[153532] in North American Network Operators' Group
Re: IPv6 /64 links (was Re: ipv6 book recommendations?)
daemon@ATHENA.MIT.EDU (Karl Auer)
Thu Jun 7 20:48:52 2012
From: Karl Auer <kauer@biplane.com.au>
To: nanog@nanog.org
In-Reply-To: <CAMbSiYD2FWuuGaPgD5C2KXw1baNWTWE_tM15AnyOo7Vz2xioMA@mail.gmail.com>
Date: Fri, 08 Jun 2012 10:48:12 +1000
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--=-ebOzahzuucm9tstf70zM
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
On Thu, 2012-06-07 at 22:27 +0000, Dave Hart wrote:
> Karl, you seem to fail to understand how ethernet NICs are implemented
> in the real world. Ignoring the optional (but common) promiscuous
> mode support and various offloading, IPv4 ARP is sent as ethernet
> broadcast and the NIC hardware and driver is in no position to filter
> -- it must be done by the IP stack. In contrast, ND is sent as
> ethernet multicast which are filtered by receivers in hardware.
> Whether or not the switches are smart enough to filter is an
> implementation decision that has no bearing on the requirement to
> filter in the NIC hardware.
I'm the first to admit that I often don't know stuff. One good reason to
be on the NANOG mailing list! But in this case...
Yes - whether with ARP or ND, any node has to filter out the packets
that do not apply to it (whether it's done by the NIC or the host CPU is
another question, not relevant here).
But in a properly switched IPv6 network, many/most ND packets do not
arrive at most nodes' network interfaces at all, so those nodes have no
filtering work to do. Yes, the nodes that DO get a packet - those
listening on the relevant multicast group, often a solicited node
multicast group - DO need to filter out the NDs that don't apply to
them, but the point is that a vastly reduced number of nodes are thus
inconvenienced compared.
The original post posited that ND could cause as much traffic as ARP. My
point is that it probably doesn't, because the ND packets will only be
seen on the specific switch ports belonging to those nodes that are
listening to the relevant multicast groups, and only those nodes will
actually receive the ND packets. In contrast to ARP, which is broadcast,
always, to all nodes, and thus goes out every switch port in the
broadcast domain.
This is pretty much the *point* of using multicast instead of broadcast.
Regards, K.
--=20
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Karl Auer (kauer@biplane.com.au)
http://www.biplane.com.au/kauer
GPG fingerprint: AE1D 4868 6420 AD9A A698 5251 1699 7B78 4EEE 6017
Old fingerprint: DA41 51B1 1481 16E1 F7E2 B2E9 3007 14ED 5736 F687
--=-ebOzahzuucm9tstf70zM
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iF4EABEIAAYFAk/RS8UACgkQFpl7eE7uYBcqdQEAsyO8Sw/zg6N42T5yVZmXdcxV
EzwlEcjP0e38JxPp25QBALulROSUW3PTGY8df20j8nZqP7AGfhecJMT+GUduSF6K
=A2+F
-----END PGP SIGNATURE-----
--=-ebOzahzuucm9tstf70zM--
