Meeting the OMB FY2012 Objective: Experiences, Observations, Lessons-Learned, and Other Thoughts

Similar documents
IPv6 Deployment Lessons-Learned and Keys to Success

Enterprise IPv6 Deployment Perspectives from US Government

14 January 2013 Presented by: Kevin L. Jones Agency IPv6 Transition Manager

Enterprise IPv6 Deployment Security and other topics

IPv6 Implementation Update DREN and SPAWAR

IPv6 Transition Progress

USGv6: US Government. IPv6 Transition Activities 11/04/2010 DISCOVER THE TRUE VALUE OF TECHNOLOGY

Federal & NASA IPv6 Updates

Questions for Decision Makers

IPv6 Implementation Best Practices For Service Providers

Workshop on the IPv6 development in Saudi Arabia 8 February 2009; Riyadh - KSA

IPv6 in the DREN III acquisi4on. Ron Broersma DREN Chief Engineer

DREN IPv6 Implementation Update

An Introduction to IPv6

IPv6 Implementation Update DREN and SPAWAR

IBM IPv6 Update. Feb, Andras R. Szakal IBM Distinguished Engineer Director IBM Federal Software Architecture

Deployment Explained: DREN IPv6 Pilot

Realities of IPv6 as the Future Network Layer TelecomNEXT March 21, 2006

IPv6 Transitioning. An overview of what s around. Marco Hogewoning Trainer, RIPE NCC

A strategy for IPv6 adoption

IPv6 & Internet Governance Developments. CANTO Nate Davis, Chief Operating Officer

Chapter 1: Chapter 2: Chapter 3: Chapter 4: Chapter 5:

IPv4 Address Exhaustion: A Progress Report. Geoff Huston Chief Scientist APNIC

IPv4 Depletion and IPv6 Adoption Today. Richard Jimmerson

Lunch with John Curran. President and CEO, ARIN

IPv4 Exhaustion at ARIN

IPv6 deployment status: Where are we now and way forward. Miwa Fujii APNIC

DREN IPv6 Implementation Update

NFON Whitepaper: Integrating Microsoft Lync (Skype for Business) with Telephony

Blockers to IPv6 Adoption

Virtualization. Q&A with an industry leader. Virtualization is rapidly becoming a fact of life for agency executives,

DREN IPv6 Implementation Update

BUYER S GUIDE TO AWS AND AZURE RESERVED INSTANCES

6 Tips to Help You Improve Configuration Management. by Stuart Rance

State of R&E IPv6 Deployment: Successes and Setbacks

Department of Veterans Affairs Internet Protocol Version 6 (IPv6): North American IPv6 Summit

An Architecture Journey

IPv6 Deployment Planning

IPv6 Adoption in the US Government

Service Lifecycle and Versioning SOA 2/2559

Governance for the Public Sector Cloud

Title: Episode 11 - Walking through the Rapid Business Warehouse at TOMS Shoes (Duration: 18:10)

TX CIO Leadership Journey Texas CIOs Bowden Hight Texas Health and Human Services Commission Tim Jennings Texas Department of Transportation Mark

IPv6 Deployment Strategies. IPv6 Training Day 18 th September 2012 Philip Smith APNIC

Business and Innovation: The IPv6 Balancing Act

IPv6 Deployment Survey. Based on responses from the RIPE community during June 2009 Maarten Botterman RIPE 59, Lisbon, 6 October 2009

U.S. Department of Education Enterprise Architecture Program Office (EAPO)

IPv4 Address Exhaustion: A Progress Report. Geoff Huston Chief Scientist, APNIC

IPv6 deployment at Google

Executive Summary...1 Chapter 1: Introduction...1

ICANN and Technical Work: Really? Yes! Steve Crocker DNS Symposium, Madrid, 13 May 2017

IPv6 How do I convince my boss?

DREN IPv6 Implementation Update

IPv6 Migration Framework Case of Institutions in Ethiopia

The Power of Unit Testing and it s impact on your business. Ashish Kumar Vice President, Engineering

Introduction to User Stories. CSCI 5828: Foundations of Software Engineering Lecture 05 09/09/2014

Do Rugged Tablets Really Cost More Than Any Other Mobile PC Option?

Promoting Component Architectures in a Dysfunctional Organization

Computer Network Protocols: Myths, Missteps, and Mysteries. Dr. Radia Perlman, Intel Fellow

APCO s Vision for NG Jay English, Chief Technology Officer Jeff Cohen, Chief Counsel & Director of Government Relations

Practical IPv6 for Government

IPv6, Act Now! Daniel Karrenberg, RIPE NCC Chief Scientist

Modernizing Government Storage for the Cloud Era

APNIC input to the Vietnam Ministry of Information and Communications ICT Journal on IPv6

Deploy CGN to Retain IPv4 Addressing While Transitioning to IPv6

Addressing the Barriers to IPv6 Adoption - Barriers to IPv6 Adoption: Overview and Categories

Empirical Analysis of the Effects and the Mitigation of IPv4 Address Exhaustion

Experiences in Data Quality

GET CLOUD EMPOWERED. SEE HOW THE CLOUD CAN TRANSFORM YOUR BUSINESS.

IPv6 Momentum: Success Stories from Around the Globe

IPv4 on-life support (or) The vision of way forward and tradeoffs in transition to IPv6 mechanisms space

IPv4 exhaustion and the way forward. Guillermo Cicileo

Cloud First: Policy Not Aspiration. A techuk Paper April 2017

Aren t computers wonderful? Well, they are when they work and do what

IPv6 Policy and Statistics. Ingrid Wijte July 2018 IPv6 Roundtable - Tel Aviv

Akamai's V6 Rollout Plan and Experience from a CDN Point of View. Christian Kaufmann Director Network Architecture Akamai Technologies, Inc.

IPv6 Momentum: 3 Futures of the Internet there can be only one

Multidiscipline CAD Usage at an EPC Company Jimmy Bergmark Pharmadule Emtunga AB / JTB World

Digital Workflow 10 Tech Rules to Guide You

REPORT MICROSOFT PATTERNS AND PRACTICES

IPv6 at Google. Lorenzo Colitti

IPv6 Deployment and Distribution in the RIPE NCC Service Region. Marco Schmidt IP Resource Analyst Monday, 23 April 2012

IPv6 Evolution and Migration Solution

Green California Summit. Paul Clanon Executive Director California Public Utilities Commission April 19, 2011

IPv6 Momentum: 3 Futures of the Internet there can be only one!

IPv6 Transition Strategies

MN.IT Services and MNsure

Federal Agencies and the Transition to IPv6

MOVING MISSION IT SERVICES TO THE CLOUD

RIPE NCC IPv6 Update. 4th Belgian IPv6 Council Meeting 11 September Nathalie Trenaman

Think like an Elm developer

SD-WAN Transform Your Agency

News English.com Ready-to-use ESL / EFL Lessons 2005 was a second longer than usual

5 Challenges to Government IT Modernization: In Brief. Quick tips & facts about IT modernization across federal, state and local governments

SMART METERING EQUIPMENT READINESS UPDATE JUNE Dr Howard Porter Chief Executive Officer, BEAMA

Sample Exam. Advanced Test Automation - Engineer

IPv6 Deployment Planning. Philip Smith PacNOG 10, Nouméa 21 st November 2011

IPv6 Momentum and SmartGrids

IPv6 Deployment: Dealing with Dependencies

Making. the Most of FedRAMP. Industry Perspective INDUSTRY PERSPECTIVE

Transcription:

Meeting the OMB FY2012 Objective: Experiences, Observations, Lessons-Learned, and Other Thoughts 2013 Federal Interagency Workshop 9 December, 2013 Ron Broersma DREN Chief Engineer ron@dren.mil

Introduction Experiences, lessons-learned, and perspectives from 13 years of active Internet Protocol version 6 (IPv6) deployment in United States (US) Government networks The US Government has tried various incentives and mandates (2008, 2012, and 2014) Some fail, some do help. Why? What are some good incentives and mandates? What are the keys to making progress on IPv6 deployment? What works? 2

Key Factors to Success Have the right mindset or worldview, and the correct paradigms Have a corporate IPv6 culture with proper vision and leadership Keep it simple Employ good mandates and incentives Measure and share progress 3

Incorrect Mindset or Worldview Experience has shown that most organizations that plan to deploy IPv6, or IPv6-enable their products, initially have an incorrect mindset on how to get there Typical errors in thinking: What s the business case or Return on Investment (ROI) if I spend money and effort on deploying IPv6 now? How can I charge more money for IPv6, since it is a feature? I can t do IPv6, because things will break when I turn off IPv4 I can t do IPv6, because it costs too much. It is not a high-priority Thinking that you need to be conservative with IPv6 addresses, like we have been with IPv4 4

Proper Mindset, Worldview What is it you are trying to do? Add full support for IPv6 everywhere in your network and your products and services, wherever you have IPv4 today, and continue to support IPv4 in parallel for the next decade or more. You will know when and where to shut off IPv4, so don t worry about it now Why are you doing this? The future of the Internet is at stake. It cannot grow without ubiquitous IPv6. You are part of the ubiquitous If we don t get on with it, bad things will happen, Carrier- Grade Network Address Translation (NAT) (CGN), for example 5

Proper Mindset, Worldview (continued) What is the business case for IPv6? There is no early return on investment The benefit is long-term If you don t deploy IPv6, you will eventually lose business, or go out of business 6

Proper Mindset, Worldview (continued) What will it take in time and resources? You have a choice: Use normal technical refresh cycles to roll-out IPv6, over 5+ years at almost no extra cost Wait until it is really necessary or mandated, then do it quickly at very high-cost (think forklift upgrades ) Lesson: If you haven t started yet, you are probably too late to take the inexpensive path. Delaying any longer will just make it worse 7

Culture, Vision, Goals Successful enterprise IPv6 deployments require: Clear vision and goals, set and communicated from the top (CIO/CEO) One or a few individuals leading the charge, in a fulltime role Information Technology (IT) staff must be enabled (given authority) to make it happen Whole organization (everyone involved in IT) must embrace an IPv6 culture Status and progress must be measured and published It is much more than just an Internet Protocol (IP) networking issue 8

Keep it simple Common problem: Agencies can get bogged down in years of planning, before passing a single IPv6 packet It is mostly a waste, because they have the wrong mindset and worldview and are thinking IPv4 paradigms (address conservation, for example) Agencies can be overwhelmed by not knowing what to do or where to start A simpler approach: (for FY2012 objective): Can you get to my website via IPv6? If not, fix that (for FY2014 objective): Can my users get a good score at http://test-ipv6.com? If not, fix that 9

A problem with addressing plans Everyone makes the same common mistakes It comes from IPv4 thinking It is pretty much guaranteed to take at least 3 major iterations to get it right Agencies have acquired Provider-Independent (PI) address allocations, and have assumed Local Internet Registry (LIR) responsibilities for their smaller bureaus Who is validating their respective IPv6 addressing plans regarding the FY2012 objective, and impact to their FY2014 efforts? 10

Dealing with your suppliers Profiles like the National Institute for Standards and Technology United States Government version 6 (USGv6) and Réseaux IP Européens (RIPE)-554 documents are important, but not necessarily sufficient. HPCMP also does the following: Before considering products and services from any provider, ensure their corporate website is IPv6-enabled If website is not IPv6-enabled, it is an indication that there is no corporate commitment to IPv6, and we probably don t want their products, so stop considering them until they fix this Avoid products where the provider does not eat their own dog food Evaluate (Test) all products in a production scenario Include full IPv6 support in all contracts There are many examples where this really works 11

Deploy Native IPv6 It is a common misunderstanding that native IPv6 implies IPv6-only (turning off IPv4) We can t turn off IPv4, yet When we say native, we mean: Not translated Not tunneled Native is really short for native end-to-end The goal is to have communications paths where IPv6 packets are transported natively from client to server (end-to-end), without going through translators (like today s NAT devices), and without being tunneled inside IPv4 networks Saltzer, J. H., D. P. Reed, and D. D. Clark (1981) "End-to-End Arguments in System Design" 12

Do mandates help? Yes, sometimes, to some degree US Government experience: FY2008 mandate failed (due to lack of followthrough) FY2012 mandate 38% successful to date FY2014 mandate little progress to date more challenging to measure success World efforts highly successful World IPv6 Day on June 8, 2011 World IPv6 Launch on June 6, 2012 13

US Government IPv6 Status NIST IPv6 Deployment Monitor FY2012 objective 14

Observations and Questions Why did much of the change come right before the deadline? Incentives work If these metrics show only 46% completion, does this indicate a failure to meet the goal? No After the FY2012 objective, what incentive is there to Leave things turned on? Continue making progress on the other 54%? 15

Interpreting the results Red doesn t mean no progress To get to green, you had to plan, procure, contract, train, test, install, and configure for IPv6 deployment By the FY2012 deadline: ~800 domains made some progress ~1200 unique public.gov services are IPv6-enabled ~30% of public web.gov sites monitored are IPv6- enabled 16

Success? Yes, this was a huge success: A significant increase in demand signal from the US Government to industry, to deliver IPv6 services Much harder to ignore or give low-priority to IPv6- customer requirements Explodes the myth that nobody is asking for IPv6 A huge increase in IPv6 awareness in the US Government agencies People holding workshops, getting training, working with their providers, etc. 17

Success? (continued) Numerous commercial products have been conformance and interoperability tested http://www-x.antd.nist.gov/usgv6/products.html A lot of public US Government content is becoming IPv6-enabled Being part of the solution, rather than the problem Setting an example and paving the way for the rest of the public sector But we MUST keep pressing forward on the remaining 49% where there is no progress What are you doing to incentivize your own organization? DREN as an example 18

Concerns about security Most IPv6 security issues are no worse than IPv4 One real IPv6 security concern has been lack of implementation maturity The code is very new and we haven t found all the bugs yet But this is improving quickly Example: (a total network failure) 19

Role of Government US Government organizations can make a difference Large consumers of information technology and services, and large enough to influence industry to make products and services fully IPv6-capable Can set a good example for others to follow If they are not part of the solution, they are part of the problem 20

END Contact me: ron@dren.mil

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback