Learning/Playing with IPv6 at home. Keith Garner, Gradebook Team Lead

Similar documents
IPv6. Internet Technologies and Applications

Network Management. IPv6 Bootcamp. Zhiyi Huang University of Otago

OSI Data Link & Network Layer

Chapter 7: IP Addressing CCENT Routing and Switching Introduction to Networks v6.0

Setup. Grab a vncviewer like: Or

DHCPv6 OPERATIONAL ISSUES Tom Coffeen 4/7/2016

IPv6 Feature Facts

DHCPv6 Overview 1. DHCPv6 Server Configuration 1

Index Terms- IPv4, IPv6

Introduction to IPv6 - II

The Netwok Layer IPv4 and IPv6 Part 2

Using IPv6. Daniel Hagerty

IPv6 and IPv4: Twins or Distant Relatives

ISO 9001:2008. Pankaj Kumar Dir, TEC, DOT

MUM Lagos Nigeria Nov 28th IPv6 Demonstration By Mani Raissdana

ECE 435 Network Engineering Lecture 14

OSI Data Link & Network Layer

Transitioning to IPv6

OSI Data Link & Network Layer

FUNDAMENTALS OF IPV6. June 18, 2014

Internet Protocol v6.

TCP/IP Protocol Suite

IPv4/v6 Considerations Ralph Droms Cisco Systems

IPv6 Associated Protocols. Athanassios Liakopoulos 6DEPLOY IPv6 Training, Skopje, June 2011

Module 13. IPv6 Addressing

Practical IPv6 for Windows Administrators

IPv6 Protocol Architecture

Configure 6in4 Tunnel in pfsense. Lawrence E. Hughes. 18 November 2017

Operation Manual IPv6 H3C S3610&S5510 Series Ethernet Switches Table of Contents. Table of Contents

Configuring IPv6. Information About IPv6. Send document comments to CHAPTER

Workshop on Scientific Applications for the Internet of Things (IoT) March

IPv6 Technical Challenges

Planning for Information Network

DNS, DHCP and Auto- Configuration. IPv6 Training Day 18 th September 2012 Philip Smith APNIC

Advanced Computer Networking (ACN)

Advanced Computer Networking. CYBR 230 Jeff Shafer University of the Pacific. IPv6

IPv6 Protocol & Structure. npnog Dec, 2017 Chitwan, NEPAL

IP version 6. The not so new next IP version. dr. C. P. J. Koymans. Informatics Institute University of Amsterdam.

IPv6 It starts TODAY!

Table of Contents 1 IPv6 Configuration IPv6 Application Configuration 2-1

Recent advances in IPv6 insecurities reloaded Marc van Hauser Heuse GOVCERT NL Marc Heuse

IPv6 CONSORTIUM TEST SUITE Address Architecture Conformance Test Specification

ODL Summit Bangalore - Nov 2016 IPv6 Design in OpenDaylight

IPv6 Neighbor Discovery

IPv6 address configuration and local operation

IPv6 Bootcamp Course (5 Days)

IPv6 Neighbor Discovery

Table of Contents 1 IPv6 Configuration IPv6 Application Configuration 2-1

Lecture Computer Networks

Configuring IPv6 basics

Table of Contents 1 IPv6 Configuration IPv6 Application Configuration 2-1

Foreword xxiii Preface xxvii IPv6 Rationale and Features

Rocky Mountain IPv6 Summit April 9, 2008

12.1. IPv6 Feature. The Internet Corporation for Assigned Names and Numbers (ICANN) assigns IPv6 addresses based on the following strategy:

The Netwok Layer IPv4 and IPv6 Part 2

IPv6 Neighbor Discovery

Radware ADC. IPV6 RFCs and Compliance

Introduction to IPv6

Internet Protocol Version 6: advanced features. The innovative aspects of IPv6

IPv6 Stateless Autoconfiguration

CS-435 spring semester Network Technology & Programming Laboratory. Stefanos Papadakis & Manolis Spanakis

IPv6 Addressing. There are three types of IPV6 Addresses. Unicast:Multicast:Anycast

A Practical (and Personal) Perspective on IPv6 for Servers. Geoff Huston June 2011

IPv6 Client IP Address Learning

IPv6 Autoconfiguration. Stateless and Stateful. Rabat, Maroc Mars 2007

CSCI-1680 Network Layer:

Configuring IPv6 for Gigabit Ethernet Interfaces

IPv6 Transition Mechanisms

IPv6 Security. David Kelsey (STFC-RAL) IPv6 workshop pre-gdb, CERN 7 June 2016

IPv6. (Internet Protocol version 6)

Networking Potpourri: Plug-n-Play, Next Gen

IPv6 tutorial. RedIRIS Miguel Angel Sotos

IPv6: The Ins and Outs. Chris Buechler

It's the economy, stupid: the transition from IPv4 to IPv6

IPv4 32 bits, 4 octets separated by. (period) IPv6 128 bits, 8 groupings of 16 bits separated by : (colon)

Step 2. Manual configuration of global unicast and link-local addresses

Internet Control Message Protocol

World IPv6 Launch and Penn

IPv6 Next generation IP

New IP Header. Why change IP. Address Notation. Changes. Information Sources. IP Version 6 ITL

Information Sources Hans Kruse & Shawn Ostermann, Ohio University

Enhanced Mechanism of Automated IPv6 Site Renumbering

Implementing DHCP for IPv6

ipxe Finding Feature Information Information About ipxe

IPv6 Protocols and Networks Hadassah College Spring 2018 Wireless Dr. Martin Land

Create a Dual Stack Virtual Private Cloud (VPC) in AWS

TD#RNG#2# B.Stévant#

Table of Contents 1 IPv6 Basics Configuration 1-1

Internet Protocol, Version 6

"Charting the Course... IPv6 Bootcamp Course. Course Summary

IPv6 Concepts. Improve router performance Simplify IP header Align to 64 bits Address hierarchy with more levels Simplify routing tables

The OSI model of network communications

Internet of Things (IOT) Things that you do not know about IOT

IPv6 Changes in Mobile IPv6 from Connectathon

IPv6 Transition Mechanisms

IPv6 for the InfoSec Pro On the Go. Allan Stojanovic University of Toronto #include disclaimer.h

Athanassios Liakopoulos

MIGRATION OF INTERNET PROTOCOL V4 TO INTERNET PROTOCOL V6 USING DUAL-STACK TECHNIQUE

Introduction to IPv6. IPv6 addresses

Guide to TCP/IP Fourth Edition. Chapter 6: Neighbor Discovery in IPv6

Transcription:

Learning/Playing with IPv6 at home Keith Garner, Gradebook Team Lead

Who am I?

tl;dr: Its an IP address

The good IPv4 old days Address Netmask Gateway DNS

IPv4 Quick review example address: 192.168.123.251 Netmask example: 255.255.255.0 or /24 DNS returns A record gateway router needs to be defined auto configuration: DHCP MAC address is unique key

Why IPv6? In Sept 2015ish, IPv4 ran out NAT can only take us so far Private network collision Internet of Things IPv4: 2 32 addresses IPv6: 2 128 addresses

Why IPv6 for you? Ahead of curve Curiosity / learning Being cool

Some IPv6 features Large address space Auto-configuration Header rearranged for faster routing Anycast support

IPv6 Address 8 groups of 4 hexadecimal digits 2001:0db8:85a3:0000:0000:8a2e:0370:7334 Leading 0s may be omitted 2001:db8:85a3:0:0:8a2e:370:7334 Longest group of consecutive 0s can be omitted 2001:db8:85a3::8a2e:370:7334

IPv6 Address Localhost 0:0:0:0:0:0:0:1 ::1 Unspecified 0:0:0:0:0:0:0:0 :: Brackets for URLs and other colon normal places http://[2001:db8:85a3::23]:80/

IPv6 Address

Address types Link-Local Address Unique-Local Address similar to IPv4 private network Global Unicast Address Your Public IP

Link-Local Address Every link has one fe80:: Needed for Neighbor Discovery Protocol, etc Duplicate address detection algorithms

Link-Local Address Every link has one fe80:: Needed for Neighbor Discovery Protocol, etc Duplicate address detection algorithms

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Link-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Unique-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Unique-Local Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Global Unicast Address Wireless Access Point Tablet Laptop The Internets Firewall PC

Global Unicast Address Wireless Access Point Tablet Laptop The Internets Firewall PC

You ll have more than one

You ll have more than one

ICMPv6 Neighbor Discovery Protocol - link-local Neighbor Solicitation Neighbor Advertisement Router Solicitation Router Advertisement

Router Advertisement One or more IPv6 prefixes (Link-local scope) Prefix lifetime information Flag information Default device information Default router to use and its lifetime

Stateless Autoconfiguration SLAAC IP derived from router prefix and MAC address Can be identified by FF:FE in address 2000:1234:5678::EBFF:FEA4:C1AE SLAAC privacy extension addresses

Stateless Autoconfiguration

Stateless Autoconfiguration

Stateless Autoconfiguration

Stateless Autoconfiguration No tracking No reservation (beyond MAC address based.) May need assist from Stateless DHCPv6 servers: NTP, SIP, NIS

Stateful Autoconfiguration DHCPv6 Unique Identifier is DUID not MAC Router Advertisement can still be involved

DNS AAAA record Reverse is UGLY

DNS Via Router Advertisement Recursive DNS Server (RDNSS) DNS Search List (DNSSL) Via DHCPv6

Address Space RFC6177 recommends /56 for homes Comcast subnet to a house is /64 /56 4,722,366,482,869,645,213,696 /60 295,147,905,179,352,825,856 /64 18,446,744,073,709,551,616 /72 72,057,594,037,927,936

unix tools ping6 traceroute6-6 flags also popular ip can have extended information

unix tools ping6 traceroute6-6 flags also popular ip can have extended information

Firewall

Adoption

Adoption

Adoption issues NAT is working pretty good and some consider it a security measure Devices aren t using it because its not deployed because devices aren t using it because Most home routers didn t have support until recently and they tend to default off Addresses are hard to remember

Sites IPv6 Enabled Netflix Google Facebook whitehouse.gov us.archive.ubuntu.com att.com yahoo.com irc.freenode.net Not so much CNN FoxNews Twitter Microsoft ubuntu.com Bing Amazon Instructure

In practice, (at my house)

LAN 2601:246:4400:7690::/64 fd88:4c50:7548:0::/64 2001:558:6033:7c:2c99:41d:7efb:da51/128 GUEST 2601:246:4400:7691::/64 fd88:4c50:7548:1::/64 2601:246:4400:7690::/60 fd88:4c50:7548::/48

Home Network Dual-stacked DHCPv6 for WAN/Prefix from Comcast Request /60 from Comcast ULA prefix defined for v6 addressing in LAN Give /64 to LAN and to GUEST Have firewall rules for GUEST to get DNS, DHCP

Devices in my house IPv6 Enabled Apple devices (Watch/ TV/iPad/iPhone/ TimeCapsule/OS X) ps4 linux Nest thermostat Not so much WeMo Fitbit scale Smarthings Hub August Connect MyQ garage idevices HomeKit switch

Getting Started Does your ISP support? IPv6 tunnel brokers Does your router support it? Does your router support OpenWRT? Fastest route: supported ISP + Apple Airport

Things to be aware of Or maybe rather Things I ran in to.

Don t delete NDP rules

Firewall

OS X ignores ULA

OpenWRT issues odhcpd stops communicating odhcpd doesn t persist leases across restarts Because of those, might need to re-up clients often Default GUI doesn t have place to enter DUID

Resources

Hurricane Electric

Hurricane Electric

test-ipv6.com

test-ipv6.com

Any questions? Keith Garner, Gradebook Team Lead

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback