[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Auto-tunnel Rant

To: Jared Mauch <jared@puck.nether.net>
Subject: Re: Auto-tunnel Rant
From: Pieter Liefooghe <pieter@info.vub.ac.be>
Date: Fri, 23 Mar 2001 17:06:24 +0100
CC: George Michaelson <ggm@dstc.edu.au>, Dino Farinacci <dino@procket.com>, finlayson@live.com, ssm-interest@external.cisco.com, mbone@ISI.EDU, mboned@network-services.uoregon.edu
References: <200103230026.QAA30267@dino-pc.procket.com> <12583.985314779@dstc.edu.au> <20010322215721.J31741@puck.nether.net>

Jared Mauch wrote:

>         My concern becomes that lets say streaming vendor X
> becomes a customer of my global ip network because we support
> native multicast and offer this as a service.  I am not opposed
> to tunneling over equipment within my network that does not support
> pim-sm, ssm, etc..  What I am opposed to is now the rest of
> the non-multicast enabled internet turns my routers into
> big tunneling machines to provide services across my public and
> private peering links to other networks customers that do not
> have multicast deployed.

Due to lack of time I was unable to present all different possible deployment
scenarios as I intended, but the CastGate architecture has a solution for you
concerns.
In the CastGate architecture, you as an ISP can deploy your own Tunnel Database
Server to enforce a local policy.
You can make sure that only YOUR customers get tunnels (....Or even only those who
have paid for it - when interfaced via Radius), you are not required to
participate in the "Global" effort! (though it would be nice ;-) )
The deployment of the Tunnel Database is very simple just indicate for which of
your own networks you want to enable tunnels (omit country entry) and install some
Tunnel Servers (possibly relay Tunnel Servers) at "strategic" locations in your
network.

This is different from the other proposals who - as described in their drafts -
have no way to enforce a policy.

In the CastGate architecture, if one tunnel end-point does not want to act as
tunnel point for a certain client, then the client can still find a tunnel
end-point located in the country or the region (so called public tunnel servers).
All other tunnel proposals - especially the AMT draft doesn't have a solution for
this because the anycast will always yield the same relay who is the "nearest".
The Auto tunnel proposal by Ross, does have a solution for this...it travels up
the path towards the sender to find a router to terminate the tunnel... but
whatever happens the traffic is anyway going to go through the downstream routers
(also the router who decided not to terminate the tunnel).

Pieter

Follow-Ups:
- Re: Auto-tunnel Rant
  - From: "Lucy E. Lynch" <llynch@darkwing.uoregon.edu>

References:
- Re: Auto-tunnel Rant
  - From: Dino Farinacci <dino@procket.com>
- Re: Auto-tunnel Rant
  - From: George Michaelson <ggm@dstc.edu.au>
- Re: Auto-tunnel Rant
  - From: Jared Mauch <jared@puck.nether.net>

Prev by Date: Re: Auto-tunnel Rant
Next by Date: Re: Auto-tunnel Rant
Prev by thread: Re: Auto-tunnel Rant
Next by thread: Re: Auto-tunnel Rant
Index(es):
- Date
- Thread