Service Location Protocol
The Service Location Protocol is a service discovery protocol that allows computers and other devices to find services in a local area network without prior configuration. SLP has been designed to scale from small, unmanaged networks to large enterprise networks. It has been defined in RFC 2608 and RFC 3224 as standards track document.
Overview
SLP is used by devices to announce services on a local network. Each service must have a URL that is used to locate the service. Additionally it may have an unlimited number of name/value pairs, called attributes. Each device must always be in one or more scopes. Scopes are simple strings and are used to group services, comparable to the network neighborhood in other systems. A device cannot see services that are in different scopes.The URL of a printer could look like:
service:printer:lpr://myprinter/myqueue
This URL describes a queue called "myqueue" on a printer with the host name "myprinter". The protocol used by the printer is LPR. Note that a special URL scheme "service:" is used by the printer. "service:" URLs are not required: any URL scheme can be used, but they allow you to search for all services of the same type regardless of the protocol that they use. The first three components of the "service:" URL type are also called service type. The first two components are called abstract service type. In a non-"service:" URL the schema name is the service type.
The attributes of the printer could look like:
,
,
,
,
,
The example uses the standard syntax for attributes in SLP, only newlines have been added to improve readability.
The definition of a "service:" URL and the allowed attributes for the URL are specified by a service template, a formalized description of the URL syntax and the attributes. Service templates are defined in RFC 2609.
SLP allows several query types to locate services and obtain information about them:
- It can search for all services with the same service type or abstract service type
- The query can be combined with a query for attributes, using LDAP's query language.
- Given its URL, the attributes of a service can be requested. In standard SLP the attributes are not returned in the query result and must be fetched separately. The Attribute List Extension fixes this problem.
- A list of all service types can be obtained
- A list of all existing scopes can be requested.
Roles
- User Agents are devices that search for services
- Service Agents are devices that announce one or more services
- Directory Agents are devices that cache services information. They are used in larger networks to reduce the amount of traffic and allow SLP to scale. The existence of DAs in a network is optional, but if a DA is present, UAs and SAs are required to use it instead of communicating directly.
Network protocol
SLP is a packet-oriented protocol. Most packets are transmitted using UDP, but TCP can also be used for the transmission of longer packets. Because of the potential unreliability of UDP, SLP repeats all multicasts several times in increasing intervals until an answer has been received.All devices are required to listen on port 427 for UDP packets, SAs and DAs should also listen for TCP on the same port. Multicasting is used extensively by SLP, especially by devices that join a network and need to find other devices.
The operation of SLP differs considerably, depending on whether a Directory Agent is in the network or not. When a client first joins a network it multicasts a query for DAs on the network. If no DA answers it will assume that it is in a network without DAs. It is also possible to add DAs later, as they multicast a 'heartbeat' packet in a predefined interval that will be received by all other devices. When an SA discovers a DA, it is required to register all services at the DA. When a service disappears the SA should notify the DA and unregister it.
In order to send a query in a network without a DA, the UA sends a multicast UDP packet that contains the query. All SAs that contain matches will send a UDP answer to the UA. If the answer is too large to fit into a single UDP packet, the packet will be marked as "overflown" and the UA is free to send the query directly to the SA using TCP, which can transmit packets of any size.
In order to send a query in a network with a DA, the UA will send the query packet to the DA using either UDP or TCP. As every SA must register all services with the DA, the DA is able to fulfill the request completely and simply sends the result back to the UA.
Security
SLP contains a public-key cryptography based security mechanism that allows signing of service announcements. In practice it is rarely used:- The public keys of every service provider must be installed on every UA. This requirement defeats the original purpose of SLP, being able to locate services without prior configuration.
- Protecting only the services is not enough. Service URLs contain host names or IP addresses, and in a local network it is almost impossible to prevent IP or DNS spoofing. Thus only guaranteeing the authenticity of the URL is not enough if any device can respond to the address.
- As addresses can be spoofed, the authenticity of the device must be proven at a different level anyway, e.g. in the application protocol or in the packet layer. Doing it additionally in SLP does not provide much additional security.
Adoption
- SLP is frequently used for locating printers and supported by printing systems such as CUPS.
- SLP is often found in LAN-enabled printers, so that they are discoverable out of the box. Some client print drivers can use this for printer discovery.
- ACN, a protocol being developed for entertainment control, uses SLP to find different devices such as dimmers and intelligent lights.
- The classic Mac OS, and Mac OS X up to version 10.1, used SLP to locate file shares and other services. However, features introduced with Mac OS X use Zeroconf.
- Netware Core Protocol clients in a pure IP environment use SLP to locate Novell NetWare and Novell Open Enterprise Server servers.
- SUSE Linux supports SLP for a variety of services since version 9.1.
- Sun Microsystems supports SLPv1 and SLPv2 including SA, UA and DA functionality.
- The Distributed Management Task Force has standardized discovery of WBEM Services via SLP.
- The Storage Networking Industry Association has mandated the use of SLP for services discovery in the Storage Management Initiative - Specification.