[Docs] [txt|pdf] [Tracker] [WG] [Email] [Diff1] [Diff2] [Nits]
Versions: 00 01 02 03 RFC 4116
Network Working Group J. Abley
Internet-Draft ISC
Expires: July 5, 2005 K. Lindqvist
Netnod Internet Exchange
E. Davies
Independent Researcher
B. Black
Layer8 Networks
V. Gill
AOL
January 4, 2005
IPv4 Multihoming Practices and Limitations
draft-ietf-multi6-v4-multihoming-03
Status of this Memo
This document is an Internet-Draft and is subject to all provisions
of section 3 of RFC 3667. By submitting this Internet-Draft, each
author represents that any applicable patent or other IPR claims of
which he or she is aware have been or will be disclosed, and any of
which he or she become aware will be disclosed, in accordance with
RFC 3668.
Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that
other groups may also distribute working documents as
Internet-Drafts.
Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt.
The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html.
This Internet-Draft will expire on July 5, 2005.
Copyright Notice
Copyright (C) The Internet Society (2005).
Abstract
Abley, et al. Expires July 5, 2005 [Page 1]
Internet-Draft IPv4 Multihoming January 2005
Multihoming is an essential component of service for many sites which
are part of the Internet. This document describes some
implementation strategies for multihoming with IPv4 and enumerates
features for comparison with other multihoming proposals
(particularly those related to IPv6).
Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3
2. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 3
3. IPv4 Multihoming Practices . . . . . . . . . . . . . . . . . . 4
3.1 Multihoming with BGP . . . . . . . . . . . . . . . . . . . 4
3.1.1 Addressing Considerations . . . . . . . . . . . . . . 4
3.1.2 AS Number Considerations . . . . . . . . . . . . . . . 6
3.2 Multiple Attachments to a Single Transit Provider . . . . 6
3.3 NAT- or RFC2260-based Multihoming . . . . . . . . . . . . 7
4. Features of IPv4 Multihoming . . . . . . . . . . . . . . . . . 7
4.1 Redundancy . . . . . . . . . . . . . . . . . . . . . . . . 7
4.2 Load Sharing . . . . . . . . . . . . . . . . . . . . . . . 7
4.3 Performance . . . . . . . . . . . . . . . . . . . . . . . 8
4.4 Policy . . . . . . . . . . . . . . . . . . . . . . . . . . 8
4.5 Simplicity . . . . . . . . . . . . . . . . . . . . . . . . 8
4.6 Transport-Layer Survivability . . . . . . . . . . . . . . 9
4.7 Impact on DNS . . . . . . . . . . . . . . . . . . . . . . 9
4.8 Packet Filtering . . . . . . . . . . . . . . . . . . . . . 9
4.9 Scalability . . . . . . . . . . . . . . . . . . . . . . . 9
4.10 Impact on Routers . . . . . . . . . . . . . . . . . . . . 10
4.11 Impact on Hosts . . . . . . . . . . . . . . . . . . . . . 10
4.12 Interactions between Hosts and the Routing System . . . . 10
4.13 Operations and Management . . . . . . . . . . . . . . . . 10
4.14 Cooperation between Transit Providers . . . . . . . . . . 10
5. Security Considerations . . . . . . . . . . . . . . . . . . . 10
6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 10
7. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 10
8. Informative References . . . . . . . . . . . . . . . . . . . . 10
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . 11
Intellectual Property and Copyright Statements . . . . . . . . 13
Abley, et al. Expires July 5, 2005 [Page 2]
Internet-Draft IPv4 Multihoming January 2005
1. Introduction
Multihoming is an important component of service for many sites which
are part of the Internet. Current IPv4 multihoming practices have
been added on to the Classless Inter Domain Routing (CIDR)
architecture [1], which assumes that routing table entries can be
aggregated based upon a hierarchy of customers and service providers.
Multihoming is a mechanism by which sites can satisfy a number of
high-level requirements, and is widely used in the IPv4 Internet.
There are some practical limitations, however, including concerns as
to how well the current practice will scale as the Internet continues
to grow, if at all. This document aims to document common IPv4
multihoming practices, and enumerate their features for comparison
with other multihoming approaches.
There are a number of different ways to route and manage traffic in
and out of a multihomed site: the majority rely on the routing policy
capabilities of the inter-domain routing protocol, the Border Gateway
Protocol, version 4 (BGP) [2]. This document also discusses a
multi-homing strategy which does not rely on the capabilities of BGP.
2. Terminology
A "site" is an entity autonomously operating a network using IP, and
in particular, determining the addressing plan and routing policy for
that network. This definition is intended to be equivalent to
'enterprise' as defined in [3].
A "transit provider" operates a site that directly provides
connectivity to the Internet to one or more external sites. The
connectivity provided extends beyond the transit provider's own site
and it's own direct customer networks. A transit provider's site is
directly connected to the sites for which it provides transit.
A "multihomed" site is one with more than one transit provider.
"Site-multihoming" is the practice of arranging a site to be
multihomed.
The term "re-homing" denotes a transition of a site between two
states of connectedness due to a change in the connectivity between
the site and its transit providers' sites.
A "multi-attached" site is one with more than one point of layer-3
interconnection to a single transit provider.
Provider-Independent (PI) addresses are globally-unique addresses
which are not assigned by a transit provider, but are provided by
Abley, et al. Expires July 5, 2005 [Page 3]
Internet-Draft IPv4 Multihoming January 2005
some other organisation, most usually a Regional Internet Registry
(RIR).
Provider-Aggregatable (PA) addresses are globally-unique addresses
assigned by a transit provider to a customer. The addresses are
considered "aggregatable" since the set of routes corresponding to
the PA addresses are usually covered by an aggregate route set
corresponding to the address space operated by the transit provider,
from which the assignment was made.
Note that the words "assign" and "allocate" have specific meanings in
Regional Internet Registry (RIR) address management policies, but are
used more loosely in this document.
3. IPv4 Multihoming Practices
3.1 Multihoming with BGP
The general approach for multihoming with BGP is to announce a set of
routes to two or more transit providers. This provides the rest of
the Internet with multiple paths back to the multihomed sites, and
each transit provider provides an additional possible path for the
site's outbound traffic.
3.1.1 Addressing Considerations
3.1.1.1 PI Addresses
The site uses PI addresses, and a set of routes covering those PI
addresses is announced or propagated by two or more transit
providers.
Using PI addresses has long been the preferred approach for IPv4
multihoming. Until the mid-1990s this was relatively easy to
accomplish, as the maximum generally accepted prefix length in the
global routing table was a /24, and little justification was needed
to obtain a /24 PI assignment. However, RIR address management
policies have become less liberal in this respect; not all RIRs
support the assignment of address blocks to small, multihomed
end-users, and those that do require justification for blocks as
large as a /24 which cannot be met by small sites. As a consequence,
PI addresses are not available to many sites who wish to multihome.
Each site that use PI addresses introduces an additional prefix into
the global routing system. Widespread multihoming in this manner
would present scaling concerns.
Abley, et al. Expires July 5, 2005 [Page 4]
Internet-Draft IPv4 Multihoming January 2005
3.1.1.2 PA Addresses
The site uses PA addresses assigned by a single transit provider.
The set of routes covering those PA addresses (the "site route set")
is announced or propagated by one or more additional transit
providers. The transit provider which assigned the PA addresses (the
"primary transit provider") originates a set of routes which cover
the site route set. The primary transit provider often originates or
propagates the site route set as well as the covering aggregates.
The use of PA addresses is applicable to sites whose addressing
requirements are not sufficient to meet the requirements for PI
assignments by RIRs. In the case where the site route set is to be
announced or propagated by two or more different transit providers,
however, common operational practice still dictates minimum /24
prefixes which may be larger than the allocation available to small
sites.
There have been well-documented examples of sites filtering
long-prefix routes which are covered by a transit-providers
aggregate. If this practice were to become very widespread, it might
limit the effectiveness of multihoming using PA addresses. Limited
filtering of this kind can be tolerated, however, since the aggregate
announcements of the primary transit provider should be sufficient to
attract traffic from autonomous systems which do not accept the
covered site route set. The more traffic that follows the primary
transit provider's aggregate in the absence of the covered,
more-specific route, the greater the reliance on that primary transit
provider. In some cases this reliance might result in an effective
single point of failure.
Traffic following the primary transit provider's aggregate routes may
still be able to reach the multihomed site even in the case where the
connection between the primary transit provider and the site has
failed. The site route set will still be propagating through the
site's other transit providers, and if that route set reaches (and is
accepted by) the primary transit provider, connectivity for traffic
following the aggregate route will be preserved.
Sites which use PA addresses are usually obliged to renumber if they
decide not to retain connectivity to the primary transit provider.
While this is a common requirement for all sites using PA addresses
(and not just those that are multihomed), it is one that may have
more frequent impact on sites whose motivation to multihome is to
facilitate changes of ISP. A multihomed site using PA addresses can
still add or drop other service providers without having to renumber.
Abley, et al. Expires July 5, 2005 [Page 5]
Internet-Draft IPv4 Multihoming January 2005
3.1.2 AS Number Considerations
3.1.2.1 Consistent Origin AS
A multihomed site may choose to announce routes to two or more
transit providers from a globally-unique Autonomous System (AS)
number assigned to the site. This causes the origin of the route to
appear consistent when viewed from all parts of the Internet.
3.1.2.2 Inconsistent Origin AS
A multihomed site may choose to use a private-use AS number [4] to
originate routes to transit providers. It is normal practice for
private-use AS numbers to be stripped from AS_PATH attributes before
they are allowed to propagate from transit providers towards peers,
and hence routes observed from other parts of the Internet may appear
to have inconsistent origins.
When using private-use AS numbers, collisions between the use of
individual numbers by different transit providers are possible.
These collisions are arguably best avoided by not using private-use
AS numbers for applications which involve routing across
administrative domain boundaries.
A multihomed site may request that their transit providers each
originate the site's routes from the transit providers' ASes.
Dynamic routing (for the purposes of withdrawing the site's route in
the event that connectivity to the site is lost) is still possible in
this case using the transit providers' internal routing systems to
trigger the externally-visible announcements.
Operational troubleshooting is facilitated by the use of a consistent
origin AS. This allows import policies to be based on a route's true
origin rather than on intermediate routing details which may
ultimately be transient (e.g. as transit providers are added and
dropped by the multihomed site).
3.2 Multiple Attachments to a Single Transit Provider
Multihoming can be achieved through multiple connections to a single
transit provider. This imposes no additional load on the global
routing table beyond that involved in the site being single-attached.
A site that has solved its multihoming needs in this way is commonly
referred to as "multi-attached".
It is not a requirement that the multiattached site exchange routing
information with its transit provider using BGP. However, some
mechanism for re-routing inbound and outbound traffic over remaining
Abley, et al. Expires July 5, 2005 [Page 6]
Internet-Draft IPv4 Multihoming January 2005
circuits in the event of failure is required, and BGP is often used
for this purpose.
Multi-attached sites gain no advantages from using PI addresses or
(where BGP is used) globally-unique AS numbers, and have no need to
be able to justify address assignments of a particular minimum size.
However, multi-attachment does not protect a site from the failure of
the single transit provider.
3.3 NAT- or RFC2260-based Multihoming
This method uses PA addresses assigned by each transit provider that
the site is connected to. The addresses are either allocated to
individual hosts within the network according to [5], or the site
uses Network Address Translation (NAT) to translate the various
provider addresses into a single set of private-use addresses [3]
within the site. The site is effectively singlehomed to more than
one transit provider, and none of the transit providers need to make
any accommodations beyond that which they would do for a
non-multihomed customer.
This approach accommodates a wide range of sites, from residential
Internet users to very large enterprises, requires no PI addresses or
AS numbers, and imposes no additional load on the Internet's global
routing system. However, it does not address several common
motivations for multihoming, most notably transport-layer
survivability.
4. Features of IPv4 Multihoming
The following sections describe some of the features of the
approaches described in Section 3 in the context of the general goals
for multihoming architectures presented in [7]. Detailed
descriptions and rationale for these goals can be found in that
document.
4.1 Redundancy
All the methods described provide redundancy which can protect a site
from some single-point failures. The degree of protection which is
obtained depends on the choice of transit providers, and the methods
used to interconnect the site to those transit providers.
4.2 Load Sharing
All of the methods describe provide some measure of load sharing
capability. Outbound traffic can be shared across ISPs using
appropriate exit selection policies; inbound traffic can be
Abley, et al. Expires July 5, 2005 [Page 7]
Internet-Draft IPv4 Multihoming January 2005
distributed using appropriate export policies designed to influence
the exit selection of remote sites sending traffic back towards the
multihomed site.
In the case of RFC2260/NAT multihoming, distribution of inbound
traffic is controlled by address selection on the host or NAT.
4.3 Performance
BGP-speaking sites can employ import policy which causes exit
selection to avoid paths that are known to be problematic. For
inbound traffic, sites can often employ route export policy which
affords different treatment of traffic towards particular address
ranges within their network.
It should be noted that this is not a comprehensive capability, and
there are in general many traffic engineering goals which can only be
loosely approximated using this approach.
In the case of RFC2260/NAT multihoming in the absence of BGP routing
information, management of outbound traffic in this way is not
possible. The path taken by inbound traffic for a particular session
can be controlled by source address selection on the host or NAT.
4.4 Policy
It is possible in some circumstances to route traffic of a particular
type (e.g. protocol) via particular transit providers if the devices
in the site which source or sink that traffic can be isolated to a
set of addresses for which special export policy can be applied.
An example of this capability is the grouping of budget, best-effort
Internet customers into a particular range of addresses covered by a
route which is announced preferentially over a single, low-quality
transit path.
In the case of RFC2260/NAT multihoming, policies such as those
described here can be accommodated by appropriate address selection
on the host or NAT. More flexible implementations may be possible
for sessions originated from the multihomed site by selecting an
appropriate source address on a host or NAT according to criteria
such as transport-layer protocols and addresses (ports).
4.5 Simplicity
The current methods used as multihoming solutions are not all without
complexity, but have proven to be sufficiently simple to be used.
They have the advantage of familiarity due to having been deployed
Abley, et al. Expires July 5, 2005 [Page 8]
Internet-Draft IPv4 Multihoming January 2005
extensively.
4.6 Transport-Layer Survivability
The BGP-based multihoming practices all provide some degree of
session survivability for transport-layer protocols. Where path
convergence following a re-homing event takes a long time, however,
sessions may time out.
Transport-layer sessions will not, in general, survive over a
re-homing event when using RFC2260/NAT multihoming. Transport
protocols which support multiple volatile endpoint addresses may be
able to provide session stability; however, these transport protocols
are not in wide use.
In all the methods described in this document, new transport-layer
sessions are able to be created following a re-homing event.
4.7 Impact on DNS
These multihoming strategies impose no new requirements on the DNS.
4.8 Packet Filtering
These multihoming practices do not preclude filtering of packets with
inappropriate source or destination addresses at the administrative
boundary of the multihomed site.
4.9 Scalability
Current IPv4 multihoming practices are thought to contribute to
significant observed growth in the amount of state held in the global
inter-provider routing system; this is a concern both because of the
hardware requirements it imposes and also because of the impact on
the stability of the routing system. This issue is discussed in
greater detail in [6].
Of the methods presented in this document, RFC2260/NAT multihoming
and multi-attaching to a single transit provider provide no
additional state to be held in the global routing system. The other
strategies all contribute to routing system state bloat.
Globally-unique AS numbers are a finite resource, and hence
widespread multihoming using strategies which require AS numbers to
be assigned might lead to increased resource contention.
Abley, et al. Expires July 5, 2005 [Page 9]
Internet-Draft IPv4 Multihoming January 2005
4.10 Impact on Routers
For some of the multihoming approaches described in this document,
the routers at the boundary of the multihomed site are required to
participate in BGP sessions with transit provider routers. Other
routers within the site generally have no special requirements beyond
those in singlehomed sites.
4.11 Impact on Hosts
There are no requirements of hosts beyond those in singlehomed sites.
4.12 Interactions between Hosts and the Routing System
There are no requirements for interaction between routers and hosts
beyond those in singlehomed sites.
4.13 Operations and Management
There is extensive operational experience in managing IPv4-multihomed
sites.
4.14 Cooperation between Transit Providers
Transit providers who are asked to announce or propagate a PA prefix
covered by some other (primary) transit provider usually obtain
authorisation first. There is no technical requirement or common
contractural policy which requires this coordination to take place,
however.
5. Security Considerations
This document discusses current IPv4 multihoming practices, but
provides no analysis of the security implications of multihoming.
6. IANA Considerations
This document requests no action by the IANA.
7. Acknowledgements
Special acknowledgement goes to Loughney for proof-reading and
corrections. Thanks also goes to Pekka Savola and Iljitsch van
Beijnum for providing feedback and contributing text.
8 Informative References
[1] Fuller, V., Li, T., Yu, J. and K. Varadhan, "Classless
Abley, et al. Expires July 5, 2005 [Page 10]
Internet-Draft IPv4 Multihoming January 2005
Inter-Domain Routing (CIDR): an Address Assignment and
Aggregation Strategy", RFC 1519, September 1993.
[2] Rekhter, Y. and T. Li, "A Border Gateway Protocol 4 (BGP-4)",
RFC 1771, March 1995.
[3] Rekhter, Y., Moskowitz, R., Karrenberg, D., Groot, G. and E.
Lear, "Address Allocation for Private Internets", BCP 5, RFC
1918, February 1996.
[4] Hawkinson, J. and T. Bates, "Guidelines for creation, selection,
and registration of an Autonomous System (AS)", BCP 6, RFC 1930,
March 1996.
[5] Bates, T. and Y. Rekhter, "Scalable Support for Multi-homed
Multi-provider Connectivity", RFC 2260, January 1998.
[6] Huston, G., "Commentary on Inter-Domain Routing in the
Internet", RFC 3221, December 2001.
[7] Abley, J., Black, B. and V. Gill, "Goals for IPv6
Site-Multihoming Architectures", RFC 3582, August 2003.
Authors' Addresses
Joe Abley
Internet Systems Consortium, Inc.
950 Charter Street
Redwood City, CA 94063
USA
Phone: +1 650 423 1317
EMail: jabley@isc.org
Kurt Erik Lindqvist
Netnod Internet Exchange
Bellmansgatan 30
Stockholm S-118 47
Sweden
Phone: +46 8 615 85 70
EMail: kurtis@kurtis.pp.se
Abley, et al. Expires July 5, 2005 [Page 11]
Internet-Draft IPv4 Multihoming January 2005
Elwyn B. Davies
Independent Researcher
Soham, Cambridgeshire CB7 5AW
UK
Phone: +44 7889 488 335
EMail: elwynd@dial.pipex.com
Benjamin Black
Layer8 Networks
EMail: ben@layer8.net
Vijay Gill
AOL
12100 Sunrise Valley Dr
Reston, VA 20191
US
Phone: +1 410 336 4796
EMail: vgill@vijaygill.com
Abley, et al. Expires July 5, 2005 [Page 12]
Internet-Draft IPv4 Multihoming January 2005
Intellectual Property Statement
The IETF takes no position regarding the validity or scope of any
Intellectual Property Rights or other rights that might be claimed to
pertain to the implementation or use of the technology described in
this document or the extent to which any license under such rights
might or might not be available; nor does it represent that it has
made any independent effort to identify any such rights. Information
on the procedures with respect to rights in RFC documents can be
found in BCP 78 and BCP 79.
Copies of IPR disclosures made to the IETF Secretariat and any
assurances of licenses to be made available, or the result of an
attempt made to obtain a general license or permission for the use of
such proprietary rights by implementers or users of this
specification can be obtained from the IETF on-line IPR repository at
http://www.ietf.org/ipr.
The IETF invites any interested party to bring to its attention any
copyrights, patents or patent applications, or other proprietary
rights that may cover technology that may be required to implement
this standard. Please address the information to the IETF at
ietf-ipr@ietf.org.
Disclaimer of Validity
This document and the information contained herein are provided on an
"AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY AND THE INTERNET
ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED,
INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE
INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
Copyright Statement
Copyright (C) The Internet Society (2005). This document is subject
to the rights, licenses and restrictions contained in BCP 78, and
except as set forth therein, the authors retain all their rights.
Acknowledgment
Funding for the RFC Editor function is currently provided by the
Internet Society.
Abley, et al. Expires July 5, 2005 [Page 13]
Html markup produced by rfcmarkup 1.129d, available from
https://tools.ietf.org/tools/rfcmarkup/