nanog mailing list archives

Re: Interesting BFD discussion on reddit

From: Glen Kent <glen.kent () gmail com>
Date: Mon, 16 Feb 2015 08:55:17 +0530




I wonder if Trio, EZChip and friends could do SHA in NPU, my guess is yes
they
could, but perhaps there is even more appropriate hash for this use-case.
I'm not entirely convinced doing hash for each BFD packet is impractical.

[0] http://www.ietf.org/id/draft-mahesh-bfd-authentication-00.txt



You might want to take a look at:
http://www.ietf.org/proceedings/89/slides/slides-89-mpls-9.pdf

Look at the slides 11 onwards.

Doing HMAC calculation for each packet adversely affects the number of
concurrent sessions that can be supported.

Glen.


--
  ++ytti

Current thread:

Interesting BFD discussion on reddit Dave Waters (Feb 15)
- Re: Interesting BFD discussion on reddit Saku Ytti (Feb 15)
  - Re: Interesting BFD discussion on reddit Glen Kent (Feb 15)
    - Re: Interesting BFD discussion on reddit Saku Ytti (Feb 16)
    - Re: Interesting BFD discussion on reddit Eygene Ryabinkin (Feb 16)
    - Re: Interesting BFD discussion on reddit Glen Kent (Feb 16)
    - Re: Interesting BFD discussion on reddit Saku Ytti (Feb 16)
    - Re: Interesting BFD discussion on reddit Sudeep Khuraijam (Feb 20)
- Re: Interesting BFD discussion on reddit Rob Seastrom (Feb 16)
  - Re: Interesting BFD discussion on reddit Saku Ytti (Feb 16)
  - Re: Interesting BFD discussion on reddit Dave Waters (Feb 17)
    - Re: Interesting BFD discussion on reddit Rob Seastrom (Feb 16)
    - Re: Interesting BFD discussion on reddit Hugo Slabbert (Feb 17)