Enterprise IPv6 Deployment Strategies: The NAT is back
|
|
- Job Gordon
- 5 years ago
- Views:
Transcription
1 Enterprise IPv6 Deployment Strategies: The NAT is back IPv6 Forum (Singapore Chapter) Sanjeev Gupta 0-1 IPv6 Forum (Singapore Chapter). CC-BY-SA
2 IPv6 Forum (Singapore Chapter). CC-BY-SA Agenda What is IPv6? Why deploy IPv6? Deploying in Enterprises.
3 IPv6 Forum (Singapore Chapter). CC-BY-SA What is IPv6? You are in the wrong session We will assume you all know this It has been 10 years since deployment started.
4 IPv6 Forum (Singapore Chapter). CC-BY-SA What is IPv6? Latest revision of the Internet Protocol (IP). Developed by the Internet Engineering Task Force (IETF) to deal with the long-anticipated problem of IPv4 address exhaustion.
5 IPv6 Forum (Singapore Chapter). CC-BY-SA
6 IPv6 Forum (Singapore Chapter). CC-BY-SA Why deploy IPv6? Because the market demands it Imagine trying to convince a business in 1998 to get Or, in 2005, that they should have a web page Or, in 2012, that they need a social media strategy For IPv6, the time has come.
7 IPv6 Forum (Singapore Chapter). CC-BY-SA IPv6 Deployment
8 IPv6 Forum (Singapore Chapter). CC-BY-SA IPv6 Deployment (Weekly cycles)
9 IPv6 Forum (Singapore Chapter). CC-BY-SA Deploying IPv6 in Enterprises What is an Enterprise? For this talk, End-user Has an IT Department Runs servers Possibly multi-locational Relies on IT to run its business But not a Fortune 500.
10 IPv6 Forum (Singapore Chapter). CC-BY-SA After the test labs, what? By now, most of you have attended training You are familiar with the theory Many of you have implemented small test labs Set up tunnels, played with your routers Some of you have actual IPv6 service from your ISPs So now, how do you roll out?
11 IPv6 Forum (Singapore Chapter). CC-BY-SA Quick Primer: IPv6 addressing Your ISP will give you enough IPv6 to address your network Smallest allocation you can get is: 18,446,744,073,709,551,616 addresses All globally routable Most will get 16 times more Should be enough for you But how do you actually deploy this?
12 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 1 You are connected to one ISP only and receiving your public IP address from your upstream ISP. You are not a member of APNIC yet.
13 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 2 You are connected to one ISP only and receiving your public IP address from and Internet Number Registry i.e. APNIC Member
14 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 3 You are connected to more then one ISP and receiving your public IP address from any ONE of your upstream ISP
15 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 4 You are connected to more then one ISP and receiving your public IP address from an Internet Number Registry
16 IPv6 Forum (Singapore Chapter). CC-BY-SA Comparing the four options Advantages 1 Single home, non-portable Simplest to implement. Low costs Disadvantages Tied to your ISP 2 Single home, portable Simple to implement Annual membership costs 3 Multi-home, non-portable Redundancy Tied to the primary ISP, can change secondary ISPs 4 Multi-home, portable Very flexible, can shop for new ISP every year Annual membership costs
17 IPv6 Forum (Singapore Chapter). CC-BY-SA Is there an Option 5? What we want is: No NAT Clean addressing Smart subnets (by department, floor, etc) Yet, changing my upstream ISP should not mean IP address of the printer changes And no need to pay address ownership costs (ie, APNIC membership).
18 IPv6 Forum (Singapore Chapter). CC-BY-SA A digression: What is wrong with NAT? Much maligned technology Yet, it kept the Internet running for 20 years and still does Why do we hate it?
19 IPv6 Forum (Singapore Chapter). CC-BY-SA A digression: What is wrong with NAT? Because we are hiding many nodes behind one IP address, we need to maintain state Rebooting the NAT device means transactions break No logs, so no audit of who was using Facebook The NAT administrator becomes the de facto Firewall admin Opening and closing ports, and keeping track, is a fulltime job Routing and Firewalling are mixed up.
20 IPv6 Forum (Singapore Chapter). CC-BY-SA A digression: What is wrong with NAT? But these are not disadvantages of NAT, these are disadvantages of the way we have been forced to do NAT in an address-scarce world There is nothing basically evil about NAT.
21 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 5 An Enterprise deployment option Use Unique Local Addresses (ULA) for all internal addressing You have a sufficient range, a /48 at the least (that is times more than the 18 billion billion number earlier).
22 IPv6 Forum (Singapore Chapter). CC-BY-SA What is a ULA? A unique local address (ULA) is an IPv6 address in the block fd00::/8, defined in RFC It is the approximate IPv6 counterpart of the IPv4 private address. Unique local addresses are available for use in private networks, e.g. inside a single site or organization or spanning a limited number of sites or organizations. They are not routable in the global IPv6 Internet.» -- Wikipedia
23 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 5 Use 1-to-1 NAT to map these to your ISP addresses Now each internal node has a equivalent global address, controlled by the firewall (not the NAT) Internal communication uses ULA addresses External communication is mapped onto whatever ISP range you have The trick is to use 1-to-1 NAT, symmetrical, both SNAT and DNAT.
24 IPv6 Forum (Singapore Chapter). CC-BY-SA Comparing the four options Advantages 1 Single homed, non-portable Simplest to implement. Low costs Disadvantages Tied to your ISP 2 Single homed, portable Simple to implement Annual membership costs 3 Multi-homed, non-portable Redundancy Tied to the primary ISP, can change secondary ISPs 4 Multi-homed, portable Very flexible, can shop for new ISP every year 5 Single homed, ULA No internal renumbering when you change ISPs Annual membership costs None, really.
25 IPv6 Forum (Singapore Chapter). CC-BY-SA Enterprise IPv6 Addressing: Option 5 Internet ISP 2 ISP 1 Firewall Firewall 1-to1 NAT Enterprise ULA
26 IPv6 Forum (Singapore Chapter). CC-BY-SA Example: With ISP1 Internal ULA ISP1 Range Firewall Allowed? Comment fd00:8181:9191::7 2405:fc00::7 None Printer fd00:8181:9191:: :fc00::21 Specific ports DVR fd00:8181:9191:: :fc00::80 tcp/80 and tcp/443 Web Server fd00:8181:9191::fd8 2405:fc00::fd8 ALL VIP Laptop fd00:8181:9191::a :fc00::a11 None Accounts PC fd00:8181:9191:: :fc00::1777 None Accounts PC fd00:8181:9191::21ac 2405:fc00::21ac No incoming, all outgoing Sales PC fd00:8181:9191:: :fc00::53 tcp/53 and udp/53 DNS Server fd00:8181:9191:: :fc00::321 ALL IT staff
27 IPv6 Forum (Singapore Chapter). CC-BY-SA Example: With ISP2 Internal ULA ISP2 Range Firewall Allowed? Comment fd00:8181:9191::7 2345:a111::7 None Printer fd00:8181:9191:: :a111::21 Specific ports DVR fd00:8181:9191:: :a111::80 tcp/80 and tcp/443 Web Server fd00:8181:9191::fd8 2345:a111::fd8 ALL VIP Laptop fd00:8181:9191::a :a111::a11 None Accounts PC fd00:8181:9191:: :a111::1777 None Accounts PC fd00:8181:9191::21ac 2345:a111::21ac No incoming, all outgoing Sales PC fd00:8181:9191:: :a111::53 tcp/53 and udp/53 DNS Server fd00:8181:9191:: :a111::321 ALL IT staff
28 IPv6 Forum (Singapore Chapter). CC-BY-SA What are we doing? Note that the host part of the IPv6 address remains the same No port numbers change, and no checksums have to be recalculated (unlike NAT44) Only the prefix is re-written. See RFC 6296 for an excellent example This makes forensics easier We reduce the impact of a loss of state What we are doing is not really NAT66, but NPTv6 (Network Prefix Translation).
29 IPv6 Forum (Singapore Chapter). CC-BY-SA Summary NAT is not always bad, it depends on what you use it for It can make your life easier, if you use it correctly and cleanly You can start deploying IPv6 in office today, without having to renumber when you change ISPs.
30 IPv6 Forum (Singapore Chapter). CC-BY-SA References and Citations - Nurul Islam Roman, President, bdnog, for the diagrams of options IPv6-to-IPv6 Network Prefix Translation
CSE/EE 461: Introduction to Computer Communications Networks Autumn Module 9
CSE/EE 461: Introduction to Computer Communications Networks Autumn 2010 Module 9 IP Addressing John Zahorjan zahorjan@cs.washington.edu 534 Allen Center Last Time: Addresses Imply Location 142.150.210.12
More informationIPv6 Deployment Planning
IPv6 Deployment Planning ISP Workshops Last updated 1 st October 2016 1 Introduction p Presentation introduces the high level planning considerations which any network operator needs to be aware of prior
More informationIPv6 Deployment Planning. Philip Smith PacNOG 10, Nouméa 21 st November 2011
IPv6 Deployment Planning Philip Smith PacNOG 10, Nouméa 21 st November 2011 1 Introduction Presentation introduces the high level planning considerations which any network operator needs to be aware of
More informationLecture 14: DHCP and NAT
Lecture 14: DHCP and NAT Dr. Mohammed Hawa Electrical Engineering Department University of Jordan EE426: Communication Networks IPv4 Address Shortage Classless IP addressing solved IPv4 address shortage
More informationIntroduction to Network Address Translation
Introduction to Network Address Translation Campus Network Design & Operations Workshop These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International license (http://creativecommons.org/licenses/by-nc/4.0/)
More informationMultihoming. Copy Rights
Multihoming or provider independent addressing (possible usage) János Mohácsi NIIF/HUNGARNET Copy Rights This slide set is the ownership of the 6DISS project via its partners The Powerpoint version of
More informationConfiguration Example
Configuration Example Use NAT for Public Access to Servers with Private IP Addresses on the Private Network Example configuration files created with WSM v11.10.1 Revised 7/21/2015 Use Case In this use
More informationIPv6 Address Planning Shifting Paradigms for a new Internet. Owen DeLong
IPv6 Address Planning Shifting Paradigms for a new Internet Owen DeLong owen@akamai.com Revised 2017 May 2 Akamai Technologies IPv6 -- The basics Anatomy of a Global Unicast address 3 bits 9 bits 20 bits
More informationECE 435 Network Engineering Lecture 14
ECE 435 Network Engineering Lecture 14 Vince Weaver http://web.eece.maine.edu/~vweaver vincent.weaver@maine.edu 25 October 2018 Announcements HW#6 was due HW#7 will be posted 1 IPv4 Catastrophe 2 Out of
More informationLab10: NATing. addressing conflicts, routers must never route private IP addresses.
Introduction These are reserved private Internet addresses drawn from the three blocks shown in the figure. These addresses are for private, internal network use only. Packets containing these addresses
More informationWhy IPv6? Roque Gagliano LACNIC
Why IPv6? Roque Gagliano LACNIC Agenda Initial Concepts. IPv6 History. What is IPv6? Planning IPv6. Agenda Initial Concepts. IPv6 History. What is IPv6? Planning IPv6. Some initial concepts. IPv6 is the
More informationDeploy CGN to Retain IPv4 Addressing While Transitioning to IPv6
White Paper Deploy CGN to Retain Addressing While Transitioning to IPv6 The IANA ran out of addresses to allocate in February 2011, and the Regional Internet Registries (RIR) will have assigned most of
More informationTable of Contents. Cisco How NAT Works
Table of Contents How NAT Works...1 This document contains Flash animation...1 Introduction...1 Behind the Mask...2 Dynamic NAT and Overloading Examples...5 Security and Administration...7 Multi Homing...9
More informationComputer Network Fundamentals Spring Week 4 Network Layer Andreas Terzis
Computer Network Fundamentals Spring 2008 Week 4 Network Layer Andreas Terzis Outline Internet Protocol Service Model Addressing Original addressing scheme Subnetting CIDR Fragmentation ICMP Address Shortage
More informationCSCD58 WINTER 2018 WEEK 6 - NETWORK LAYER PART 1. Brian Harrington. February 13, University of Toronto Scarborough
CSCD58 WINTER 2018 WEEK 6 - NETWORK LAYER PART 1 Brian Harrington University of Toronto Scarborough February 13, 2018 ADMIN Assignments Midterm after reading week (Feb 27) In class Covering everything
More informationUsing IPv6. Daniel Hagerty
Using IPv6 Daniel Hagerty hag@linnaean.org 6to4 connectivity on this laptop Included since OS-X 10.3 or so. Works anywhere you have a public IP that can send/receive IP protocol 41. Could give v6 transit
More informationSecuring Future Growth: Getting Ready for IPv6 NOW!
Securing Future Growth: Getting Ready for IPv6 NOW! ICANN41, 23 rd June 2011 Singapore Miwa Fujii Senior IPv6 Program Specialist, APNIC About Internet Protocol (IP) On the Internet you
More informationNetwork Address Translation (NAT)
The following topics explain and how to configure it. Why Use NAT?, page 1 NAT Basics, page 2 Guidelines for NAT, page 7 Dynamic NAT, page 12 Dynamic PAT, page 21 Static NAT, page 40 Identity NAT, page
More informationIPv6 Deployment Strategies. IPv6 Training Day 18 th September 2012 Philip Smith APNIC
IPv6 Deployment Strategies IPv6 Training Day 18 th September 2012 Philip Smith APNIC 1 Introduction p Presentation introduces the high level planning considerations which any network operator needs to
More informationTDC 563 Protocols and Techniques for Data Networks
TDC 563 Protocols and Techniques for Data Networks Network Addressing TDC563 Autumn 2015/16 John Kristoff - DePaul University 1 Why have addresses at layer 3? Aren't there already globally unique addresses
More informationIn Defence of NATs. Geoff Huston APNIC. IEEE Global Internet Symposium, May 2017
In Defence of NATs Geoff Huston APNIC IEEE Global Internet Symposium, May 2017 The Architecture of the 1990 Internet Dumb Network, Smart Hosts Remove all the functionality from the network apart from forwarding
More informationLecture 11: Middleboxes and NAT (Duct tape for IPv4)
CSCI-351 Data communication and Networks Lecture 11: Middleboxes and NAT (Duct tape for IPv4) The slide is built with the help of Prof. Alan Mislove, Christo Wilson, and David Choffnes's class Middleboxes
More informationInternet Network Protocols IPv4/ IPv6
Internet Network Protocols IPv4/ IPv6 Prof. Anja Feldmann, Ph.D. anja@inet.tu-berlin.de TCP/IP Illustrated, Volume 1, W. Richard Stevens http://www.kohala.com/start 1 IP Interfaces IP address: identifier
More informationProposal on the Concealment of the Network Topology in IPv6
The 11th International Symposium on Communications & Information Technologies (ISCIT 2011) Proposal on the Concealment of the Network Topology in IPv6 Toru Kuboshiki and Hidekazu Suzuki and Akira Watanabe
More informationNAT and Tunnels. Alessandro Barenghi. May 25, Dipartimento di Elettronica e Informazione Politecnico di Milano barenghi - at - elet.polimi.
NAT and Tunnels Alessandro Barenghi Dipartimento di Elettronica e Informazione Politecnico di Milano barenghi - at - elet.polimi.it May 25, 2011 Recap By now, you should be familiar with... System administration
More informationIPv6 Implementation Best Practices For Service Providers
IPv6 Implementation Best Practices For Service Providers Brandon Ross Chief Network Architect and CEO 2013 Utilities Telecom Council Network Utility Force www.netuf.net @NetUF RFC 6540 - IPv6 Support Required
More informationConfiguring NAT Policies
Configuring NAT Policies Rules > NAT Policies About NAT in SonicOS About NAT Load Balancing About NAT64 Viewing NAT Policy Entries Adding or Editing NAT or NAT64 Policies Deleting NAT Policies Creating
More informationNetwork Address Translation (NAT) Contents. Firewalls. NATs and Firewalls. NATs. What is NAT. Port Ranges. NAT Example
Contents Network Address Translation (NAT) 13.10.2008 Prof. Sasu Tarkoma Overview Background Basic Network Address Translation Solutions STUN TURN ICE Summary What is NAT Expand IP address space by deploying
More informationMUM Lagos Nigeria Nov 28th IPv6 Demonstration By Mani Raissdana
MUM Lagos Nigeria Nov 28th IPv6 Demonstration By Mani Raissdana Mani Raissdana MikroTik Certified Trainer CTO & Co-Founder of Being in IT technology business roughly around 14 years Support & instruct
More informationComputer Networks. Course Reference Model. Topic. Error Handling with ICMP. ICMP Errors. Internet Control Message Protocol 12/2/2014.
Course Reference Model Computer Networks 7 lication Provides functions needed by users Zhang, Xinyu Fall 2014 4 Transport Provides end-to-end delivery 3 Network Sends packets over multiple links School
More informationUse this section to help you quickly locate a command.
iii iv v Use this section to help you quickly locate a command. vi Use this list to help you locate examples you d like to try or look at. vii viii This document describes the various deployment, installation,
More informationIs IPv4 Sufficient for Another 30 Years?
Is IPv4 Sufficient for Another 30 Years? October 7, 2004 Abstract TCP/IP was developed 30 years ago. It has been successful over the past 30 years, until recently when its limitation started emerging.
More informationConfiguring NAT for IP Address Conservation
This module describes how to configure Network Address Translation (NAT) for IP address conservation and how to configure inside and outside source addresses. This module also provides information about
More informationCSCI-1680 Network Layer: IP & Forwarding John Jannotti
CSCI-1680 Network Layer: IP & Forwarding John Jannotti Based partly on lecture notes by David Mazières, Phil Levis, Rodrigo Fonseca Administrivia IP out today. Your job: Find partners, get setup with Github
More informationIPv6 Policy and Statistics. Ingrid Wijte July 2018 IPv6 Roundtable - Tel Aviv
IPv6 Policy and Statistics Ingrid Wijte July 2018 IPv6 Roundtable - Tel Aviv About the RIPE NCC One of five Regional Internet Registries (RIRs) - Serving Europe, the Middle East and parts of Central Asia
More informationUnit C - Network Addressing Objectives Purpose of an IP Address and Subnet Mask Purpose of an IP Address and Subnet Mask
1 2 3 4 5 6 7 8 9 10 Unit C - Network Addressing Objectives Describe the purpose of an IP address and Subnet Mask and how they are used on the Internet. Describe the types of IP Addresses available. Describe
More informationRedesde Computadores(RCOMP)
Redesde Computadores(RCOMP) Theoretical-Practical (TP) Lesson 09 2016/2017 Network Address Translation. Static and dynamic NAT. NAPT. Instituto Superior de Engenharia do Porto Departamento de Engenharia
More informationFinding Feature Information
This module describes how to configure Network Address Translation (NAT) for IP address conservation and how to configure inside and outside source addresses. This module also provides information about
More informationNAT (NAPT/PAT), STUN, and ICE
NAT (NAPT/PAT), STUN, and ICE `Structure of ice II, viewed along the hexagonal c-axis. Hydrogen bonds between the water molecules are shown as dashed lines. Lengths are in angstroms.'' (Hobbs, 1970, p.
More informationIPv6: The Ins and Outs. Chris Buechler
IPv6: The Ins and Outs Chris Buechler cmb@pfsense.org About Me Co-founder and CTO of BSD Perimeter LLC Corporate arm of pfsense project 15 years IT experience Former IT Manager at public accounting firm
More informationNetwork Configuration Example
Network Configuration Example Configuring Stateful NAT64 for Handling IPv4 Address Depletion Release NCE0030 Modified: 2017-01-23 Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089
More informationvcloud Air - Virtual Private Cloud OnDemand Networking Guide
vcloud Air - Virtual Private Cloud OnDemand Networking Guide vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by
More informationCSCI-1680 Network Layer: IP & Forwarding Rodrigo Fonseca
CSCI-1680 Network Layer: IP & Forwarding Rodrigo Fonseca Based partly on lecture notes by David Mazières, Phil Levis, John Janno< Administrivia IP out today. Your job: Find partners and tell us Implement
More informationIPv6 support. Chris Mitchell. Program Manager Microsoft Corporation Windows Networking & Communications IPv6
IPv6 support Chris Mitchell Program Manager Microsoft Corporation Windows Networking & Communications IPv6 Introduction New scenarios and IPv6 Microsoft s IPv6 support Migration and roadmap 2 New Engaging
More informationNetwork Protocols - Revision
Network Protocols - Revision Luke Anderson luke@lukeanderson.com.au 18 th May 2018 University Of Sydney Overview 1. The Layers 1.1 OSI Model 1.2 Layer 1: Physical 1.3 Layer 2: Data Link MAC Addresses 1.4
More informationIPv6 deployment at Google
IPv6 deployment at Google Lorenzo Colitti, Angus Lees {lorenzo,alees}@google.com Why? Why IPv6? When the day comes that users only have IPv6, Google needs to be there If we can serve our users better over
More informationIPv6 Deployment Architecture for Broadband Access Networks. Nurul Islam Roman, APNIC
IPv6 Deployment Architecture for Broadband Access Networks Nurul Islam Roman, APNIC Issue Date: [Date] Revision: [xx] Flashback: Internet Architecture 1 st generation Internet: What was the architecture?
More informationNetwork Defenses 21 JANUARY KAMI VANIEA 1
Network Defenses KAMI VANIEA 21 JANUARY KAMI VANIEA 1 Similar statements are found in most content hosting website privacy policies. What is it about how the internet works that makes this statement necessary
More informationWhat's the big deal about IPv6? A plain-english guidebook for non-technical managers
What's the big deal about IPv6? A plain-english guidebook for non-technical managers Why should I care about IPv6? 2. We're all going to IPv6 Your network administrators will tell you that IPv6 is the
More informationConsiderations and Actions of Content Providers in Adopting IPv6
Considerations and Actions of Content Providers in Adopting IPv6 Sheng Jiang / Huawei Brian Carpenter / University of Auckland www.huawei.com IPv6 Trends Global IPv4 registry (IANA) ran out of spare blocks
More informationCOSC 301 Network Management
COSC 301 Network Management Lecture 21: Firewalls & NAT Zhiyi Huang Computer Science, University of Otago COSC301 Lecture 21: Firewalls & NAT 1 Today s Focus How to protect an intranet? -- Firewall --
More informationNetwork Address Translation (NAT)
The following topics explain and how to configure it. Why Use NAT?, page 1 NAT Basics, page 2 Guidelines for NAT, page 6 Dynamic NAT, page 12 Dynamic PAT, page 18 Static NAT, page 29 Identity NAT, page
More informationAdvanced Computer Networking. CYBR 230 Jeff Shafer University of the Pacific. IPv6
CYBR 230 Jeff Shafer University of the Pacific IPv6 2 IP Versions Version Description 0-3 Unused: Development versions of IP 4 Current network-layer protocol 5 Unused: Experimental stream protocol ST 6
More informationMPLS Deployment. APNIC Technical Workshop September 28 to October 2, APNIC42, Colombo, Sri Lanka.
MPLS Deployment APNIC Technical Workshop September 28 to October 2, 2016. APNIC42, Colombo, Sri Lanka. Presenter Nurul Islam Roman Manager, Training & Technical Assistance, APNIC Nurul manages APNIC training
More informationYealink VCS Network Deployment Solution
Yealink VCS Network Deployment Solution Oct. 2015 V10.6 Yealink Network Deployment Solution Table of Contents Table of Contents... iii Network Requirements... 1 Bandwidth Requirements... 1 Calculating
More informationInternet Addresses Reading: Chapter 4. 2/11/14 CS125-myaddressing
Internet Addresses Reading: Chapter 4 1 Internet Addresses Outline/Goals IP addresses RFC 950, STD 05 Dotted-quad notation IP prefixes for aggregation Address allocation Classful addresses Classless InterDomain
More informationIP subnetting made easy
Version 1.0 June 28, 2006 By George Ou Introduction IP subnetting is a fundamental subject that's critical for any IP network engineer to understand, yet students have traditionally had a difficult time
More informationAPNIC Training and Technical Assistance
APNIC Training and Technical Assistance Nurul Islam Roman APNIC Training Service Well structured event calendar Allows international travel arrangements with enough lead time 99.7% confirmed events, across
More informationCSCI-1680 Network Layer: IP & Forwarding Rodrigo Fonseca
CSCI-1680 Network Layer: IP & Forwarding Rodrigo Fonseca Based partly on lecture notes by David Mazières, Phil Levis, John Jannotti Today Network layer: Internet Protocol (v4) Forwarding Next 2 classes:
More informationExperiences in Setting Up Automatic Home Networking. Jari Arkko Ericsson Research
Experiences in Setting Up Automatic Home Networking Jari Arkko Ericsson Research 1 Background This is NOT about home gateway routers And NOT about ISPs and their IPv6 services But it IS about IPv6 networks
More informationAthanassios Liakopoulos Slovenian IPv6 Training, Ljubljana, May 2010
Introduction ti to IPv6 (Part A) Athanassios Liakopoulos (aliako@grnet.gr) Slovenian IPv6 Training, Ljubljana, May 2010 Copy Rights This slide set is the ownership of the 6DEPLOY project via its partners
More informationMIPv6: New Capabilities for Seamless Roaming Among Wired, Wireless, and Cellular Networks
Page 1 M: New Capabilities for Seamless Roaming Among Wired, Wireless, and Cellular Networks Paul Schmitz Technical Marketing Engineer Geoff Weaver Business Development Manager Copyright 2002. *Third-party
More informationConfiguring NAT for IP Address Conservation
This module describes how to configure Network Address Translation (NAT) for IP address conservation and how to configure the inside and outside source addresses. This module also provides information
More informationIPv6: What is it? Why does it matter?
IPv6: What is it? Why does it matter? GOETEC Event Thursday 16 th February 2012 Martin Dunmore Network Infrastructure Development Team Manager, Janet martin.dunmore@ja.net 1 Agenda IPv4 Address Exhaustion
More informationBarracuda Link Balancer
Barracuda Networks Technical Documentation Barracuda Link Balancer Administrator s Guide Version 2.3 RECLAIM YOUR NETWORK Copyright Notice Copyright 2004-2011, Barracuda Networks www.barracuda.com v2.3-111215-01-1215
More informationChapter 3 - Implement an IP Addressing Scheme and IP Services to Meet Network Requirements for a Small Branch Office
ExamForce.com 640-822 CCNA ICND Study Guide 31 Chapter 3 - Implement an IP Addressing Scheme and IP Services to Meet Network Requirements for a Small Branch Office Describe the need and role of addressing
More informationNetwork and Broadband Systems IPv6 What s new? Andreas Hofmeier
Network and Broadband Systems IPv6 What s new? Andreas Hofmeier Contents 1 IPv6, What s New? 1 1.1 Introduction.............................. 1 1.2 Address Space............................. 1 1.3 Address
More informationCampus Network: IPv6 and Firewalling
Campus Network: IPv6 and Firewalling Produced by the CSC/FUNET-led AccessFunet working group Authors: Kaisa Haapala (CSC/FUNET), Ville Mattila (CSC/ FUNET), Jani Myyry (CSC/FUNET), Tuukka Vainio (Univ
More informationComputer Networks and Data Systems
Computer Networks and Data Systems Network Addressing TDC463 Fall 2017 John Kristoff - DePaul University 1 Why have addresses at layer 3? Aren't there already globally unique addresses at L2? If not, should
More informationNetwork Address Translation (NAT)
The following topics explain and how to configure it. Why Use NAT?, page 1 NAT Basics, page 2 Guidelines for NAT, page 8 Configure NAT, page 12 Translating IPv6 Networks, page 40 Monitoring NAT, page 51
More informationUDP NAT Traversal. CSCI-4220 Network Programming Spring 2015
UDP NAT Traversal CSCI-4220 Network Programming Spring 2015 What is NAT Traversal? NAT traversal means establishing a connection between two hosts when one or both is behind NAT. Many of today s network
More informationTransition Strategies from IPv4 to IPv6: The case of GRNET
Transition Strategies from IPv4 to IPv6: The case of GRNET C. Bouras 1,2, P. Ganos 1, A. Karaliotas 1,2 1 Research Academic Computer Technology Institute, Patras, Greece 2 Department of Computer Engineering
More information01/17/08 TDC /17/08 TDC363-03
Introduction to LAN TDC 363 Week 3 Network Protocols Book: Chapter 4 & 11 1 Outline The TCP/IP model vs. the OSI Model IP Address Address Resolution Protocol (ARP) IPX/SPX and NetBIOS Protocols on Windows
More informationHP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls
HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls NAT Configuration Guide Part number:5998-2649 Document version: 6PW100-20110909 Legal and notice information Copyright 2011 Hewlett-Packard Development Company,
More information23 August Introduction
Network Working Group Request for Comments: XXXX W. Chimiak Laboratory for Telecommunication Sciences 23 August 2010 IPvX: IPv4 with 128 bit Address Space An informationally assured way to expedite AAAA
More informationNetwork Address Translation (NAT) Background Material for Overlay Networks Course. Jan, 2013
Network Address Translation (NAT) Background Material for Overlay Networks Course Jan, 2013 Prof. Sasu Tarkoma University of Helsinki, Department of Computer Science Contents Overview Background Basic
More informationNetwork Access Transla0on - NAT
Network Access Transla0on - NAT Foreword Those slides have been done by gathering a lot of informa0on on the net Ø Cisco tutorial Ø Lectures from other ins0tu0ons University of Princeton University of
More informationCSCD 330 Network Programming Spring 2017
CSCD 330 Network Programming Spring 2017 Lecture 14 Network Layer IP Addressing Reading: Chapter 4 Some slides provided courtesy of J.F Kurose and K.W. Ross, All Rights Reserved, copyright 1996-2007 1
More informationCTS2134 Introduction to Networking. Module Network Implementation
CTS2134 Introduction to Networking Module 05.5 05.8 Network Implementation NAT Facts NAT (Network Address Translation) allows you to connect a private network to the Internet without obtaining registered
More informationEE 122 Fall 2010 Discussion Section III 5 October 2010
EE 122 Fall 2010 Discussion Section III 5 October 2010 http://www.cs.berkeley.edu/~alspaugh/ee122/fa10/ Question 1: IP Header This is the IPv4 header structure we will need for the problems Kisco Inc.
More informationNetwork Address Translators (NATs) and NAT Traversal
Network Address Translators (NATs) and NAT Traversal Ari Keränen ari.keranen@ericsson.com Ericsson Research Finland, NomadicLab Outline Introduction to NATs NAT Behavior UDP TCP NAT Traversal STUN TURN
More informationELEC / COMP 177 Fall 2015
ELEC / COMP 177 Fall 2015 Thursday, December 10 th 8am- 11am Same format as midterm Open notes, open computer, open internet 1 programming problem using Python Time limited 3 hours max Bring your Linux
More informationSBC Configuration Examples for Mediant SBC
Configuration Note AudioCodes Mediant Series of Session Border Controllers (SBC) SBC Configuration Examples for Mediant SBC Version 7.2 Configuration Note Contents Table of Contents 1 Introduction...
More information3/10/2011. Copyright Link Technologies, Inc.
Mikrotik Certified Trainer / Engineer MikroTik Certified Dude Consultant Consulting Since 1997 Enterprise Class Networks WAN Connectivity Certifications Cisco, Microsoft, MikroTik BGP/OSPF Experience Deployed
More informationCS 520: Network Architecture I Winter Lecture 11: NAT and IPv6
CS 520: Network Architecture I Winter 2007 Lecture 11: NAT and IPv6 The previous lecture discussed how subnetting and supernetting (CIDR) can be used to make better use of global IP addresses. This lecture
More informationFrom IPv4 Scarcity to IPv6 Abundance. European MUM 2018 Berlin / Germany Wardner Maia
From IPv4 Scarcity to IPv6 Abundance European MUM 2018 Berlin / Germany Wardner Maia Introduction Wardner Maia Electronic and Telecommunications Engineer; Internet Service Provider since 1995; Training
More informationAPNIC Operations IPv6 Challenges
APNIC Operations IPv6 Challenges Challenges Network/System structure/inheritance Management desires for adoption of IPv6 External parties, provisioning Let s talk about the Operations area Network Technical
More informationIPv4 Depletion and IPv6 Adoption Today. Richard Jimmerson
IPv4 Depletion and IPv6 Adoption Today Richard Jimmerson 2 History of the Internet Protocol Internet Protocol version 4 (IPv4) Developed for the original Internet (ARPANET) in 1978 4 billion addresses
More informationWireshark in the Large Enterprise
Wireshark in the Large Enterprise Hansang Bae, Director Riverbed Performance Management, Architect http://www.youtube.com/hansangb has the Camtasia recorded sessions. https://www.box.com/sharkfest2013
More informationDepreciation of site local address
Depreciation of site local address Tomohiro Fujisaki Nippon Telegraph and Telephone Corporation Contents What is site-local address? Why was site-local address depreciated? Substitute for site-local address
More informationCCNA Questions/Answers IPv6. Select the valid IPv6 address from given ones. (Choose two) A. FE63::0043::11:21 B :2:11.1 C.
Select the valid IPv6 address from given ones. (Choose two) A. FE63::0043::11:21 B. 191.2.1.2:2:11.1 C. 2001::98 D. 2002:c0a8:101::42 E. :2001:: F. 2002.cb0a:3cdd:1::1 Answer: C, D. 2013 1 Which method
More informationInformation About NAT
CHAPTER 27 This chapter provides an overview of how Network Address Translation (NAT) works on the adaptive security appliance. This chapter includes the following sections: Why Use NAT?, page 27-1 NAT
More informationComputer Networks and Data Systems
Computer Networks and Data Systems Internet Protocol (IP) Addressing TDC463 Winter 2011/12 John Kristoff - DePaul University 1 Why have addresses at layer 3? Aren't there already globally unique addresses
More informationInstalling and Configuring Windows Server 2012
Installing and Configuring Windows Server 2012 Course # Exam: Prerequisites Technology: Delivery Method: Length: 20697-1 70-697 Windows Instructor-led (classroom) 5 Days Overview About this Course This
More informationRecommended Configuration Maximums
Recommended Configuration Maximums NSX for vsphere 6.3 Update 1 Last Updated 7 Nov, 2017 This document supports the version of each product listed and supports all subsequent versions until the document
More informationIPv6. Internet Technologies and Applications
IPv6 Internet Technologies and Applications Contents Summary of IPv6 core features Auto-configuration IPv4-IPv6 transition techniques IPv6 networks today ITS 413 - IPv6 2 Motivation Current version of
More informationIPv6 Transition Strategies
IPv6 Transition Strategies Philip Smith APNIC 36 Xi an 20 th -30 th August 2013 Last updated 25 July 2013 1 Presentation Slides p Will be available on n http://thyme.apnic.net/ftp/seminars/apnic36-
More informationNetwork layer: Overview. Network layer functions IP Routing and forwarding NAT ARP IPv6 Routing
Network layer: Overview Network layer functions IP Routing and forwarding NAT ARP IPv6 Routing 1 Network Layer Functions Transport packet from sending to receiving hosts Network layer protocols in every
More informationMultihoming: An Overview & a brief introduction to GSE(8+8) Single Home
Multihoming: An Overview & a brief introduction to GSE(8+8) Lixia Zhang APRICOT 2006 Perth, Australia 3/2/06 IAB BOF @ APRICOT 1 Customer network 1 1.1.16.0/20 Single Home 1.1.0.0/16. Customer network
More informationSecurity Concerns With Tunneling draft-ietf-v6ops-tunnel-security-concerns-00
Security Concerns With Tunneling draft-ietf-v6ops-tunnel-security-concerns-00 Dave Thaler Suresh Krishnan Jim Hoagland IETF 72 1 Status Formerly draft-ietf-v6ops-teredo-securityconcerns-02.txt Most points
More information