OSI Protocols

The Q3-Stack (OSI)

Q3 is a standardized management protocol which provides routing facilities (Layer 3) within the network. Q3 is built by the 7 Layer OSI stack with selected protocols forming a protocol suite for TMN interfaces.

M.3000 provides an overview to TMN Recommendations
Q.811 describes lower layer (1-3) protocols
Q.812 describes higher layer (4-7) protocols suitable for Q3
G.784 provides information about the protocol stack to be used for SDH-DCC

OSI Layer 1 to Layer 3 provide routing of OSI management information in the Data Communication Network (DCN). The protocols of Layer 4 to Layer 7 process the management PDUs (Protocol Data Unit), providing all relevant services. File transfer is done e.g. by means of the FTAM protocol in Layer 7. CMISE is the gate to the actual manager or agent software which represents the definition and dynamic behaviour of the managed objects, defined in GDMO.

Figure 1 - OSI Management Stack

The Q3 management traffic is always connected to an OSI management stack. Protection is provided by Q3 itself, i.e. no transmission protection is used. The Q3 traffic can be carried e.g. in a timeslot n of a 2Mbit/s signal. Q3 is connected using point-to-point connections.

General layer architecture of Q3 Stack

The Application Layer provides two application specific services: CMISE for management and FTAM for file transfer, e.g. software download. FTAM uses services provided by ACSE whereas CMISE uses both ACSE and ROSE.

The Presentation Layer provides data representation conversion, e.g. ASN.1 encoding and decoding BER (Basic Encoding Rules). Standards used in the Presentation Layer are:

ISO 8822 Presentation service definition.

ISO 8823 Connection-oriented presentation protocol specification.

ISO 8825 Specification of Basic Encoding Rules for Abstract Syntax Notation

The Session Layer provides the session management, e.g. opening and closing of sessions. In case of a connection loss it tries to recover the connection. If a connection is not used for a longer period, the session layer may close it down and re-open it for next use. This happens transparently to the higher layers. The Session layer provides synchronization points in the stream of exchanged packets. Standards used in the Session Layer are:

ISO 8326 Session service definition.

ISO 8327 Connection-oriented Session protocol specification.

The Transport Layer provides an end-to-end connection. There are different classes of transport protocols defined. The Transport layer provides flow control, e.g. sending of information is only allowed when the receiver has given credit to the sender. This prevents that information is send faster than it can be processed by the receiver.

Error detection and correction at packet level is also handled by Transport Layer, e.g. if a data packet is corrupted it is retransmitted. If the data packets coming from higher layers are too big, the Transport layer provides segmentation into smaller packets and their re-assembling at the receiver side. Protocols used in the Transport Layer are:

ISO 8072 Transport service definition.

ISO 8073 Protocol for providing the connection-mode transport service.

ISO 8602 Protocol for providing the connectionless-mode transport service.

The Network Layer provides routing and delivering of data packets to any node in the network. It can be divided into two main parts:

The basic part of forwarding data packets from one node to the next node based on the information in the node's local forwarding database. This part is specified by the "Connectionless Network Protocol" (CLNP).
The advanced part of automatically creating and updating the local forwarding database used by the first part. This part is specified by ES-IS and IS-IS protocols.

The format of the data packets, e.g. how addresses and data are coded, are defined in CLNP protocol. It also defines some header information like checksums and the lifetime of the packet. Lifetime information is used to prevent a packet being infinitely passed around when its destination can't be found. A data packet is generally referred to as Protocol Data Unit" (PDU). Protocols used in the Network Layer are:

ISO 8348 defines the Network Layer by the specification of service elements between Network Layer and Transport Layer. There are connection-mode (CONS) and connectionless-mode services (CLNS) defined.

ISO 8473-1 defines the protocol of the Connectionless Network Service (CLNS).

ISO 8473-2 defines CLNS on ISO 8802 subnetworks.

ISO 8473-3 defines CLNS on X.25 subnetworks.

ISO 8473-4 defines CLNS on subnetworks providing OSI data link service.

ISO 8473-5 defines CLNS on ISDN circuit switched B-channels.

ISO 9542 defines the End System to Intermediate System (ES-IS) protocol for CLNS.

ISO 10589 defines the Intermediate System to Intermediate System (IS-IS) intra-domain (Level 1) protocol for CLNS (ISO 8473).

ISO 10747 defines the inter-domain (Level 2) routing information exchange between Intermediate Systems to support forwarding of CLNS (ISO 8473) PDUs.

ISO 8208 defines the X.25 Packet Layer Protocol for Data Terminal Equipment (DTE).

ISO 8878 defines how to use X.25 to provide the OSI connection-mode network service.

The Data Link Layer provides error detection and correction at bit level. It also provides separation of data blocks. Point-to-point connections like ECC channels run Q.921 LapD (Link Access Procedure D-channel) protocol. The mapping between LapD and the OSI defined data link service is given in G.784 (Table 6-1). Broadcast connections like ethernet run the LLC (Logical Link Control) protocol. The X.25 protocol suite uses LapB, the high-level data link control protocol defined in ISO 7776.

The Physical Layer provides the bit transfer over the physical medium. The X.25 protocol suite references X.21 and X.21bis as standards for the physical layer, but also 2M TSn or G.703 may be used. The most frequently used protocol for local area networks (LAN) is ethernet, which may be used for OSI and TCP/IP traffic in equally.

OSI network layer topology

The global networking addressing domain consists of all NSAP addresses of the OSI environment. A network addressing domain is a subset of the global network addressing domain. It consists of all NSAP addresses that are assigned by one or more addressing authorities. Every NSAP address is part of a network addressing domain that is administered directly by one and only addressing authority. If that network addressing domain is part of a hierarchically higher addressing domain which must wholly contain it, the authority for the hierarchically lower domain is authorized by the authority for the higher domain to assign NSAP addresses from the lower domain. All network addressing domains are in this way ultimately part of the global network addressing domain.

Figure 2 - ES-IS and IS-IS Routing in a DCN

A network addressing domain may be divided into a number of separate routing domains. Each routing domain may be further partitioned to subdomains called areas (Level 1 subdomain). An area is a subdomain maintaining detailed routing information about its own internal composition, and also maintains routing information which allows it to reach other routing subdomains. Routing subdomain (Level 2 subdomain) is made of Level 2 intermediate systems in the same routing domain. An ES in the figure above may become an IS if a local manager gets connected to it and accesses through this local system a remote system (ES or IS) via the DCN.

NSAP address structure

NSAP (Network Service Access Point) address is the information that the OSI Network service provider needs to identify a particular network element. The NSAP address is carried by NPDU (Network Protocol Data Unit). The NSAP address structure and default value is as follows (ISO 8348 / AD2):


      |-IDP--|-------------------DSP-----------------|
      39.246F.00.000116.0000.0001.0001.DEAD.DEAD.F5B0.00
      |   |   |   |     |    |    |    |             |
      AFI IDI DFI AA    R    RD   RA   |             |
      |---------Area Address-----------|------ES-----|NS
      |-------Level 2 Routing----------|---Level 1---|

IDP = Initial Domain Part

The IDP is standardized by ISO.

AFI = Authority and Format Identifier
IDI = Initial Domain Identifier (C-number)

DSP = Domain Specific Part

The DSP is not standardized, but there is an address format
recommended by US GOSIP, ANSI and UK GOSIP Recommendations.

DFI = DSP Format Identifier (Version)
AA = Administrative Authority
R = Reserved; 0000 recommended
RD = Routing Domain; 0001
RA = Routing Area; 0001 "Normal Lan"
ES = DEAD.DEAD.F5B0 = End System ID; (6 bytes)
NS = N-Selector; The user of network service. For a single network service user, (Transport Layer) = 0

The End System ID can be constructed in the following way:

If there is a legal TCP/IP address for the equipment, that address can
be inserted in the ES-field after padding the fields if necessary.
For example: 131.228.87.6 => 131.228.087.006 => 131228087006
If there is no TCP/IP address, the ethernet address is inserted in the ES-field.

System Types

Basically the network layer (OSI Layer 3) of the OSI protocol can operate as an ES (End System) or an IS (Intermediate System). The difference between is based on the way they handle NPDUs.

End Systems (ES) deliver NPDUs to other systems and receive NPDUs from other systems, but do not relay NPDUs.
Level 1 Intermediate Systems (IS) deliver and receive NPDUs from other systems, and relay NPDUs from other source systems to other destination systems. They route directly to systems within their own area, and route towards a Level 2 IS when the destination system is in a different area.
Level 2 Intermediate Systems (IS) act as Level 1 Intermediate systems in addition to acting as a system in the subdomain consisting of Level 2 ISs. Systems in the Level 2 subdomain route towards a destination area, or another routing domain.

In a node operating as an IS, the routing information of other systems in the network is gathered with IS-IS protocol.

An IS on a LAN is called designated IS if it is designated to perform additional duties. In particular it generates Link State PDUs on behalf of the LAN, treating the LAN as a pseudonode. A LAN Level 1 designated IS purges Level 1 Link State PDUs and a LAN Level 2 designated IS purges Level 2 Link State PDUs.

End Systems (ES)

End Systems use the ES-IS protocol in order to deliver NPDUs to other systems and receive NPDUs from other systems, but do not relay NPDUs.

Figure 3 - Forwarding of data packets through network

ES-IS protocol is a "neighbour handshaking protocol". It enables routers and ES on a LAN to learn about each other's presence. If all nodes would be connected to a LAN, e.g. when there were always a direct connection between node manager and node, ES-IS protocol would be sufficient to manage the network. But ES-IS protocol is not able to handle managment connections over optical links, e.g. when there is no direct connection. The forwarding database of a node contains as many entries as there are nodes in the network. It states for every node, through which interface this node can be reached directly or indirectly. Every node maintains its own forwarding database. If a network supports only CLNP and ES-IS protocols, the forwarding databases have to be configured manually. This was the case, when no automatic routing protocols like IS-IS were available yet. Configuration happens by downloading the database to each node in the network.

Figure 4 - Manual configuration of routing database

This is obviously very time consuming and inflexible. Every time a new node is added to the network, the databases of all existing nodes have to be updated manually. There is no automatic re-routing possible when one link fails. These restrictions are overcome by introducing the automatic routing protocol IS-IS.

Intermediate Systems (IS)

Intermediate Systems use the IS-IS protocol in order to deliver and receive NPDUs from other systems, and relay NPDUs from other source systems to other destination systems. They route directly to systems within their own area, and route towards a Level 2 IS when the destination system is in a different area. When a node receives a data packet, it looks at the destination address. If the packet is meant for the node itself, it passes the data to its transport layer for further processing. Otherwise it checks in its forwarding database, through which interface the data packet has to be forwarded to reach its final destination. This procedure is repeated in every node, which the data packet travels along. The IS-IS protocol provides the automatic generation and update of forwarding databases. This happens in several steps:

Neighbour nodes learn about each other by exchanging "hello" packets.
Each node sends ("floods") the information about its neighbors through the whole network so that every node can create its own "network map".
Based on this network map the nodes calculate through which interfaces they can reach every other node ("forwarding database").

First of all every node has to learn about its neighbours. This is achieved by each node sending so called "hello" packets on all its interfaces. They just contain the NSAP address of the node. The sending interval is about 1 second. If a node receives the "hello" packets from its neighbour, it knows which NSAP address its neighbour has and through which interface it can be reached. The link to this node is said to be open. In the same way the link is said to be closed, if the node no longer receives "hello" packets from its neighbour. The node stores the state of all links in its link state database.

Figure 5 - Sending of "hello" messages

The next step is that every node sends the information about its neighbours to the whole network. These packets are so called "Link State PDUs" (LSP). As these packets are forwarded by every node, the information is literally "flooded" through the network. Every node adds the information of a received LSP to its own link state database. Now it knows not only about its own neighbours, but also about the neighbours of other nodes. This allows the node to create a map of the complete network. As all LSPs of all nodes are sent through the complete network, the needed bandwidth increases rapidly with the number of nodes in the network. A node generates LSPs on two conditions:

When a change in its link states occurred, e.g. when it got a new neighbour or when a connection to an existing neighbour has broken.
Once every 15 minutes, to ensure recovering from possible errors.

There is also an acknowledgement mechanism for received LSPs. It ensures that all nodes have the same notion of what is the most recent LSP from every other node. The used data packets are called "Sequence Number PDUs". They just list the received LSPs and are used to explicitly acknowledge or request more LSPs. The final step is the calculation of the forwarding databases. Calculation is based on the information of the LSP database ("the network map"). The used algorithm is called "Shortest Path First" (SPF): Every node creates a tree structure with itself as the root. The direct neighbours are added as main branches and then the neighbour's neighbours as subbranches. If one node can be reached via two branches, only the shorter branch is added. Recalculation of forwarding databases happens every time a change in the link state database occurs. The whole algorithm becomes very memory intensive when the number of nodes becomes too big. If the network becomes bigger, it has to be separated into different areas. The above described routing only happens inside one area. It is known as "Level 1" routing.

Figure 6 - Calculating of forwarding databse (SPF)

Level 2 routing also supports routing between different areas. Level 2 Intermediate systems act as Level 1 Intermediate systems in addition to acting as a system in the subdomain consisting of Level 2 ISs. Systems in the Level 2 subdomain route towards a destination area, or another routing domain. With level 2 routing there are one or more dedicated nodes in an area. These nodes ("level 2 routers") not only know about all the nodes in their area but also about the dedicated nodes of other areas. In this way they work as gateways between different areas.

OSI Stack Parameters

There are several Q3 stack parameters which have to be configured correctly to allow for interworking between different vendor's equipment. Some of them are configured automatically, e.g. by the node itself, whereas other parameters have to be configured by management action.

Automatically configured parameters

Line code - Line code is a layer 1 parameter. It specifies the code to transmit HDLC packets over an ECC link. There are two different line code possible:
- NRZ - Not Return to Zero
- NRZI - Not Return to Zero Inverted
The line code is a link specific parameter. Both ends of a link have to use the same line code, but other links in the network may use the other one. It may well happen that different line codes are used on different interfaces in one node. The algorithm for automatic line code configuration is "try and error". The interface starts sending and receiving with its default line code, e.g. NRZI. If it receives nothing with this line code, it switches sending and receiving over to NRZ code after a while. If it now starts receiving "hello" packets, it stays with this code. If it does not, it switches back to NRZI. The switching is continued until any packets are received. Switching happens independently for every interface in the node. It applies only to point-to-point interfaces (ECC), not to the Q3 LAN interface.
DataLinkBlockSize - DataLinkBlockSize is a layer 3 parameter. It specifies the maximum size of a data packet at the interface between layer 2 and layer 3. If a bigger packet is received from layer 2, it is rejected. If it is received from layer 4, it is segmented into several smaller packets, which fit into the maximum size. Smaller packets are always handled. DataLinkBlockSize is also a link specific parameter. Both ends of a link have to use the same value, but other links in the network may use another one. The minimum value for dataLinkBlockSize is standardized at 512 bytes. Higher values (e.g. 1497 bytes) reduce the need for data packet segmentation. The automatic configuration of dataLinkBlockSize uses the received "hello" packets to detect the used size at the other end of the link. The "hello" packets contain mainly the NSAP address of the sending node, but tradditionally they are padded to the size defined in dataLinkBlockSize to ensure that both ends of a link can handle the packet size from the other end.

Manually configured parameters

OriginatingL1LSPBufferSize - Every node sends Link State PDUs (LSP) through all its interfaces. They contain information about the neighbours of this node. These LSPs are generated centrally in the core unit and then send out through every interface. Their size depends on the number of known neighbours which might become quite big in the case of a LAN connection. Once the LSPs are generated (originated) in the core unit, they might not be segmented in the interfaces to fit into the dataLinkBlockSize. The only way to get big LSP packets smaller is to originate them right in the core unit in smaller pieces. OriginatingL1LSPBufferSize defines the maximum size of these packets. L1 stands for level 1 routing, e.g. routing inside the same area. As originated LSPs may not be segmented further, their size must fit into the maximum size of data link blocks. Because the LSPs are flooded all over the network, originatingL1LSPBufferSize is not a link specific parameter but it is network specific. This means that the smallest value for dataLinkBlockSize in the whole network also defines the maximum value of the originatingL1LSPBufferSize. The value of originatingL1LSPBufferSize is also valid for the SNPs (Sequence Number PDUs), e.g. the "acknowledgement" packets for received LSPs.
MaximumAreaAdresses - Usually, all nodes in an area have the same area address. However, sometimes it is useful to have multiple area addresses ("nick names") for one area. This is the case when one area has to be splitted up into two ore more areas (because the network grows) or when the address of an area has to be changed. The most graceful way of doing this is firstly to allow the relevant nodes to have both area addresses and then one by one remove the knowledge of the original address. The maximumAreaAddresses defines how many area addresses one node can have at the same time. To avoid any ambiguities, this parameter has to be the same for every node inside one area. The default value for maximumAreaAddresses has been standardized to the value 3.
Manual routing (Manual ES adjacencies) - Manual routing is needed for interoperability between different vendor's equipment, which doesn't support IS-IS routing. In this case the routing information for the nodes, which don't support IS-IS, is configured to the node adjacent to the other vendors network. That means that it is explicitly told to the manual configurable node which addresses can be found behind each physical interface. Normally IS-IS routing protocol distributes this information. After this manual configuration of ES adjacencies it is possible to manage the other vendor's equipment through the own network and the own nodes through the other vendor's network. However, it is necessary that the other vendor supports OSI CLNP and ES-IS protocol, which is generally the case.