Network Working Group T. Li
INTERNET DRAFT Juniper Networks
Expire in six months November 1996
Internet Service Provider Address Coalitions (ISPACs)
<draft-li-ispac-00.txt>
Status of this Memo
This document is an Internet Draft. Internet Drafts are working
documents of the Internet Engineering Task Force (IETF), its Areas,
and its Working Groups. Note that other groups may also distribute
working documents as Internet Drafts.
Internet Drafts are draft documents valid for a maximum of six
months. Internet Drafts may be updated, replaced, or obsoleted by
other documents at any time. It is not appropriate to use Internet
Drafts as reference material or to cite them other than as a
``working draft'' or ``work in progress.''
Please check the 1id-abstracts.txt listing contained in the
internet-drafts Shadow Directories on nic.ddn.mil, nnsc.nsf.net,
nic.nordu.net, ftp.nisc.sri.com, or munnari.oz.au to learn the
current status of any Internet Draft.
1. Introduction
The introduction of CIDR [1, 2] substantially changed the way that
address allocation was performed in the Internet. The result is that
address allocation is provider-based: the address used by a host
depends on which service provider is used by the host. One of the
unfortunate implications is that if a host changes provider, it must
renumber. In many cases this is awkward, expensive, and difficult.
This note describes an organization that may be formed to help reduce
the need for user renumbering while still providing the benefits of
CIDR to the remainder of the network. Such organizations do not
currently exist, so this note is at best a discussion of the
foreseeable future and is not a catalog of existing experience.
These organizations are formed by grouping Internet Service Providers
(ISPs) into topologically connected sets, each of which shares one or
more IP address prefixes. Such an organization is called an ISP
Address Coalition (ISPAC, pronounced "ice pack"). To simplify the
discussion, we assume that the ISPAC shares a single prefix. The
discussion generalizes to multiple shared prefixes in the obvious
manner.
2. Creation of an ISPAC
An ISPAC can be created from a set of ISPs which are willing to share
an address prefix and are willing to meet certain technical and
administrative requirements. There may also be additional legal
requirements, such as anti-trust issues, that are beyond the scope of
this document.
The primary technical requirement is that all members of the ISPAC be
willing to cooperate and each treat the shared prefix as a common
resource. Further, each member of the ISPAC should perform
aggregation on the shared prefix address space when advertised
outside of the ISPAC. Note that this aggregation may be performed in
accordance with normal CIDR procedures, so this does not necessarily
imply that only the aggregated prefix is advertised. This
exceptional case is discussed in more detail below.
Because all members of an ISPAC are advertising the aggregated shared
prefix, any member may attract traffic for portions of the shared
prefix that need to be routed to another member. For this reason, it
is essential that all members of the ISPAC be able to route to any
other member of the ISPAC without leaving the ISPAC (i.e., the ISPAC
is connected). One way that this requirement could be satisfied is
for all members of the ISPAC to be present at a common interconnect.
The primary administrative requirement to form an ISPAC is the
selection of an addressing authority for the shared prefix. A
complete discussion of the issues in the selection of such an
authority are beyond the scope of this document, but may include
renumeration for providing for address space administration and
impartiality of the authority. Once an addressing authority is
selected, it is necessary to acquire the shared prefix. This would
be done according to the normal address allocation procedures. The
address space request from an ISPAC should be regarded as if it came
from any ISP with the properties of the union of the members. No
special privileges are accorded to requests from ISPACs, so normal
justifications for address space would apply.
3. Operation of an ISPAC
The day to day operations of an ISPAC has certain special
considerations which impact all of the members of the ISPAC. Because
sites may change providers within the ISPAC, intra-ISPAC routing must
be carefully managed. A user should be able to be assured that they
are the only ones using a component in the shared prefix and that
their routing reliability is comparable to that provided to users
within the ISP assigned address prefixes. To accomplish this, the
members of the ISPAC must exchange routing information about
components of the shared prefix. The exact mechanisms that are used
to accomplish this are beyond the scope of this document, but there
are many possibilities, including a common IGP, or via BGP. Members
of the ISPAC should agree on a particular set of mechanisms for
exchanging routing information about the shared prefix, including
protocols and any administrative filtering for sanity checking.
Because components of the shared prefix are generally not advertised
outside of the ISPAC, if the ISPAC itself is internally partitioned,
it will cause an outage between users of the shared prefix. To
prevent this, members of the ISPAC are strongly encouraged to insure
that the ISPAC is biconnected or triconnected. One way that this can
be accomplished is to have multiple interconnects at which all
members of the ISPAC are present. These may be private or public
interconnects. Alternately, increased connectivity can be provided
by a number of pairwise interconnects.
For inter-ISPAC routing, each member of the ISPAC must advertise the
shared prefix. Normally, this will be done with BGP, so the shared
prefix may appear to have multiple source autonomous systems. For
this reason, advertising the existence and membership of the ISPAC
and the particular prefix to the administrators of other domains is
useful to help eliminate false alarms in interdomain sanity checking
systems.
By default, simple advertisement of the shared prefix will cause all
traffic to enter the ISPAC at the nearest member. This will only be
optimal for sites which have their optimal connection to that
neighbor. In many cases, it would be preferable to determine optimal
entry points for components of the shared prefix. At the same time,
it is essential to not advertise all components to the remainder of
the network, as this would defeat the aggregation of the prefix. To
preserve aggregation and provide more optimal routing, there is a
useful technique which can be borrowed from normal interdomain
routing. In this application, this technique a member of the ISPAC
may advertise some of the components of the shared prefix, but the
member must insure that the scope of these advertisements is
carefully restricted. The restriction of scope is usually
accomplished by administrative filtering and careful coordination the
receiver of the advertisements.
Because any advertisement of the shared prefix by a member of the
ISPAC may attract traffic, it may be the case that a member may end
up providing transit service to other members of the ISPAC. It is up
to the members of the ISPAC to determine their own policy regarding
this transit traffic. It may be that such traffic is equally
distributed, in which case responsibilities are shared equally.
Alternately, due to customer dissimilarities, the traffic loads may
be highly skewed. In this case, the shared prefix may only be
advertised to external providers at interconnects where all members
and external providers are present. In this case, it is likely that
members would not advertise the shared prefix across their private
interconnects. This will affect the quality of the routing for sites
within the shared prefix.
Note that nothing in this discussion precludes a provider from
joining multiple ISPACs. Further, these ISPACs may share members in
any fashion. ISPACs may be disjoint, may overlap, may be tangential
or may intersect freely.
4. Benefits of an ISPAC
The primary benefit of an ISPAC is to reduce the requirement
on renumbering when a site changes provider. This benefit only
occurs when the site changes providers within the ISPAC. As a
result, a site gains the most benefit from the ISPAC when there are
many providers within the ISPAC. Further, a site may have
substantial costs if changing to a provider which is distant. Thus,
a site derives the most benefit if there are multiple providers
within the same geographic area. Note that this is most effective if
the different members of the ISPAC are closely comparable
competitors. The site will consider reliability, bandwidth and
service when selecting an alternate provider, in addition to
considering membership in the ISPAC.
Note that the end site itself is not a member of the ISPAC and has no
obligation whatsoever to change to another provider within the ISPAC.
Another benefit of an ISPAC is for sites that wish to be multi-homed
through multiple providers. If such sites are numbered from the
shared prefix and are connected through multiple providers that are
all members of the ISPAC, then no extra routing information needs to
be injected into global routing. This is a significant benefit
because even with CIDR, the scalability of global routing can fall
victim due to the number of prefixes injected due to multi-homed
sites.
Another benefit that aids in the aggregation of routing information
is the ability of the ISPAC to take multiple smaller providers and
advertise only the shared prefixes. Without the ISPAC, each ISP
would be forced to inject their own routes. The additional
aggregation resulting from membership in the ISPAC should greatly
improve the level of aggregation that can happen across small
providers, both by allowing the ISPAC a larger block of addresses and
by automatically aggregating the ISPAC shared prefixes at the border
of the ISPAC. An ISPAC also allows a smaller provider to receive
significant amounts of address space which is not allocated through
an upstream provider. This is advantageous as the smaller provider
may wish to be associated with one or more larger providers. An
association with any single larger provider might result in inferior
routing, and an inability to leave that large provider without
renumbering. With an ISPAC, such a member would instead be dependent
on the continued existence of the ISPAC.
5. Drawbacks of an ISPAC
Along with these many benefits, there are also a number of drawbacks
to membership in an ISPAC. The primary difficulty stems from the
inability to perform aggregation on the shared prefix within the
ISPAC. As noted above, this implies that members of the ISPAC must
be willing to devote a certain amount of resources to supporting
ISPAC routing. Also as mentioned above, the quality of routing for a
shared prefix may suffer as compared to a private prefix due to the
aggregation at the ISPAC boundary. Due to this aggregation, traffic
will tend to enter the nearest border of the ISPAC. Without
aggregation, traffic would seek the closest entry to the ISP. In
cases in which these two entries differ, the routing may be
suboptimal.
Another extremely important point about ISPACs is that they do not
eliminate the need to renumber. If a site chooses to leave the
ISPAC, they will have to renumber, just as if they left a non-ISPAC
provider. As with the normal renumbering case, certain
accommodations may be made to ease the transition to the sites new
prefix. These circumstances and operations are part of normal CIDR
prefix management and are not detailed here.
Similarly, if an ISP leaves an ISPAC, then any of the ISP's customers
which are numbered out of the shared prefix will have to make a
difficult decision. If they choose to remain with the ISP or change
to a ISP not in the ISPAC, then they will have to renumber.
Alternately, they can change to another provider within the ISPAC.
In both this and the above case, the end user ends up renumbering.
It is important to note these cases as the primary benefit of an
ISPAC is to decrease, but not eliminate, the need for site
renumbering.
If an ISPAC is composed of ISPs of differing sizes, there may be some
difficulty with inequities of responsibilities to the ISPAC. To see
this clearly, consider a case where a very large provider and a very
small provider form an ISPAC. In this case, the small provider may
have to provide transit service for the very large provider's
traffic. Yet in return, the small provider may receive little
transit traffic through the very large provider. Similarly, the very
large provider may consume a much larger percentage of the shared
prefix.
6. Generalization
So far, we have described the simplest and smallest forms of an
ISPAC. These consist of a small number of providers aligned around a
small number of interconnects. In this section we consider some of
the situations which can occur with larger ISPACs. Note that these
examples are used solely to illustrate the scalability of the concept
and are not a recommendation for particular ways of using ISPACs.
An obvious opportunity to use ISPACs is in metropolitan areas,
grouping providers around population centers. If the metropolitan
area has a sufficiently large population, it probably also has a
significant amount of traffic, one or more interconnects, and a
number of ISPs. An ISPAC in this situation bears a superficial
resemblance to geographic addressing. However, there are significant
differences. Unlike geographic addressing, participation in the
ISPAC is wholly voluntary. This maximizes the choices that the site
has, and so this should be considered a significant advantage.
Further, this allows competition between ISPACs, which is vital in
ensuring that the ISPAC provides quality service to its sites.
Finally, the ISPAC would easily allow private interconnects from
members to non-members, which may or may not advertise the shared
prefix. Scaling the number of interconnects is key to insuring high
connectivity in the topology, for distributing traffic, and for
optimizing routing.
ISPACs may be further generalized along topological or geographic
boundaries, although neither of these directions is required. For
example, if there are several providers which are at a number of
major interconnects, they may wish to form an ISPAC, even though the
interconnects may be widely separated. Such an ISPAC should be more
robust since it would not partition without the failure of several
interconnects. With this size of ISPAC, it is also possible for a
company to place both its headquarters and its remote offices within
the ISPAC shared prefix. This is beneficial in that the company does
not inject multiple prefixes into global routing.
If we continue this generalization to its logical extreme, we end up
with a global ISPAC which all providers belong to. The shared prefix
is similar to the provider independent address space that exists
today. However, there is one subtle difference in that the address
space is independently managed under the direction of the ISPAC.
7. Conclusions
To summarize, Internet Service Provider Address Coalitions (ISPACs)
are ad hoc organizations which can be formed by groups of ISPs.
There are significant technical and administrative difficulties to be
overcome in forming and maintaining these organizations. However,
the benefits that result from these organizations can be significant
both to end users and providers alike. At the same time, if executed
correctly, ISPACs are not detrimental to the scalability of Internet
routing, and may, in some cases, aid that scalability.
The primary benefit of an ISPAC is a reduction in the need for end
sites to renumber. This need is not eliminated with the application
of ISPACs, but can be significantly reduced, depending on the exact
deployment of ISPACs. The benefits to the ISP include the ability to
offer a desired service to interested sites, the ability to utilize
address space that is independent of larger providers, and the
ability to decrease the number of prefixes that it advertises.
7. Security Considerations
Security issues are not discussed in this document.
8. Acknowledgments
Much of this memo is the result of ongoing fruitful discussions with
Yakov Rekhter and the work done on stratum based aggregation. Joel
Halpern (NewBridge) and Bill Manning (ISI) were kind enough to review
and comment on a previous version of this paper.
9. Author's addresses
Tony Li
Juniper Networks, Inc.
3260 Jay St.
Santa Clara, CA 95051
Phone:+1 408 327 1906
Fax: +1 408 327 1910
email: tli@juniper.net
10. References
[1] Fuller, V., Li, T., Yu, J., and Varadhan, K., `Supernetting: an
Address Assignment and Aggregation Strategy', RFC1519, September 1993
[2] Rekhter, Y., Li, T., "An Architecture for IP Address Allocation
with CIDR", RFC1518, September 1993