summaryrefslogtreecommitdiff
path: root/doc/rfc/rfc4720.txt
diff options
context:
space:
mode:
Diffstat (limited to 'doc/rfc/rfc4720.txt')
-rw-r--r--doc/rfc/rfc4720.txt507
1 files changed, 507 insertions, 0 deletions
diff --git a/doc/rfc/rfc4720.txt b/doc/rfc/rfc4720.txt
new file mode 100644
index 0000000..68e1a22
--- /dev/null
+++ b/doc/rfc/rfc4720.txt
@@ -0,0 +1,507 @@
+
+
+
+
+
+
+Network Working Group A. Malis
+Request for Comments: 4720 Tellabs
+Category: Standards Track D. Allan
+ Nortel Networks
+ N. Del Regno
+ MCI
+ November 2006
+
+
+ Pseudowire Emulation Edge-to-Edge (PWE3)
+ Frame Check Sequence Retention
+
+Status of This Memo
+
+ This document specifies an Internet standards track protocol for the
+ Internet community, and requests discussion and suggestions for
+ improvements. Please refer to the current edition of the "Internet
+ Official Protocol Standards" (STD 1) for the standardization state
+ and status of this protocol. Distribution of this memo is unlimited.
+
+Copyright Notice
+
+ Copyright (C) The IETF Trust (2006).
+
+Abstract
+
+ This document defines a mechanism for preserving Frame Check Sequence
+ (FCS) through Ethernet, Frame Relay, High-Level Data Link Control
+ (HDLC), and PPP pseudowires.
+
+Table of Contents
+
+ 1. Overview ........................................................1
+ 2. Specification of Requirements ...................................3
+ 3. Signaling FCS Retention with MPLS-Based Pseudowires .............3
+ 4. Signaling FCS Retention with L2TPv3-Based Pseudowires ...........4
+ 5. Security Considerations .........................................5
+ 6. Applicability Statement .........................................5
+ 7. IANA Considerations .............................................6
+ 8. Acknowledgement .................................................6
+ 9. Normative References ............................................6
+
+
+
+
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 1]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+1. Overview
+
+ The specifications for Ethernet, Frame Relay, HDLC, and PPP
+ pseudowire encapsulation [1] [2] [3] [9] [10] [11] include a mode of
+ use whereby frames are transparently delivered across the pseudowire
+ without any header or other alterations by the pseudowire ingress or
+ egress Provider Edge (PE). (Note that this mode is inherent for HDLC
+ and PPP Pseudowires.)
+
+ However, these specifications all specify that the original Frame
+ Check Sequence (FCS) be removed at ingress and regenerated at egress,
+ which means that the frames may be subject to unintentional
+ alteration during their traversal of the pseudowire from the ingress
+ to the egress PE. Thus, the pseudowire cannot absolutely be
+ guaranteed to be "transparent" in nature.
+
+ To be more precise, pseudowires, as currently defined, leave the
+ payload vulnerable to unintended modification occurring while
+ transiting the encapsulating network. Not only can a PW-aware device
+ internally corrupt an encapsulated payload, but ANY LSR or router in
+ the path can corrupt the encapsulated payload. In the event of such
+ corruption, there is no way to detect the corruption through the path
+ of the pseudowire. Further, because the FCS is calculated upon
+ network egress, any corruption will pass transparently through ALL
+ Layer 2 switches (Ethernet and Frame Relay) through which the packets
+ travel. Only at the endpoint, assuming that the corrupted packet
+ even reaches the correct endpoint, can the packet be discarded, and
+ depending on the contents of the packet, the corruption may not ever
+ be detected.
+
+ Not only does the encapsulation technique leave the payload
+ unprotected, it also subverts the error checking mechanisms already
+ in place in SP and customer networks by calculating FCS on
+ questionable data.
+
+ In a perfect network comprising perfect equipment, this is not an
+ issue. However, as there is no such thing, it is an issue. SPs
+ should have the option of saving overhead by yielding the ability to
+ detect faults. Equally, SPs should have the option to sacrifice the
+ overhead of carrying the original FCS end-to-end to ensure the
+ ability to detect faults in the encapsulating network.
+
+ This document defines such a mechanism to allow the ingress PE to
+ retain the original frame FCS on ingress to the network, and it
+ relieves the egress PE of the task of regenerating the FCS.
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 2]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+ This is an OPTIONAL mechanism for pseudowire implementations. For
+ interoperability with systems that do not implement this document,
+ the default behavior is that the FCS is removed at the ingress PE and
+ regenerated at the egress PE, as specified in [1], [2], and [3].
+
+ This capability may be used only with Ethernet pseudowires that use
+ "raw mode" [1], Frame Relay pseudowires that use "port mode" [2] [3],
+ and HDLC and PPP pseudowires [3].
+
+ Note that this mechanism is not intended to carry errored frames
+ through the pseudowire; as usual, the FCS MUST be examined at the
+ ingress PE, and errored frames MUST be discarded. The FCS MAY also
+ be examined by the egress PE; if this is done, errored frames MUST be
+ discarded. The egress PE MAY also wish to generate an alarm or count
+ the number of errored frames.
+
+2. Specification of Requirements
+
+ The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
+ "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
+ document are to be interpreted as described in RFC 2119 [6].
+
+3. Signaling FCS Retention with MPLS-Based Pseudowires
+
+ When using the signaling procedures in [4], there is a Pseudowire
+ Interface Parameter Sub-TLV type used to signal the desire to retain
+ the FCS when advertising a VC label [5]:
+
+ Parameter Length Description
+ 0x0A 4 FCS Retention Indicator
+
+ The presence of this parameter indicates that the egress PE requests
+ that the ingress PE retain the FCS for the VC label being advertised.
+ It does not obligate the ingress PE to retain the FCS; it is simply
+ an indication that the ingress PE MAY retain the FCS. The sender
+ MUST NOT retain the FCS if this parameter is not present in the VC
+ FEC element.
+
+ The parameter includes a 16-bit FCS length field, which indicates the
+ length of the original FCS being retained. For Ethernet pseudowires,
+ this length will always be set to 4. For HDLC, PPP, and Frame Relay
+ pseudowires, this length will be set to either 2 or 4. Since the FCS
+ length on these interfaces is a local setting, retaining the FCS only
+ makes sense if the FCS length is identical on both ends of the
+ pseudowire. Including the FCS length in this parameter allows the
+ PEs to ensure that the FCS is only retained when it makes sense.
+
+
+
+
+
+Malis, et al. Standards Track [Page 3]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+ Since unknown parameters are silently ignored [4], backward
+ compatibility with systems that do not implement this document is
+ provided by requiring that the FCS be retained ONLY if the FCS
+ Retention Indicator with an identical setting for the FCS length has
+ been included in the advertisements for both directions on a
+ pseudowire.
+
+ If the ingress PE recognizes the FCS Retention Indicator parameter
+ but does not wish to retain the FCS with the indicated length, it
+ need only issue its own label mapping message for the opposite
+ direction without including the FCS Retention Indicator. This will
+ prevent FCS retention in either direction.
+
+ If PWE3 signaling [4] is not in use for a pseudowire, then whether
+ the FCS is to be retained MUST be identically provisioned in both PEs
+ at the pseudowire endpoints. If there is no provisioning support for
+ this option, the default behavior is to remove the FCS.
+
+4. Signaling FCS Retention with L2TPv3-Based Pseudowires
+
+ This section uses the following terms as defined in [7]:
+
+ Incoming-Call-Request (ICRQ)
+ Incoming-Call-Reply (ICRP)
+ Incoming-Call-Connected (ICCN)
+ Attribute Value Pair (AVP)
+ L2TP Control Connection Endpoint (LCCE)
+
+ When using the signaling procedures in [7], the FCS Retention AVP,
+ Attribute Type 92, is used.
+
+ The Attribute Value field for this AVP has the following format:
+
+ 0 1
+ 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5
+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+ | FCS Length |
+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+
+ The FCS Length is a 2-octet unsigned integer.
+
+ The presence of this AVP in an ICRQ or ICRP message indicates that an
+ LCCE (PE) requests that its peer retain FCS for the L2TP session
+ being established. If the receiving LCCE recognizes the AVP and
+ complies with the FCS retention request, it MUST include an FCS
+ Retention AVP as an acknowledgement in a corresponding ICRP or ICCN
+ message. FCS Retention is always bidirectional; thus, FCS is only
+
+
+
+
+Malis, et al. Standards Track [Page 4]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+ retained if both LCCEs send an FCS Retention AVP during session
+ establishment.
+
+ The Attribute Value is a 16-bit FCS length field, which indicates the
+ length of the original FCS being retained. For Ethernet pseudowires,
+ this length will always be set to 4. For HDLC, PPP, and Frame Relay
+ pseudowires, this length will be set to either 2 or 4. Since the FCS
+ length on these interfaces is a local setting, retaining the FCS only
+ makes sense if the FCS length is identical on both ends of the
+ pseudowire. Including the FCS length in this AVP allows the PEs to
+ ensure that the FCS is only retained when doing so makes sense.
+
+ The Length of this AVP is 8. The M bit for this AVP MUST be set to 0
+ (zero). This AVP MAY be hidden (the H bit MAY be 1 or 0).
+
+5. Security Considerations
+
+ This mechanism enhances the data integrity of transparent Ethernet,
+ Frame Relay, and HDLC pseudowires, because the original FCS, as
+ generated by the Customer Edge (CE), is included in the
+ encapsulation. When the encapsulated payload passes FCS checking at
+ the destination CE, it is clear that the payload was not altered
+ during its transmission through the network (or at least to the
+ accuracy of the original FCS; but that is demonstrably better than no
+ FCS at all).
+
+ Of course, nothing comes for free; this requires the additional
+ overhead of carrying the original FCS (in general, either two or four
+ octets per payload packet).
+
+ This signaling is backward compatible and interoperable with systems
+ that do not implement this document.
+
+6. Applicability Statement
+
+ In general, this document is intended to further extend the
+ applicability of the services defined by [1], [2], and [3] to make
+ them more suitable for use in deployments where data integrity is an
+ issue (or at least is as much of an issue as in the original services
+ that defined the FCS usage in the first place). There are some
+ situations where this extension is not necessary, such as where the
+ inner payloads have their own error-checking capabilities (such as
+ TCP). But for inner payloads that do rely on the error-detecting
+ capabilities of the link layer (such as SNA), this additional
+ protection can be invaluable.
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 5]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+ When pseudowires are being used to connect 802.1 bridges, this
+ document allows pseudowires to comply with the requirement that all
+ media interconnecting 802.1 bridges have (at least) 32-bit FCS
+ protection.
+
+ Note that this document is one possible alternative for a service
+ provider to enhance the end-to-end data integrity of pseudowires.
+ Other mechanisms may include the use of end-to-end IPsec between the
+ PEs, or internal mechanisms in the P routers to ensure the integrity
+ of packets as they are switched between ingress and egress
+ interfaces. Service providers may wish to compare the relative
+ strengths of each approach when planning their pseudowire
+ deployments; however, an argument can be made that it may be wasteful
+ for an SP to use an end-to-end integrity mechanism that is STRONGER
+ than the FCS generated by the source CE and checked by the
+ destination CE.
+
+7. IANA Considerations
+
+ This document does not specify any new registries for IANA to
+ maintain.
+
+ Note that [5] allocates the FCS Retention Indicator interface
+ parameter; therefore, no further IANA action is required.
+
+ IANA assigned one value within the L2TP "Control Message Attribute
+ Value Pairs" section as per [8]. The new AVP is 92 and is referred
+ to in the IANA L2TP parameters registry as "FCS Retention".
+
+8. Acknowledgement
+
+ The authors would like to thank Mark Townsley for the text in Section
+ 4.
+
+9. Normative References
+
+ [1] Martini, L., Rosen, E., El-Aawar, N., and G. Heron,
+ "Encapsulation Methods for Transport of Ethernet over MPLS
+ Networks", RFC 4448, April 2006.
+
+ [2] Martini, L., Ed., Kawa, C., Ed., and A. Malis, Ed.,
+ "Encapsulation Methods for Transport of Frame Relay over
+ Multiprotocol Label Switching (MPLS) Networks", RFC 4619,
+ September 2006.
+
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 6]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+ [3] Martini, L., Rosen, E., Heron, G., and A. Malis, "Encapsulation
+ Methods for Transport of PPP/High-Level Data Link Control (HDLC)
+ over MPLS Networks", RFC 4618, September 2006.
+
+ [4] Martini, L., Rosen, E., El-Aawar, N., Smith, T., and G. Heron,
+ "Pseudowire Setup and Maintenance Using the Label Distribution
+ Protocol (LDP)", RFC 4447, April 2006.
+
+ [5] Martini, L., "IANA Allocations for Pseudowire Edge to Edge
+ Emulation (PWE3)", BCP 116, RFC 4446, April 2006.
+
+ [6] Bradner, S., "Key words for use in RFCs to Indicate Requirement
+ Levels", BCP 14, RFC 2119, March 1997.
+
+ [7] Lau, J., Townsley, M., and I. Goyret, "Layer Two Tunneling
+ Protocol - Version 3 (L2TPv3)", RFC 3931, March 2005.
+
+ [8] Townsley, W., "Layer Two Tunneling Protocol (L2TP) Internet
+ Assigned Numbers Authority (IANA) Considerations Update", BCP
+ 68, RFC 3438, December 2002.
+
+ [9] Aggarwal, R., Townsley, M., and M. Dos Santos, "Transport of
+ Ethernet Frames over Layer 2 Tunneling Protocol Version 3
+ (L2TPv3)", RFC 4719, November 2006.
+
+ [10] Townsley, M., Wilkie, G., Booth, S., Bryant, S., and J. Lau,
+ "Frame Relay over Layer 2 Tunneling Protocol Version 3
+ (L2TPv3)", RFC 4591, August 2006.
+
+ [11] Pignataro, C. and M. Townsley, "High-Level Data Link Control
+ (HDLC) Frames over Layer 2 Tunneling Protocol, Version 3
+ (L2TPv3)", RFC 4349, February 2006.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 7]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+Authors' Addresses
+
+ Andrew G. Malis
+ Tellabs
+ 90 Rio Robles Dr.
+ San Jose, CA 95134
+
+ EMail: Andy.Malis@tellabs.com
+
+
+ David Allan
+ Nortel Networks
+ 3500 Carling Ave.
+ Ottawa, Ontario, CANADA
+
+ EMail: dallan@nortel.com
+
+
+ Nick Del Regno
+ MCI
+ 400 International Parkway
+ Richardson, TX 75081
+
+ EMail: nick.delregno@mci.com
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 8]
+
+RFC 4720 PWE3 Frame Check Sequence Retention November 2006
+
+
+Full Copyright Statement
+
+ Copyright (C) The IETF Trust (2006).
+
+ This document is subject to the rights, licenses and restrictions
+ contained in BCP 78, and except as set forth therein, the authors
+ retain all their rights.
+
+ This document and the information contained herein are provided on an
+ "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
+ OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY, THE IETF TRUST,
+ AND THE INTERNET ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES,
+ EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT
+ THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY
+ IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR
+ PURPOSE.
+
+Intellectual Property
+
+ The IETF takes no position regarding the validity or scope of any
+ Intellectual Property Rights or other rights that might be claimed to
+ pertain to the implementation or use of the technology described in
+ this document or the extent to which any license under such rights
+ might or might not be available; nor does it represent that it has
+ made any independent effort to identify any such rights. Information
+ on the procedures with respect to rights in RFC documents can be
+ found in BCP 78 and BCP 79.
+
+ Copies of IPR disclosures made to the IETF Secretariat and any
+ assurances of licenses to be made available, or the result of an
+ attempt made to obtain a general license or permission for the use of
+ such proprietary rights by implementers or users of this
+ specification can be obtained from the IETF on-line IPR repository at
+ http://www.ietf.org/ipr.
+
+ The IETF invites any interested party to bring to its attention any
+ copyrights, patents or patent applications, or other proprietary
+ rights that may cover technology that may be required to implement
+ this standard. Please address the information to the IETF at
+ ietf-ipr@ietf.org.
+
+Acknowledgement
+
+ Funding for the RFC Editor function is currently provided by the
+ Internet Society.
+
+
+
+
+
+
+Malis, et al. Standards Track [Page 9]
+