unique to the multihoming table


(that might not work well if ISP's faked it by simply not advertising 
the more specifics they carried internally)


This concept brings true hierarchy, and thus scalability, to the routing 
table.





If you are referring to the affect that this will attract unwanted
traffic, that would be considered a COB.


That too, but, primarily, c).


There are simple ways to minimize this.

1) standard BGP tricksanti-social to be sure, such as prepending, 
meds..


2) Transit-multihoming peering, where you depend more on external 
parties who peer with you on the multihoming plane more popular 
advertisement to bring you a higher ratio of traffic you are interested in.


A small multihoming-table-carrying ISP would want to arrange things so 
that he pays a bit mer per (Mn|Gb) from his multihoming-table-peer, but 
does not have to attract large quantities of unwanted traffic from his 
non-multihoming-table peer.





In essence, the previous discussion about LNP suggested that telco's must
do the same thing, attract unwanted traffic, traffic they must switch
right back out of their network.


Except they don't.  My formerly ATT number does not go through ATTs
network to reach me just because it was ported.  Read up on how SS7
actually works before you make statements like this that simply aren't
true.



So I have been toldapparently I mistook the conslusions of the 
relevant threads. apologies.



Owen

RE: design of a real routing v. endpoint id seperation

[Neil J. McRae]

 Considering that most people who are in favor of multihoming 
 for ipv6 believe that there is customer demand for it, the 
 market forces would decide this one.

We have nobody but ourselves to blame for this. If we all ran
networks that worked as well as our customers demand and didn't have
our petty peering squables every full moon, the market wouldn't
feel the need to have to dual home.

RE: design of a real routing v. endpoint id seperation

[Randy Bush]

 We have nobody but ourselves to blame for this. If we all ran
 networks that worked as well as our customers demand and didn't have
 our petty peering squables every full moon, the market wouldn't
 feel the need to have to dual home.

that's the telco brittle network model, make it so it fails
infrequently.  this has met with varied success.

the internet model is to expect and route around failure.

randy

RE: design of a real routing v. endpoint id seperation

[Neil J. McRae]

 
 that's the telco brittle network model, make it so it fails 
 infrequently.  this has met with varied success.

One way to look at it:

 the internet model is to expect and route around failure.

this has also met with varied success. :-)

Re: design of a real routing v. endpoint id seperation

[Andre Oppermann]

Neil J. McRae wrote:
Considering that most people who are in favor of multihoming 
for ipv6 believe that there is customer demand for it, the 
market forces would decide this one.


We have nobody but ourselves to blame for this. If we all ran
networks that worked as well as our customers demand and didn't have
our petty peering squables every full moon, the market wouldn't
feel the need to have to dual home.


There is not only the multihoming issue but also the PI address issue.
Even if any ISP would run his network very competently and there
were no outages we would face the ISP switching issue.  Again we
would end up with either PI addresses announced by the ISP or BGP
by the customer.  With either the DFZ continues to grow.  There is
just no way around it.

--
Andre

RE: design of a real routing v. endpoint id seperation

[Matt Ghali]

On Fri, 21 Oct 2005, Randy Bush wrote:

  the internet model is to expect and route around failure.
  
  randy

That precludes agreement on a definition of failure. In recent 
weeks we have once again learned that a large fuzzy fringe around 
any sort of 100% consensus makes life interesting.

For instance; was the withdrawal of certain routes from your BGP 
sessions a failure for you? Was it for superwebhostingforfree.com, 
who relies on a single provider for transit?

matto

[EMAIL PROTECTED]darwin
  The only thing necessary for the triumph
  of evil is for good men to do nothing. - Edmund Burke

Re: design of a real routing v. endpoint id seperation

[Tony Li]

the internet model is to expect and route around failure.



You cannot stop the last mile backhoes.

Tony

Re: design of a real routing v. endpoint id seperation

[Owen DeLong]

 There is not only the multihoming issue but also the PI address issue.
 Even if any ISP would run his network very competently and there
 were no outages we would face the ISP switching issue.  Again we
 would end up with either PI addresses announced by the ISP or BGP
 by the customer.  With either the DFZ continues to grow.  There is
 just no way around it.

The way around it is to stop growing the DFZ routing table by the size
of the Prefixes.  If customers could have PI addreses and the DFZ
routing table was based, instead, on ASNs in such a way that customers
could use their upstream's ASNs and not need their own, then, provider
switch would be a change to the PI-ASN mapping and not affect the
DFZ table at all.

Owen



-- 
If it wasn't crypto-signed, it probably didn't come from me.


pgpAxFfvw49rq.pgp
Description: PGP signature

RE: design of a real routing v. endpoint id seperation

[Gary E. Miller]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Yo Neil!

On Fri, 21 Oct 2005, Neil J. McRae wrote:

 If we all ran networks that worked as well as our customers demand...

Some demand low price and some demand high availability.  No way to
please everyone.

RGDS
GARY
- ---
Gary E. Miller Rellim 20340 Empire Blvd, Suite E-3, Bend, OR 97701
[EMAIL PROTECTED]  Tel:+1(541)382-8588 Fax: +1(541)382-8676


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDWWiP8KZibdeR3qURAlxDAKCnE8uNK36GKu5wHeuFtR9bID3LMwCeNMV5
Hrp1sFipFeyg4or0SHDv5bE=
=KdkD
-END PGP SIGNATURE-

design of a real routing v. endpoint id seperation

[Joe Maimon]

This is what I meant by suggesting that source routing was an original 
attempt at a seperation from routing/locating and endpoint identifiers.


You can replace the concept of source routing in below with mpls TE, 
l2tpv3 or any other suitable encapsulation mechanism.


The concept is that there would need to be some hierarchy of global 
routing tables in order for routing to scale.


Currently circulated ideas for independence between routing and endpoint 
identifier have certain modes for operation.


A)
- end node sends packet to destnode
- destnode location is looked up in SOMEWHERE --- Today that is the 
Global routing tables, indexed by destnode ID


- sent to there

Most proposals wish to replace/supplement SOMEWHERE with some amorphous 
protocol and/or some external VeryLargeDatabase.


B)

- end node sends packet to destnode
- destnode location is routed through normative route table lookups
- inband signalling provides other alternatives for 
session/transaction/conversation continuation



C)

- end node performs locator lookup
- end node encaps
- destnode decaps

This could be as easy as performing IPinIP with srv records and DDNS.



This is in direct contrast to all other proposals in that it is much 
closer to being implementable Today with Todays technology.


A chunk of ipv6 space is carved off. This is assigned to multihoming
desiring sites.

All routers that currently carry Global Routing Tables {can | should } 
filter this space from their tables

completely by default - except the single prefix covering the entire space.


A customer with a prefix assigned from this chunk has to connect with an
 ISP who has

* a Very Large Multihoming (to handle scaling concerns) router somewhere
in its network that peers to other ISP Very Large Multihoming routers.

ISP operating a VLMrouter to offer multihoming service to their
customers would originate the entire multihoming space prefix to their
customers AND to all their peers.

These would have ALL the prefixes from the Multihoming Space.

* the customer would peer with the VLMrouter, receive no routes and
advertise their prefix.

* source routing allowed on ingress IF the destaddr is in the multihoming
space AND the route-option is the Very Large Multihoming router

* source routing is allowed within the ISP network

The VLMrouter would make a SOURCE routing decision, putting a source
route destination to the customer.

* The ISP allows egress source routed packets


What this means is that there are 2 tables on the internet, the table
that ALL internet routes need have (like today) and the table that only
an ISP offering access to multihoming need have. The ISP offering such
access would only need, say one box per POP or so.

So the scaling problem becomes much smaller in scope. Now only ISP
wishing to offer multihoming services need to track the multihoming
table. Additionaly, the tables are actually halved, the VLMrouter need
not contain the normal internet routes and vice versa.

The downside is that an ISP performing as multihoming table hoster would
be a magnet for traffic that would possibly transit in and out.

Smaller multihoming hosting ISPs would probably try to prepend the
prefix mightily, or arrange not to originate it at all, and simply
receive prefix source routed from an ISP they connect to who also hosts
multihoming hosting AND originates the prefix.

No changes to stacks, endpoint nodes or anything else needed.
(if source routing still works in ip6?)
Some source routing filtering capabilities needed for border patrolling

something like this

config-if#ip source-routing prefix-list multihoming-prefixes
access-group allowed-source-routes




Joe

Re: design of a real routing v. endpoint id seperation

[Owen DeLong]

 A customer with a prefix assigned from this chunk has to connect with an
   ISP who has
 
 * a Very Large Multihoming (to handle scaling concerns) router somewhere
 in its network that peers to other ISP Very Large Multihoming routers.
 
 ISP operating a VLMrouter to offer multihoming service to their
 customers would originate the entire multihoming space prefix to their
 customers AND to all their peers.
 
 These would have ALL the prefixes from the Multihoming Space.
 
So... Let me get this straight.  You think that significantly changing
the economic model of every ISP on the planet (or at least every large
ISP on the planet) is easier than changing the code in every core router?

ROTFLMAO

Owen


-- 
If it wasn't crypto-signed, it probably didn't come from me.


pgpBRESUz7vDv.pgp
Description: PGP signature

Re: design of a real routing v. endpoint id seperation

[Joe Maimon]

Owen DeLong wrote:


A customer with a prefix assigned from this chunk has to connect with an
 ISP who has

* a Very Large Multihoming (to handle scaling concerns) router somewhere
in its network that peers to other ISP Very Large Multihoming routers.

ISP operating a VLMrouter to offer multihoming service to their
customers would originate the entire multihoming space prefix to their
customers AND to all their peers.

These would have ALL the prefixes from the Multihoming Space.



So... Let me get this straight.  You think that significantly changing
the economic model of every ISP on the planet (or at least every large
ISP on the planet) is easier than changing the code in every core router?

ROTFLMAO

Owen


ISPs who wish to connect customers who have allocations from the 
multihoming space must


a) announce the whole space aggregated
b) peer with other providers who host other customers

ISPs who dont wish to connect these customers should feel free not to, 
and that will have no bearing on the rest of those who do.


If you are referring to the affect that this will attract unwanted 
traffic, that would be considered a COB.


In essence, the previous discussion about LNP suggested that telco's 
must do the same thing, attract unwanted traffic, traffic they must 
switch right back out of their network.

design of a real routing v. endpoint id seperation

[Joe Maimon]

How about something like this.


A chunk of ipv6 space is carved off. This is assigned to multihoming 
desiring sites.


All routers {can | should } filter this space from their tables 
completely by default - except the single prefix covering the entire space.



A customer with a prefix assigned from this chunk has to connect with an 
 ISP who has


* a Very Large Multihoming (to handle scaling concerns) router somewhere 
in its network that peers to other ISP Very Large Multihoming routes.


ISP operating a VLMrouter to offer multihoming service to their 
customers would originate the entire multihoming space prefix to their 
customers AND to all their peers.


These would have ALL the prefixes from the Multihoming Space.

* the customer would peer with the VLMrouter, receive no routes and 
advertise their prefix.


* source routing allowed on ingres IF the destaddr is in the multihoming 
space AND the route-option is the Very Large Multihoming router


* source routing is allowed within the ISP network

The VLMrouter would make a SOURCE routing decision, putting a source 
route destination to the customer.


* The ISP allows egress source routed packets


What this means is that there are 2 tables on the internet, the table 
that ALL internet routes need have (like today) and the table that only 
an ISP offering access to multihoming need have. The ISP offering such 
access would only need, say one box per POP or so.


So the scaling problem becomes much smaller in scope. Now only ISP 
wishing to offer multihoming services need to track the multihoming 
table. Additionaly, the tables are actually halved, the VLMrouter need 
not contain the normal internet routes and vice versa.


The downside is that an ISP performing as multihoming table hoster would 
be a magnet for traffic that would possibly transit in and out.


Smaller multihoming hosting ISPs would probably try to prepend the 
prefix mightily, or arrange not to originate it at all, and simply 
receive prefix source routed from an ISP they connect to who also hosts 
multihoming hosting AND originates the prefix.


No changes to stacks, endpoint nodes or anything else needed.
(if source routing still works in ip6?)
Some source routing filtering capabilities needed for border patrolling

something like this

config-if#ip source-routing prefix-list multihoming-prefixes 
access-group allowed-source-routes





Joe