160 likes | 309 Views
Hiding OSPF Transit-only Networks. Yi Yang IETF 79. What are transit-only networks?. W hy to hide them?. Infrastructure security Plus, downsize routing table and speed up convergence . How to hide them?. Point-to-Point networks Broadcast networks Non-Broadcast networks. Point-to-Point.
E N D
Hiding OSPFTransit-only Networks Yi Yang IETF 79
Why to hide them? • Infrastructure security • Plus, downsize routing table and speed up convergence
How to hide them? • Point-to-Point networks • Broadcast networks • Non-Broadcast networks
Point-to-Point 1.1.1.1 2.2.2.2 .1 .2 LS Age = 0 LS Type = 1 LS ID = 1.1.1.1 Adv. Router = 1.1.1.1 Number of Links = 2 Link ID = 2.2.2.2 Link Data = 10.1.1.1 Type = 1 Metric = 10 Link ID= 10.1.1.0 Link Data = 255.255.255.252 Type = 3 Metric = 10 LS Age = 0 LS Type = 1 LS ID = 2.2.2.2 Adv. Router = 2.2.2.2 Number of Links = 2 Link ID = 1.1.1.1 Link Data = 10.1.1.2 Type = 1 Metric = 10 Link ID= 10.1.1.0 Link Data = 255.255.255.252 Type = 3 Metric = 10 10.1.1.0/30
Point-to-Point 1.1.1.1 2.2.2.2 .1 .2 LS Age = 0 LS Type = 1 LS ID = 1.1.1.1 Adv. Router = 1.1.1.1 Number of Links = 1 Link ID = 2.2.2.2 Link Data = 10.1.1.1 Type = 1 Metric = 10 LS Age = 0 LS Type = 1 LS ID = 2.2.2.2 Adv. Router = 2.2.2.2 Number of Links = 1 Link ID = 1.1.1.1 Link Data = 10.1.1.2 Type = 1 Metric = 10 10.1.1.0/30
Broadcast 3.3.3.3 4.4.4.4 10.2.2.0/24 .3 .4 .5 LS Age = 0 LS Type = 2 LS ID = 10.2.2.5 Adv. Router = 5.5.5.5 Network Mask = 255.255.255.0 Attached Router = 3.3.3.3 Attached Router = 4.4.4.4 Attached Router = 5.5.5.5 5.5.5.5
Broadcast 3.3.3.3 4.4.4.4 10.2.2.0/24 .3 .4 .5 LS Age = 0 LS Type = 2 LS ID = 10.2.2.5 Adv. Router = 5.5.5.5 Network Mask = 255.255.255.255 Attached Router = 3.3.3.3 Attached Router = 4.4.4.4 Attached Router = 5.5.5.5 5.5.5.5
Non-Broadcast: NBMA • Use /32 subnet mask, similar to Broadcast
Non-Broadcast: P2MP LS Age = 0 LS Type = 1 LS ID = 6.6.6.6 Adv. Router = 6.6.6.6 Number of Links = 3 Link ID = 7.7.7.7 Link Data = 10.3.3.6 Type = 1 Metric = 10 Link ID = 7.7.7.7 Link Data = 10.3.3.6 Type = 1 Metric = 10 Link ID= 10.3.3.0 Link Data = 255.255.255.0 Type = 3 Metric = 0 6.6.6.6 .6 .7 .8 10.3.3.0/24 7.7.7.7 8.8.8.8
Non-Broadcast: P2MP LS Age = 0 LS Type = 1 LS ID = 6.6.6.6 Adv. Router = 6.6.6.6 Number of Links = 2 Link ID = 7.7.7.7 Link Data = 10.3.3.6 Type = 1 Metric = 10 Link ID = 7.7.7.7 Link Data = 10.3.3.6 Type = 1 Metric = 10 6.6.6.6 .6 .7 .8 10.3.3.0/24 7.7.7.7 8.8.8.8
OSPFv3 • Remove IPv6 Prefixes from the intra-area-prefix-LSAs
Backward Compatibility: Broadcast 3.3.3.3 4.4.4.4 10.2.2.0/24 .3 .4 .5 LS Age = 0 LS Type = 2 LS ID = 10.2.2.5 Adv. Router = 5.5.5.5 Network Mask = 255.255.255.255 Attached Router = 3.3.3.3 Attached Router = 4.4.4.4 Attached Router = 5.5.5.5 5.5.5.5
Backward Compatibility: Broadcast 3.3.3.3 2.2.2.2 4.4.4.4 Host A 10.2.2.0/24 1.1.1.1 .3 .4 7.7.7.7 8.8.8.8 .5 5.5.5.5 Host B Upgraded Not-upgraded-yet