IPv6 Technical Challenges

Similar documents
Transitioning to IPv6

IPv6 Protocols and Networks Hadassah College Spring 2018 Wireless Dr. Martin Land

IPv6. IPv4 & IPv6 Header Comparison. Types of IPv6 Addresses. IPv6 Address Scope. IPv6 Header. IPv4 Header. Link-Local

Planning for Information Network

OSI Data Link & Network Layer

Lecture Computer Networks

TCP/IP Protocol Suite

IPv6 Next generation IP

IPv6. (Internet Protocol version 6)

New IP Header. Why change IP. Address Notation. Changes. Information Sources. IP Version 6 ITL

Information Sources Hans Kruse & Shawn Ostermann, Ohio University

Internet Protocol, Version 6

Rocky Mountain IPv6 Summit April 9, 2008

Module 13. IPv6 Addressing

IPv6 Feature Facts

IPv6 : Internet Protocol Version 6

History. IPv6 : Internet Protocol Version 6. IPv4 Year-Wise Allocation (/8s)

Radware ADC. IPV6 RFCs and Compliance

Avaya Networking IPv6 Using Fabric Connect to ease IPv6 Deployment. Ed Koehler Director DSE Ron Senna SE Avaya Networking Solutions Architecture

Configuring IPv6 basics

IPv6 Protocol Architecture

CSCI-1680 Network Layer:

Information Sources Hans Kruse & Shawn Ostermann, Ohio University

IPv6 Concepts. Improve router performance Simplify IP header Align to 64 bits Address hierarchy with more levels Simplify routing tables

ISO 9001:2008. Pankaj Kumar Dir, TEC, DOT

Integrated Security 22

IPv6 Addressing. There are three types of IPV6 Addresses. Unicast:Multicast:Anycast

Unit 5 - IPv4/ IPv6 Transition Mechanism(8hr) BCT IV/ II Elective - Networking with IPv6

OSI Data Link & Network Layer

Workshop on Scientific Applications for the Internet of Things (IoT) March

Transition to IPv6. Hui Chen, Ph.D. Dept. of Engineering & Computer Science Virginia State University Petersburg, VA 23806

CCNA Questions/Answers IPv6. Select the valid IPv6 address from given ones. (Choose two) A. FE63::0043::11:21 B :2:11.1 C.

OSI Data Link & Network Layer

The link-local prefix ff00::/8 specifies any addresses which are used only in software.

IPv4 32 bits, 4 octets separated by. (period) IPv6 128 bits, 8 groupings of 16 bits separated by : (colon)

IPv4/v6 Considerations Ralph Droms Cisco Systems

IPv6 Neighbor Discovery

IPv6 Protocols & Standards

IPv6 Bootcamp Course (5 Days)

INTRODUCTION OF IPV6. Ravikumar Naik 21/11/2011

RMIT University. Data Communication and Net-Centric Computing COSC 1111/2061. Lecture 2. Internetworking IPv4, IPv6

Subnet Masks. Address Boundaries. Address Assignment. Host. Net. Host. Subnet Mask. Non-contiguous masks. To Administrator. Outside the network

IPv6 Protocol & Structure. npnog Dec, 2017 Chitwan, NEPAL

Cisco IOS IPv6. Cisco IOS IPv6 IPv6 IPv6 service provider IPv6. IPv6. data link IPv6 Cisco IOS IPv6. IPv6

Configuring IPv6. Information About IPv6. Send document comments to CHAPTER

IPv6 is Internet protocol version 6. Following are its distinctive features as compared to IPv4. Header format simplification Expanded routing and

Network Management. IPv6 Bootcamp. Zhiyi Huang University of Otago

Guide to TCP/IP Fourth Edition. Chapter 2: IP Addressing and Related Topics

ECE 435 Network Engineering Lecture 14

Configuring IPv6 for Gigabit Ethernet Interfaces

Advanced Computer Networking. CYBR 230 Jeff Shafer University of the Pacific. IPv6

TSIN02 - Internetworking

Introduction to IPv6 - II

Foreword xxiii Preface xxvii IPv6 Rationale and Features

IPv6 Protocols & Standards. ISP/IXP Workshops

CS-435 spring semester Network Technology & Programming Laboratory. Stefanos Papadakis & Manolis Spanakis

Lecture 7 Overview. IPv6 Source: Chapter 12 of Stevens book Chapter 31 of Comer s book

IPv6 Protocol. Does it solve all the security problems of IPv4? Franjo Majstor EMEA Consulting Engineer Cisco Systems, Inc.

Index Terms- IPv4, IPv6

Introducing IPv6 and. Strategy of migration and Basic routing configuration

IPv6: An Introduction

Internet Protocol v6.

Introduction to IPv6

Implementing Cisco IP Routing

Operation Manual IPv6 H3C S3610&S5510 Series Ethernet Switches Table of Contents. Table of Contents

IPv6 and IPv4: Twins or Distant Relatives

Table of Contents Chapter 1 Tunneling Configuration

The Netwok Layer IPv4 and IPv6 Part 2

Chapter 7: IP Addressing CCENT Routing and Switching Introduction to Networks v6.0

IPv6 in Campus Networks

IPv6 Transition Technologies (TechRef)

Introduction to IPv6. IPv6 addresses

Outline. IP Address. IP Address. The Internet Protocol. o Hostname & IP Address. o The Address

IPv6 migration challenges and Security

Internet of Things (IOT) Things that you do not know about IOT

12.1. IPv6 Feature. The Internet Corporation for Assigned Names and Numbers (ICANN) assigns IPv6 addresses based on the following strategy:

Chapter 15 IPv6 Transition Technologies

Setup. Grab a vncviewer like: Or

IPv6 Neighbor Discovery

Tik Network Application Frameworks. IPv6. Pekka Nikander Professor (acting) / Chief Scientist HUT/TML / Ericsson Research NomadicLab

A Border Gateway Protocol 3 (BGP-3) DNS Extensions to Support IP version 6. Path MTU Discovery for IP version 6

Computer Networking: A Top Down Approach Featuring the. Computer Networks with Internet Technology, William

Introduc)on to IPv6. Administra)on de Réseaux Dino Lopez h<p://

This tutorial will help you in understanding IPv6 and its associated terminologies along with appropriate references and examples.

IPv6 Neighbor Discovery

The OSI model of network communications

IPv6 Security (Theory vs Practice) APRICOT 14 Manila, Philippines. Merike Kaeo

IPv6 Transition Mechanisms

Internet Routing Protocols Part II

"Charting the Course... IPv6 Bootcamp Course. Course Summary

Tutorial: IPv6 Technology Overview Part II

Asst. Prof. Chaiporn Jaikaeo, Ph.D.

IPv4-to-IPv6 Transition Strategies

Athanassios Liakopoulos

Results of a Security Assessment of the Internet Protocol version 6 (IPv6)

Aeronautical Systems Center

IP version 6. The not so new next IP version. dr. C. P. J. Koymans. Informatics Institute University of Amsterdam.

MUM Lagos Nigeria Nov 28th IPv6 Demonstration By Mani Raissdana

FiberstoreOS IPv6 Service Configuration Guide

Practical IPv6 for Windows Administrators

Transcription:

IPv6 Technical Challenges Peter Palúch, CCIE #23527, CCIP University of Zilina, Slovakia Academy Salute, April 15 th 16 th, Bucharest

IPv6 technical challenges What challenges do I meet if I decide to deploy IPv6? Providing basic IPv6 connectivity Migrating existing services to IPv6 or IPv4/IPv6 operation Providing IPv6 communication over IPv4 clouds Allowing for IPv6/IPv4 intercommunication Practical experiences in configuring and operating IPv6 networks Persuading the network admins for the extra effort of deploying IPv6 in their network

IPv6 characteristics a short overview IPv6 a new (?) L3 protocol ultimately aiming to replace the IPv4 in the long run Key features: Larger address space with 128-bit addressing Simplified header and its processing Removal of broadcast semantics Provisions for automagic autoconfiguration Provisions for better security (well, kind of ) Provisions for better mobility and last but not least, provisions for all sorts of headaches

Legend IPv4 and IPv6 Header Comparison Version IHL Time to Live Identification IPv4 Header Type of Service Protocol Flags Total Length Fragment Offset Header Checksum Version Traffic Class Payload Length IPv6 Header Flow Label Next Header Hop Limit Source Address Destination Address Options Padding Source Address Fields Kept from IPv4 to IPv6 Fields Not Kept in IPv6 Name and Position Changed in IPv6 New Field in IPv6 Destination Address

IPv6 Address Representation x:x:x:x:x:x:x:x, where x is a 16-bit hexadecimal field Leading zeros in a field are optional: 2031:0:130F:0:0:9C0:876A:130B Successive fields of 0 can be represented as ::, but only once per address. Examples: 2031:0000:130F:0000:0000:09C0:876A:130B 2031:0:130f::9c0:876a:130b FF01:0:0:0:0:0:0:1 >>> FF01::1 0:0:0:0:0:0:0:1 >>> ::1 0:0:0:0:0:0:0:0 >>> ::

IPv6 Address Types Unicast One-to-one type Address assigned to a single interface only Multicast One-to-many type Address assigned to a group of listeners Anycast One-to-nearest type More devices sharing the same address because they provide the same service It depends on basic routing which node processes the packets There is no concept of broadcast address

IPv6 Address Categories It is normal for an interface to have lots of IPv6 addresses Very unlike IPv4 IPv6 addreses are differentiated into several categories ::/128 ::1/128 FF00::/8 FE80::/10 Unspecified address Loopback Multicast Link-Local Unicast FEC0::/10 Site local Unicast, obsoleted in RFC 3879 FC00::/7 Unique Local Unicast, RFC 4193 ::A.B.C.D IPv4-Compatible addresses (deprecated) ::FFFF:A.B.C.D IPv4-Mapped addresses All other Global Unicast

IPv6 Global Unicast Address Formally, a Global Unicast Address has three parts, very similar to IPv4 addressing Global Routing Prefix Subnet ID Interface ID A site is usually given a /48 global routing prefix The Interface ID is required to have 64 bits The Interface ID may be assigned manually or by different mechanisms This leaves 16 bits for the Subnet ID

MAC Address to EUI-64

Link-Local Address Remaining 54 bits Mandatory address for communication between two IPv6 devices Automatically assigned to interface as soon as IPv6 is enabled Also used for next-hop calculation in routing protocols Only link specific scope Remaining 54 bits could be zero or any manual configured value Pure transit links can nicely operate using link-local addresses only

Multicasting Multicast is frequently used in IPv6

ICMP version 6 In IPv6, the ICMP is given a crucial role Supports all important messages of its predecessor Adds new functions Router Solicitation, Advertisement (for autoconfiguration) Neighbor Solicitation, Advertisement (replaces ARP) Multicast Listener Discovery The added functions provide for Automatic gateway discovery and stateless address configuration Resolution of MAC addresses Duplicate Address Detection Multicast delivery control Blocking ICMPv6 in firewalls may cause serious trouble

Stateless Autoconfiguration A router sends network information to all the nodes on the local link A host can autoconfigure itself by appending its IPv6 interface identifier (64-bit format) to the local link prefix (64 bits) The result is a full 128-bit address that is usable and guaranteed to be globally unique

A Standard Stateless Autoconfiguration Stage 1: The PC sends a router solicitation to request a prefix for stateless autoconfiguration

A Standard Stateless Autoconfiguration (Cont.) Stage 2: The router replies with a router advertisement

Connectivity issues related to autoconfig End stations usually come preinstalled with IPv6 enabled Modern operating systems generally prefer IPv6 to IPv4 when opening connections Until there is no IPv6 router in a network, the IPv6 will not really become active on the stations With an IPv6 router on the segment, stations acquire their IPv6 settings and try to talk to the outside IPv6 world What if that router was put in unintentionally or maliciously? What if the router spreads incorrect information? What if there is an IPv6 connectivity breach a few hops further?

EUI-64 and resulting privacy concerns The close relation of an autoconfigured IPv6 address to the unique MAC address raised privacy concerns Therefore, many OSes today add yet another IPv6 address to their IPv6-enabled interfaces The prefix is derived from Router Advertisement messages The Interface ID is generated randomly and changes over time The randomized address is preferred for all outgoing connections This way, the privacy is rapidly increased, at a cost It becomes difficult to correlate IPv6 addresses in logs to a particular end host for monitoring and security purposes The DHCPv6 temporary address feature may solve this problem

IPv6 Routing Protocols IPv6 routing types: Static RIPng IS-IS for IPv6 OSPFv3 EIGRP for IPv6 MP-BGP4

IPv4-to-IPv6 Transition There are several methods for IPv4-to-IPv6 migration Dual stack Static tunnels Tunnels with dynamic endpoint discovery (6to4, ISATAP, 6rd, ) Protocol Translation (NAT-PT)

Dual Stack Dual stack is an integration method where a node has a native connectivity to both IPv4 and IPv6 network Definitely, the dual stack is the cleanest method of migrating from IPv4 to IPv6, with a small gotcha You need an IPv4 address and they are used up now

Tunneling Tunneling is an integration method where an IPv6 packet is encapsulated within another protocol, such as IPv4 This includes a 20-byte IPv4 header and an IPv6 header and payload There may be another tunneling protocol involved, such as GRE (mostly for passenger protocol identification to allow the transport of multiple protocols over a single tunnel)

Tunneling Encapsulation can be done by edge routers between hosts or between a host and a router, as it is fundamentally a software feature Today s operating systems on end hosts support several tunneling mechanisms Static, 6to4, ISATAP, TEREDO, 6rd

What is needed for a tunnel? Configuring static tunnels requires: Dual-stack endpoints IPv4 and IPv6 addresses configured at each end Knowing precise IPv4 addresses of the endpoints With tunneling, fragmentation issues are to be expected

Translation NAT-PT The tunneling does not solve issues related to a situation when the end stations only speak different IP protocols NAT-Protocol Translation (NAT-PT) is a translation mechanism that sits between an IPv6 network and an IPv4 network The job of the translator is to translate IPv6 packets into IPv4 packets and vice versa The NAT-PT itself has been deprecated but similar mechanisms are still being considered and developed

Conclusions IPv6 solves crucial problems with IPv4, along with introducing its own set of peculiarities It has great provisions for sustainability, plug&play, mobility, even efficiency As just about any other technology, it needs to be deployed by a skilled and knowledgeable administrator It does not solve all problems in current networking but it certainly is a step forward, and we learn by doing

Thank you very much! Peter Palúch RCNA Žilina Peter.Paluch@fri.uniza.sk

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback