DOCSLIB.ORG

Ipv6 + Ipv4 Dual Stack App Ipv4 + Ipv6 Edge Ipv4 And/Or Ipv4 Edge Core

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Ipv6 + Ipv4 Dual Stack App Ipv4 + Ipv6 Edge Ipv4 And/Or Ipv4 Edge Core Cisco Expo 2012 Jak nasadit a rozvíjet IPv6 nejen v sítích SP SP2 / L2 Jiří Chaloupka – Cisco Cisco Expo © 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 • Twitter www.twitter.com/CiscoCZ • Talk2cisco www.talk2cisco.cz/dotazy • SMS 721 994 600 CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 2 • Why IPv6 • Goal of Transition Technologies • IPv4 What next? • Overview of Transition Technologies • CGNv6 NAT44/NAT64 • Summary CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 3 Feb 3, 2011 IANA Pool RIR Pool * CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 4 . The ISP problem: Users need the IPv4 Internet . The user problem: Problem? Shared IPv4 address space At some point, services will work better using IPv6 But….. CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public 55 2067 Hiroshi Esaki: www2.jp.apan.net/meetings/kaohsiung2009/presentations/ipv6/esaki.ppt CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 6 Hiroshi Esaki: www2.jp.apan.net/meetings/kaohsiung2009/presentations/ipv6/esaki.ppt CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 7 Hiroshi Esaki: www2.jp.apan.net/meetings/kaohsiung2009/presentations/ipv6/esaki.ppt CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 8 • Long term: simple network, single protocol – IPv6 • Short term: world won’t switch simultaneously • So: IPv6 needs to interoperate with IPv4 CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 9 Obtain IPv4 Addresses IPv4 IPv4 Address Sharing Solutions (e.g., CGN) IPv4 Address Run-Out 6rd Dual + Stack CGN Lite IPv6 6rd Dual Stack CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 10 . Dual Stack (in devices/hosts and networks) IPv4 and IPv6 operate in tandem over shared or dedicated links Applications Dual IPv4 IPv4 Shared Stack Aware Links IPv6 IPv6 IPv6 IPv6 IPv4 IPv4 . Tunnelling over IPv4 or MPLS Dedicated Links IPv6 confined to the edge of the IPv4 / MPLS core IPv6 IPv4/MPLS IPv4/MPLS IPv6 Tunnel • IPv6 Only IPv6 is the only protocol operating in the network IPv6 IPv6 IPv6 • 6to4 Protocol Translation (BEHAVE IETF Working Group) Allow IPv6-only devices to communicate with IPv4-only devices CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 11 IPv6/MPLS Core is easy. The Access is difficult. Why can’t today’s broadband user just access IPv6 Internet? NMS/Addressing AAA/DHCP • IPv6 Parameters • DHCPv6 IPv6 IPv4 L2 RG Access Node DSLAM, etc BNG User RG Access Node Aggregation Aggregation Core • OS v6 Stack • IPv6 LAN • DHCPv6 snooping • ICMPv6 snooping • IPv6 Stack • IPv6 Routing • IPv6 WAN • ICMPv6 snooping • IPv6 NMS • IPv6 PE/VPE • MPLS 6PE/6VPE • IPv6 Routing • IPv6 NMS • IPv6 NMS • IPv6 NMS • IPv6 Security . Key problem with native v6: Access Node (DSLAM, FTTX switch), CPE (new box needed), sometimes BRAS/GGSN (no dual-stack sessions) . Tunneling IPv6 over existing PPPoE (dual-stack pppoe) or IPv4 infrastructure (6RD) provides a transition solution with minimal number of “touch points” © 2010 Cisco and/or its affiliates. All rights reserved. 12 IPv6 + IPv4 Dual Stack App IPv4 + IPv6 Edge IPv4 and/or IPv4 edge Core CE PE P P PE CE IPv4 IPv6 IPv4/IPv6 IPv4 configured interface IPv4 Core IPv6 Some or all interfaces in cloud dual configured IPv6 configured interface . All P + PE routers are capable of IPv4+IPv6 support . Two IGPs supporting IPv4 and IPv6 . Memory considerations for larger routing tables . Native IPv6 multicast support . All IPv6 traffic routed in global space . Good for content distribution and global services (Internet) CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public1313 2067 192.168.0.3 www.example.org = * ? IPv4 DNS IPv4 Server IPv6 IPv6 www IN A 192.168.0.3 www IN AAAA 2001:db8:1::1 2001:db8:1::1 CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 14 I get AAAA, I have IPv6 configured locally (SLAAC). But what if IPv6 network is broken? Behavior of a typical Web- Browser draft-ietf-v6ops-happy-eyeballs CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 15 http://www.cisco.com/web/about/ac123/ac147/archived_issues/ipj_13-3/133_he.html Happy Eyeballs – improving end user experience Implementations: • Firefox 10 • Chrome (last stable) • OSX 10.7 “Lion” • getaddrinfo() • Safari • iPhone iOS 4.3.1 draft-ietf-v6ops-happy-eyeballs http://www.cisco.com/web/about/ac123/ac147/archived_issues/ipj_13-3/133_he.html CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates. All rights All rights reserved. reserved. Cisco Public 16 . Tunnelling encapsulates an IPv6 packet into an IPv4 packet Host to Router, Router to Router, Router to Host, or Host to Host . Manually configured tunnels Manual Tunnel (RFC 2893) IPv6 over GRE (RFC 2473) . Semi-automated tunnels Tunnel broker (RFC 3053) . Automatic tunnels 6to4 (RFC 3056) ISATAP (RFC 5214) Dynamic Multipoint VPN 6rd (RFC5969) LISP (IETF Working Group & Internet Draft) CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public1717 2067 IPv6 IPv6 IPv4 IPv6 Packet Packet Header Packet Customer IPv6 Network IPv4 Access Network Provider IPv6 Network 200.15.15.1 200.11.11.1 2001:db8:a:b::1/64 2001:db8:a:b::2/64 IPv4 Access Network PE PE IPv6 Manual Tunnel IPv6 CE CE P P Dual Stack . One of the first transition mechanisms developed for IPv6 Static P2P tunnel, IP protocol type = 41, no additional header, NAT breaks . Terminates on dual stack end points IPv4 end point address must be routable IPv6 prefix configured on tunnel interface . Difficult to scale and manage For link few sites in fixed long term topology Use across IPv4 access network to reach IPv6 Provider CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public1818 2067 IPv6 IPv6 GRE IPv4 IPv6 Packet Packet Header Header Packet IPv6 Network IPv4 Backbone Network IPv6 Network 200.15.15.1 (e0/0) 200.11.11.1 (e0/0) 2001:db8:a:b::1/64 2001:db8:a:b::2/64 IPv4 Backbone Network PE PE IPv6 GRE Tunnel IPv6 CE CE P P . Similar to Manual Tunnel (RFC 2893) But can transport non IP packets Hence can be used to support ISIS across the tunnel . GRE header uses 0x86DD to identify IPv6 payload . Similar scale and management issues . L2TPv3 is another tunnelling option CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public1919 2067 . Intra Site Automatic Tunnel Addressing Protocol Tunnel from a dual stack HOST PC to an IPv6 gateway . Operates within single administrative domain Primarily for Corporate and Academic networks . Creates a virtual IPv6 link over an IPv4 backbone IPv4 network treated as an NBMA link layer Routers provide ISATAP service DNS may hold potential router list or ISATAP gateways . ISATAP does not currently support multicast . NAT is not supported CiscoCisco Expo Expo BRKSPG- © 2012 Cisco© 2011© and/or2011 Cisco Cisco and/or its and/or itsaffiliates. affiliates. its affiliates. All All rights All rights rights reserved. reserved. reserved.Cisco Public Cisco Public2020 2067 IPv6 IPv4 IPv6 IPv4 Packet Header Packet Dual Stack Host (IPv4 Mode) IPv4 Enterprise Network IPv6 Network 192.168.2.1 192.168.4.1 IPv4 Corporate 2001:db8:face:2::5efe:c0a8:0401 Network PE PE IPv6 ISATAP Tunnel Networ DNS k ISATAP Query “ISATAP” ISATAP P P Host Router Reply “192.168.4.1” Router Solicitation Encaps in IPv4 IPv4 192.168.2.1 Source: 192.168.4.1 IPv4 Dest: fe80::5efe:c0a8:0201 IPv6 fe80::5efe:c0a8:0401 Source: IPv6 Dest: EncapsRequest: in IPv4 ISATAP Prefix? Router Advertisement IPv4 192.168.2.1 Source: 192.168.4.1 IPv4 Dest: fe80::5efe:c0a8:0401 IPv6 fe80::5efe:c0a8:0201 Source: IPv6 Dest: CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates. its affiliates.Reply: All rights All rights reserved. reserved.2001:db8:face:2/64 Cisco Public 21 IPv6 IPv6 IPv4 IPv6 Packet Packet Header Packet Dual Stack Host IPv4 Enterprise Network IPv6 Network 192.168.2.1 192.168.4.1 IPv4 Corporate 2001:db8:face:2::5efe:c0a8:040 Network 1 PE PE IPv6 ISATAP Tunnel Networ k ISATAP P P ISATAP Host Router Address Value Address Value IPv4: 192.168.2.1 IPv4: 192.168.4.1 IPv6 Link-Local: fe80::5efe:c0a8:0201 IPv6 Link-Local: fe80::5efe:c0a8:0401 IPv6 Global: 2001:db8:face::5efe:c0a8:020 IPv6 Global: 2001:db8:face::5efe:c0a8:040 1 1 CiscoCisco Expo Expo © 2011© 2011 Cisco Cisco and/or and/or its affiliates.
Load more

Recommended publications
  • Ipv6 – from Assessment to Pilot
    IPv6 – From Assessment to Pilot James Small CDW Advanced Technology Services Session Objectives State of Things Business Case Plan Design Implement Security & Operations Current Trends Depletion replaced by Growth Population penetration Geoff Huston’s IPv4 Address Report Multiple mobile device penetration The Internet of Things – M2M The Internet of Everything Current Trends Global growth: Penetration doubling every 9 months US penetration: IPv6 Deployment: 24.76% Prefixes: 40.78% Transit AS: 59.48% Content: 47.72% Google’s global IPv6 statistics graph Users: 3.92% Relative Index: 6.2 out of 10 Global IPv6 growth Graphs from Cisco Live Orlando 2013 – PSOSPG 1330 • US Growth/Penetration is Double the Global Rate • Critical mass in US next year (10% penetration) Opinions on Action Gartner – Enterprises must start upgrading their Internet presence to IPv6 now Deloitte – In short, we recommend starting (v6 deployment) now “Starting sooner can give organizations enough lead-time for a deliberate, phased roll-out, while waiting could lead to a costly, risky fire drill.” Roadmap State of things Business Case Plan Design Implement Security & Operations New Trends IPv6-Only Data Centers and Networks (especially mobile ones) on the rise Internet-of-Things – many key protocols are IPv6 only (IPv4 doesn’t have necessary scale) Many new trends are IPv6-Only (e.g. IoT) Smart Factories/Buildings/Cities/Grid Intelligent Transportation System General Business Case 65% of Cisco Enterprise Technology Advisory Board members will have IPv6 web sites by the end of this year (2013) Top drivers for IPv6 BYOD Globalization Internet Evolution/Internet Business Continuity (B2B/B2C) Legal Business Cases Mobile (Tablets/Smartphones) LTE/4G an IPv6 technology Multinational Firms – Europe far down the IPv6 path, where are you compared to your counterparts? Federal – Goal for full IPv6 deployment by 2014 with some trying to eliminate IPv4 by years end (VA) Legal Business Cases IPv6 Critical mass is coming next year (2014) – B2B, B2C, M2M, and other innovation will follow.
    [Show full text]
  • Security Vulnerabilities of Ipv6 Tunnels
    Security Vulnerabilities of IPv6 Tunnels This article talks about novel security vulnerabilities of IPv6 tunnels – an important type of migration mechanisms from IPv4 to IPv6 implemented by all major operating systems and routers. The vulnerabilities allow an attacker to form routing loops which can easily produce DoS attacks. I will describe the principles of the attack and then show how to actually implement it. The vulnerabilities were first presented at Usenix W00T ’09 in a paper I co-authored with Michael Arov. IPv6 background IPv6 is the next generation version of the omnipresent Internet Protocol. It was designed to answer the future exhaustion of the IPv4 address pool. IPv4 address space is 32 bits which translates to just above 4 billion addresses. IPv6 address space is 128 bits. This roughly translates to the entire address space of the IPv4 for every square nanometer on planet earth (a square nanometer is about the size of a molecule!). The IPv6 specification has been released almost 13 years ago, however it has seen little adoption so far since the IPv4 address space hasn’t depleted yet. But this is about to change very soon. ISPs in Asia-Pacific are already unable to request new IPv4 addresses for their customers. In other regions of the world IPv4 address pools are expected to drain within a year or so. So IPv6 is definitely here to stay. Migration to IPv6 using tunnels As one might imagine the migration to IPv6 will be very gradual. Some estimate that IPv4 and IPv6 will co-exist on the Internet for decades.
    [Show full text]
  • Applicability of the Tunnel Setup Protocol (TSP) for the Hubs and Spokes Problem Draft-Blanchet-V6ops-Tunnelbroker-Tsp-03.Txt
    Applicability of the Tunnel Setup Protocol (TSP) for the Hubs and Spokes Problem draft-blanchet-v6ops-tunnelbroker-tsp-03.txt IETF Softwire interim meeting Hong Kong, Feb. 2006 [email protected] [email protected] 1.0 IETF Softwire Interim – February 2006 – Hong Kong ::1 Overview • TSP and softwires requirements – Non-technical • Relation to existing standards and documentation • Document status • Independent implementations • Deployments • Time to market – Technical • NAT traversal and encapsulation types • Nomadicity, address allocation and prefix delegation •Scalability • Multicast •AAA •O&M • Additional benefits – Extensibility – Debugging and to diagnostics – Optimal encapsulation IETF Softwire Interim – February 2006 – Hong Kong ::2 Standards And Documentation • TSP is based on existing standards – Based on the tunnel broker model (RFC3053). – SASL (RFC2222) is used as authentication framework. • Supports SASL anonymous (RFC2245) • Supports Digest-MD5 (RFC2831). – Uses standard v6v4 encapsulation as specified in RFC4213. • Documentation – First published as draft-vg-ngtrans-tsp-00.txt in 2001. – Version 2.0 of the protocol (with NAT traversal) as draft-blanchet-v6ops-tunnelbroker-tsp-00.txt. – Now published as draft-blanchet-v6ops-tunnelbroker-tsp-03.txt. • Status – No issue presently documented concerning the protocol. IETF Softwire Interim – February 2006 – Hong Kong ::3 Implementations • Implemented on diverse client operating systems – Windows, MacOSX, Linux, FreeBSD, OpenBSD, NetBSD, VxWorks. • Manufacturers
    [Show full text]
  • An Ipv4 End of Life Plan a Shared Vision for Ipv6
    An IPv4 End of Life Plan A Shared Vision for IPv6 from IETF IntArea with Mark Townsley (tunnels) & Dan Wing (nats) APRICOT / Delhi 2012.02.29 Randy Bush <[email protected]> 2012.02.29 IPv6 Transition Vision 1 Why Has the Transition to IPv6 Been Soooo Slow? 2012.02.29 IPv6 Transition Vision 2 Is it the Vendors? 2012.02.29 IPv6 Transition Vision 3 Is it Lazy Operators, as the IPv6 Idealists Complain? 2012.02.29 IPv6 Transition Vision 4 Is it Lack of Content? 2012.02.29 IPv6 Transition Vision 5 Is it That Applications do not Support IPv6? 2012.02.29 IPv6 Transition Vision 6 Is it CPE? 2012.02.29 IPv6 Transition Vision 7 Is it the End User Host Stack? 2012.02.29 IPv6 Transition Vision 8 Is it Because There Are Only 430 Transition Mechanisms? 2012.02.29 IPv6 Transition Vision 9 Transition Depended on All of Those at the Same Time! a Recipe for Failure 2012.02.29 IPv6 Transition Vision 10 But There is One Much Larger Problem 2012.02.29 IPv6 Transition Vision 11 2012.02.29 IPv6 Transition Vision 12 IPv6 is On the Wire INCOMPATIBLE with IPv4 2012.02.29 IPv6 Transition Vision 13 And it had a New Business Model (remember TLA/NLA) and No Feature Parity with IPv4 2012.02.29 IPv6 Transition Vision 14 It Was Not Transition, It Was a Leap! 2012.02.29 IPv6 Transition Vision 15 How Did This Happen? Arrogance & Operational Cluelessness in the IETF 2012.02.29 IPv6 Transition Vision 16 IPv6 is Incompatible With IPv4 and There Was No Realistic Transition Plan! 2012.02.29 IPv6 Transition Vision 17 But it is Too Late We Have No Alternative We are Out of IPv4 Space
    [Show full text]
  • Ipv6 Transition and Coexistence Ipv6-Only and Ipv4 As-A-Service
    IPv6 Transition and Coexistence IPv6-only and IPv4 as-a-Service APNIC46 September, 2018 Noumea, New Caledonia Jordi Palet ([email protected]) - 1 Transition / Co-Existence Techniques • IPv6 has been designed for easing the transition and coexistence with IPv4 • Several strategies have been designed and implemented for coexisting with IPv4 hosts, grouped in three categories: – Dual stack: Simultaneous support for both IPv4 and IPv6 stacks – Tunnels: IPv6 packets encapsulated in IPv4 ones • This has been the commonest choice • Today expect IPv4 packets in IPv6 ones! – Translation: Communication of IPv4-only and IPv6- only. Initially discouraged and only “last resort” (imperfect). Today no other choice! • Expect to use them in combination! - 2 Dual-Stack Approach • When adding IPv6 to a system, do not delete IPv4 – This multi-protocol approach is familiar and well-understood (e.g., for AppleTalk, IPX, etc.) – In the majority of the cases, IPv6 is be bundled with all the OS release, not an extra-cost add-on • Applications (or libraries) choose IP version to use – when initiating, based on DNS response: • if (dest has AAAA record) use IPv6, else use IPv4 – when responding, based on version of initiating packet • This allows indefinite co-existence of IPv4 and IPv6, and gradual app-by-app upgrades to IPv6 usage • A6 record is experimental - 3 Dual-Stack Approach IPv6 IPv6 IPv4 IPv4 Application Application Application Application TCP/UDP TCP/UDP TCP/UDP IPv6 IPv6 IPv4 IPv4 IPv6-only stack Dual-stack (IPv4 & IPv6) IPv4-only stack
    [Show full text]
  • Using 464XLAT in Residential Networks
    Using 464XLAT in Residential Networks RIPE 74, Budapest May 2017 Jordi Palet ([email protected]) - 1 Do you know … • We already run out of IPv4? • How you keep deploying Internet access to your residential customers? • Are you using IPv4 to deploy IPv6? – such as tunnel broker, 6RD and so? - 2 Once upon a time … • IETF was considering to solve this problem by more tunneling … • So we build up softwires, which decided to use L2TP, so we could do – IPv6 in IPv4, IPv4 in IPv6 – (as well IPv4 in IPv4 and IPv6 in IPv6 for multicast in unicast) • As a result we have, among others: – DS-Lite – Carrier Grade NAT (AFTR) – lw4o6 - 3 NAT444 Internet Internet IPv6 IPv4 Public IPv4 NAT44 Level 2 AFTR AFTR ISP network Private IPv4 192.168.1.x “plain” IPv6 NAT NAT44 Level 1 NAT v4 v4 v4 v4/v6 10.0.0.x/24 10.0.0.x/24 - 4 DS-Lite Internet Internet IPv6 IPv4 Public IPv4 NAT44 Level 1 AFTR AFTR IPv4-in-IPv6 ISP network tunnel “plain” IPv6 IPv6-only access CPE (B4) CPE (B4) v4 v4 v4 v4/v6 10.0.0.x/24 10.0.0.x/24 - 5 lw4o6 Internet Internet IPv6 IPv4 Public IPv4 lwAFTR lwAFTR IPv4-in-IPv6 ISP network tunnel “plain” IPv6 IPv6-only access NAT44 Level 1 CPE CPE (lwB4) (lwB4) v4 v4 v4 v4/v6 10.0.0.x/24 10.0.0.x/24 - 6 Tunnels per subscribers • DS-Lite/lw4o6 BGP prefixes: Tens AFTR Tunnels: Millions IGP prefixes: Hundreds … BNG routes: Thousands … Subscribers: Millions - 7 CGN breaks … • UPnP-IGD (Universal Plug & Play - Internet Gateway Device protocol) • NAT-PMP (NAT Port Mapping Protocol) • Other NAT Traversal mechs • Security • AJAX (Asyncronous Javascript And XML) • FTP (big files) • BitTorrent/Limewire (seeding – uploading) • On-line gaming • Video streaming (Netflix, Hulu, …) • IP cameras • Tunnels, VPN, IPsec, ..
    [Show full text]
  • Ipv6 User's Guide
    Embedding it better... µTasker Document IPv6 uTaskerIPv6.doc/1.01 Copyright © 2012 M.J.Butcher Consulting www.uTasker.com µTasker – Internet Protocol V6 Table of Contents 1. Introduction .....................................................................................................................3 2. Can your PC connect to the IPv6 Internet?.......................................................................4 3. Does your Internet Connection support IPv6? ..................................................................5 4. IPv6 Tunnelling ...............................................................................................................6 5. How 6in4 operates ...........................................................................................................7 6. Tunnel Broker Service and Configuring a Windows Vista PC ....................................... 10 7. Testing Tunnelled IPv6 Connectivity ............................................................................. 12 8. Introducing the 6in4 Relay Agent .................................................................................. 14 9. Installing and Configuring the Relay Agent ................................................................... 17 10. IPv6 Address Space ................................................................................................... 18 11. IPv6 Addresses .......................................................................................................... 19 12. Operating a TCP Server over IPv6 ............................................................................
    [Show full text]
  • Ipv6 Tunnel Brokers How to Setup an Ipv6 Tunnel Using a Public Tunnel Broker and Windows
    IPv6 Tunnel Brokers How to Setup an IPv6 Tunnel Using a Public Tunnel Broker and Windows Matt Ryanczak Network Operations Manager What is an IPv6 Tunnel? • IPv6 encapsulated in another protocol – Usually IPv4 but other protocols work too • Common implementations – 6in4 (RFC3056) – Protocol 41 (RFC2893 & RFC1933) – Anything in Anything (AYIYA) (http://www.sixxs.net/tools/ayiya) IPv6 in IPv4 Tunnel What is a Tunnel Broker? • A provider of IPv6 tunneling services • At least 12 public tunnel brokers • Use various provisioning techniques – Static – Dynamic (via helpers) • Some provide /48s, reverse DNS, BGP • Most are FREE List of Tunnel Brokers Provider Website Region Hurricane Electric http://www.tunnelbroker.net US (Global) SixXS http://www.sixxs.net Europe (Global) Go6 (Hexago) http://www.go6.net Canada (Global) IIJ http://www.iij.ad.jp/en/service/IPv6/ Japan index.html IPv6Now http://www.ipv6now.com.au/ Australia Renater http://tunnel-broker.renater.fr/ France Setting up a Tunnel with Go6 Why Go6? • Easy to setup client for many Oses • Supports clients behind NATs • Provides /48 networks • Support forum 3 Easy Steps 1. Create Account 2. Download and Install Software 3. Run Software Create an Account Create an Account • Enter Your Information • Required Fields: - Name - Username - E-mail - Password You are automatically signed in once you submit the form Download Go6 Client Install Go6 Client Run the Go6 Client Works out of the box if: - You have public IP address - No Filters / Firewalls Notice that: - Configured for anonymous access
    [Show full text]
  • RFC 3053 Ipv6 Tunnel Broker January 2001
    Network Working Group A. Durand Request for Comments: 3053 SUN Microsystems, Inc Category: Informational P. Fasano I. Guardini CSELT S.p.A. D. Lento TIM January 2001 IPv6 Tunnel Broker Status of this Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Copyright Notice Copyright (C) The Internet Society (2001). All Rights Reserved. Abstract The IPv6 global Internet as of today uses a lot of tunnels over the existing IPv4 infrastructure. Those tunnels are difficult to configure and maintain in a large scale environment. The 6bone has proven that large sites and Internet Service Providers (ISPs) can do it, but this process is too complex for the isolated end user who already has an IPv4 connection and would like to enter the IPv6 world. The motivation for the development of the tunnel broker model is to help early IPv6 adopters to hook up to an existing IPv6 network (e.g., the 6bone) and to get stable, permanent IPv6 addresses and DNS names. The concept of the tunnel broker was first presented at Orlando's IETF in December 1998. Two implementations were demonstrated during the Grenoble IPng & NGtrans interim meeting in February 1999. 1. Introduction The growth of IPv6 networks started mainly using the transport facilities offered by the current Internet. This led to the development of several techniques to manage IPv6 over IPv4 tunnels. At present most of the 6bone network is built using manually configured tunnels over the Internet. The main drawback of this approach is the overwhelming management load for network administrators, who have to perform extensive manual configuration for each tunnel.
    [Show full text]
  • Global Mobile Ipv6 Addressing Using Transition Mechanisms
    Global Mobile IPv6 Addressing using Transition Mechanisms Edgard Jamhour , Simone Storoz and Carlos Maziero Graduate Program in Applied Computer Science, Pontifical Catholic University of Paraná, Brazil. [email protected] [email protected] [email protected] Abstract and cellular networks) [2]. However, in order to provide connectivity to the global Internet, one must consider the The adoption of the Internet Protocol in mobile and shortage of IP version 4 (IPv4) addresses. The use of private wireless technologies has considerably increased the IPv4 addresses [4] was considered a temporary solution to number of hosts that can potentially access the global the IPv4 address shortage problem until a new addressing Internet. IPv6 is considered the long term solution for the scheme, IPv6, would be adopted [5]. Private addresses are IPv4 address shortage problem, but the transition from not considered a final solution because they are not IPv4 to IPv6 is supposed to be very gradual. Therefore, uniquely addressable. That is, a host with a private IPv4 there will be a long time during which both protocol address can start a session with a host with a public address, versions will coexist. To facilitate transition, the IETF using an address translation mechanism such as Network has set up a work group called NGTRANS (Next Address Translation (NAT), but not the contrary [6]. Generation TRANSition) which specifies mechanisms for supporting interoperability between IPv4 and IPv6. This IPv6 solves this problem by offering a virtually unlimited paper describes a new approach for implementing mobile address space. However, there is expected to be a long networks with global Internet connectivity using transition period during which it will be necessary for IPv4 transition mechanisms.
    [Show full text]
  • Deploying Ipv6 in Ipv4 Networks
    Deploying IPv6 in IPv4 networks Marc Blanchet, CTO [email protected] © HEXAGO 2003 www.hexago.com Plan • Application •IP stack •Network – IPv6 transition mechanisms © HEXAGO 2003 :: 2 User-app to User-app • Three pieces – Application –IP stack –Network User Interface Application App Protocol Applications Applications TCP-UDP OS stack OS stack IPv4-IPv6 Network Network © HEXAGO 2003 :: 3 User Interface • Nothing to do except: © HEXAGO 2003 :: 4 Porting Application to IPv6 • Few changes to socket calls – ex: gethostbyname() -> getaddrinfo() • If user may enter/view an IP address – Address: 192.0.2.1 – with IPv6: 3ffe:b00:1:1::1 – URL: http://192.0.2.1:81/intro.html – with IPv6: http://[3ffe:b00:1:1::1]:81/intro.htmlfor most applications, code is localized and small • After porting, the application becomes IP version independent • Application chooses the IP version based on DNS answers © HEXAGO 2003 :: 5 Application Protocol • IP address processing inside the application protocol – New revision of the protocol – Possible signaling needs to be done • Broadcast use -> Multicast – Need to register a multicast address – Some logic to change © HEXAGO 2003 :: 6 Applications • Applications need to be ported – Usually small changes for porting – Then deployed • New applications • One by one application © HEXAGO 2003 :: 7 IP stack • Integrated (or add-on) to operating system • Manage the upgrading to a new version of the operating system that supports IPv6 • Features needed? – Default address selection – Mobility – IP security –etc. © HEXAGO
    [Show full text]
  • Getting Ipv6 to the End-User
    NANOG 48 21-24 February 2010 Austin, Texas, USA SixXS – Getting IPv6 to the end-user Jeroen Massar, SixXS [email protected] / [email protected] IPv6 Golden Networks SixXS • Service for providing ISPs with a quick way of enabling their user base with IPv6. • Tunnel Broker PoPs, provided by various ISPs around Europe (be,ch,ee,fi,de,ie,it,lu,nl,no,pl,pt,si, se,uk), New Zealand and the United States. Thanks to all the ISPs who are providing these PoPs, without them it would not be possible. • FAQ, Wiki and Forum. • 15.000++ active users and tunnels. • 7000++ active subnets (/48’s). • Only two people running it: Pim & Jeroen • With the help of all the people at the ISPs who make sure the IPv4+IPv6 routing works to their PoPs, thanks to them for providing this service Jeroen Massar – NANOG 48 ::2 IPng.nl Overview: • Started in 1999 by Pim van Pelt • 1 PoP: p200, 64mb memory @ AMS-IX • Static 6bone /127 Tunnels & /60 subnets • Mostly shell scripts (read: bash) • MySQL database • Monitoring using customized fping & rrdtool • About 200 users Jeroen Massar – NANOG 48 ::3 IPng.nl Problems: • Scalability problems (management, stats) • Only static tunnels, thus not useful for dialup/cable • Too difficult for non-technical users • Messy code (according to Pim ;) • Again: too much work to maintain in general Jeroen Massar – NANOG 48 ::4 Protocol 41 • Protocol 41 = IPv6 • It specifies how to put an IPv6 packet directly inside an IPv4 packet. • Protocol 41 is static only. • Protocol 41 doesn’t cross NATs. • Protocol 41 is ‘hacker’ according to some: – Firewalls see this, user gets an alert of ‘weird’ traffic, user yells abuse.
    [Show full text]