Routing IPV6. Copyright Cisco Academy. Yannis Xydas

Similar documents
CCNA 3 (v v6.0) Chapter 8 Exam Answers % Full

Chapter 3 Lab 3-2, Multi-Area OSPFv2 and OSPFv3 with Stub Area

CCNA 3 (v v6.0) Chapter 10 Exam Answers % Full

OSPFv3 Address Families

OSPFv3 Address Families

Lab 4: Routing using OSPF

Table of Contents 1 Static Routing Configuration RIP Configuration 2-1

OSPF Commands. Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols IP2R-61

IPv6 Routing: OSPFv3

CCNA Semester 2 labs. Part 2 of 2 Labs for chapters 8 11

Chapter 5: Maintaining and Troubleshooting Routing Solutions

OSPFv3 Commands. address-family (OSPFv3), page 4. authentication (OSPFv3), page 7

OSPFv3 Address Families

Sample Configuration for OSPFv3

Lab - Configuring Multi-area OSPFv3 Topology

OSPF. About OSPF. CLI Book 1: Cisco ASA Series General Operations CLI Configuration Guide, 9.4 1

debug ip ospf database external default-metric subnet area 0 stub distribute-list in Serial0/1

Chapter 16 OSPF Version 3 Commands

Chapter 4 Lab 4-2, Redistribution Between EIGRP and OSPF

TDC 363 Introduction to LANs

Chapter 1 Lab 1-1, Basic RIPng and Default Gateway Configuration

Table of Contents 1 OSPF Configuration 1-1

Introduction to OSPF

Lab- Configuring Basic Single-Area OSPFv2

Step 2. Manual configuration of global unicast and link-local addresses

Configuring OSPF. Finding Feature Information

CCNA 3 (v v6.0) Chapter 6 Exam Answers % Full

Ch. 5 Maintaining and Troubleshooting Routing Solutions. Net412- Network troubleshooting

Configuring Networking Protocols

IPv6 Tunnel through an IPv4 Network

OSPF with Multi Area Adjacency Configuration Example

Troubleshooting Routing Solutions

IP Routing Tecnologie e Protocolli per Internet II rev 1

Config. Router# show ip ospf

Chapter 4 Lab 4-1, Redistribution Between RIP and OSPF

CCNA 3 (v v6.0) Chapter 5 Exam Answers % Full

Passit4Sure.4A Questions 4A Alcatel-Lucent Interior Routing Protocols and High Availability

FSOS IPv6 Routing Command Line Reference

Lab - Configuring Basic Single-Area OSPFv2

CCIE R&S Lab Workbook Volume I Version 5.0

FiberstoreOS V3.3 IPv6 Routing Command Line Reference

FiberstoreOS. IPv6 Routing Command Line Reference

Configuring OSPF. Finding Feature Information

Introducing IPv6 and. Strategy of migration and Basic routing configuration

CCNA 3 (v v6.0) Chapter 7 Exam Answers % Full

A Commands. Send comments to

OSPF Commands. adjacency stagger, page 7. authentication-key (OSPF), page 14

Configuring OSPF. Finding Feature Information. Contents

OSPF Commands on Cisco IOS XR Software

Logging neighbor state changes 38 Configuring OSPF network management 39 Enabling message logging 39 Enabling the advertisement and reception of

Operation Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents

IPv6 Commands: ipv6 ospf de to ipv6 sp

cisco. Number: Passing Score: 800 Time Limit: 120 min.

REDDIG II Computer Networking Training

Vendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Interior Routing Protocols and High Availability.

Routing Protocol Type Primarily IGP or EGP RIP Distance-Vector IGP EIGRP OSPF IS-IS BGP

The following questions are designed to test your understanding of this chapter s

Configuration and Management of Networks

OSPF Commands on Cisco ASR 9000 Series Router

OSPF Commands: A through Z

Introduction to OSPF

Chapter 3 Lab 3-3, OSPF Virtual Links and Area Summarization

Configuring OSPF network management 39 Enabling message logging 39 Enabling the advertisement and reception of opaque LSAs 40 Configuring OSPF to

Building the Routing Table. Introducing the Routing Table Directly Connected Networks Static Routing Dynamic Routing Routing Table Principles

Link State Routing. Link State Packets. Link State Protocol. Link State Protocols Basic ideas Problems and pitfalls

Easy Virtual Network Configuration Example

Chapter 1 Lab 1-1, Single-Area OSPF Link Costs and Interface Priorities

Configuring OSPF. Cisco s OSPF Implementation

Chapter 2 Lab 2-1, EIGRP Configuration, Bandwidth, and Adjacencies

IPv6 Routing Protocols

OSPF. OSPF processs can be enabled on 2 levels

Configuration and Management of Networks

Lab 5-3 Redistribution Between EIGRP and IS-IS

Chapter 4 Lab 4-2, Controlling Routing Updates. Topology. Objectives. CCNPv7 ROUTE

Chapter 8 Configuring OSPF

A. The maximum number of times a double colon can replace a 16-bit segment that consists of all zeroes is two.

Chapter 3 Lab 3-1, Single-Area OSPF Link Costs and Interface Priorities

Routing Protocol. RIPv1

OSPF. Unless otherwise noted, OSPF refers to OSPFv2 throughout this document.

9.1. Routing Protocols

CIS 83 LAB 2 - Single Area OSPF Rich Simms September 12, Objective. Scenario. Topology

Case Study 2: Frame Relay and OSPF Solution

IPv6 Routing Protocols

OSPF Protocol Overview on page 187. OSPF Standards on page 188. OSPF Area Terminology on page 188. OSPF Routing Algorithm on page 190

Configuring OSPF with CLI

Final exam study Guide

DD2490 p Link-state routing and OSPF. Olof Hagsand KTH/CSC

Chapter 15 OSPF Commands

Which of the following describe the process identifier that is used to run OSPF on a router? (Choose two)

scope scope {global vrf vrf-name} no scope {global vrf vrf-name} Syntax Description

2016 Braindump2go Valid Cisco Exam Preparation Materials:

Advanced Networking: Routing & Switching 2 Chapter 7

Implementing Cisco IP Routing (ROUTE)

exam. Number: Passing Score: 800 Time Limit: 120 min File Version: Cisco

cisco. Number: Passing Score: 800 Time Limit: 120 min.

OSPF, MTU and LSA Packing Tech Note

Command Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents

Link State Routing. Link State Packets. Link State Protocol. Link State Protocols Basic ideas Problems and pitfalls

Introduction to OSPF

Lab Configuring IPv6 Static and Default Routes (Solution)

Transcription:

Routing IPV6 Copyright Cisco Academy Yannis Xydas

Quick review of IPv6 Static Routing Single Area OSPF Multi-Area OSPF Access Control Lists

Quick Review of IPv6 Addresses

Focus on: Global Unicast (GUA) and Link-Local Unicast IPv6 Addressing Unicast Multicast Anycast Assigned FF00::/8 Solicited Node FF02::1:FF00:0000/104 Global Unicast Link-Local Loopback Unspecified Unique Local Embedded IPv4 2000::/3 3FFF::/3 FE80::/10 FEBF::/10 ::1/12 8 ::/128 FC00::/7 FDFF::/7 ::/80

Global Unicast Address (GUA) 001 n bits m bits 128-n-m bits Global Routing Prefix Subnet ID Interface ID Range: 2000::/3 0010 0000 0000 0000 :: to 3FFF::/3 0011 1111 1111 1111 :: Global unicast addresses are similar to IPv4 addresses Equivalent to IPv4 public addresses Except under very specific circumstances, all end users will have a global unicast address Routable Unique Terminology: Prefix equivalent to network address Prefix length equivalent to subnet mask in IPv4 Interface ID equivalent to host portion

Global Unicast Address (GUA) IPv4 Unicast Address Network portion /? Subnet portion Host portion 32 bits IPv6 Global Unicast Address /48 /64 16-bit Fixed Global Routing Prefix Subnet ID Interface ID 128 bits 16-bit Subnet ID = 65,536 subnets 64-bit Interface ID = 18 quintillion (18,446,744,073,709,551,616) devices/subnet

/64 Global Unicast Addresses and the 3-1-4 rule /48 /64 16 bits 16 bits 16 bits 16 bits 16 bits 16 bits 16 bits 16 bits Global Routing Prefix Subnet ID Interface ID 3 1 4 2001 : 0DB8 : AAAA : 1111 : 0000 : 0000 : 0000 : 0100 3 + 1 = 4 (/64) : 4 2001:0DB8:AAAA:1111:0000:0000:0000:0100/64 2001:0DB8:AAAA:1111::100/64

Just increment by 1 in Hexadecimal: 2001:0DB8:AAAA:0000::/64 2001:0DB8:AAAA:0001::/64 2001:0DB8:AAAA:0002::/64 2001:0DB8:AAAA:000A::/64 Valid abbreviation is to remove the 3 leading 0 s from the first shown quartet 2001:0DB8:AAAA:1::/64

Link-Local Unicast 10 bits Remaining 54 bits 64 /64 bits 1111 1110 10xx xxxx FE80::/10 Interface ID EUI-64, Random or Manual Configuration Range: FE80::/10 1111 1110 1000 0000 :: to FEBF::/10 1111 1110 1011 1111 :: Used to communicate with other devices on the link (network) NOT routable off the link An IPv6 device must have at least a link-local address Used by: Hosts to communicate to the IPv6 network before it has a global unicast address Used as the default gateway address by hosts Adjacent routers to exchange routing updates

ipv6 enable command Router(config)# interface fastethernet 0/1 Router(config-if)# ipv6 enable Router(config-if)# end Router# show ipv6 interface brief FastEthernet0/1 FE80::20C:30FF:FE10:92E1 Router# [up/up] Link-local unicast address only Link-local addresses are automatically created whenever a global unicast address is configured The ipv6 enable command will: Create a link-local address when there is no global unicast address Maintain the link-local address even when the global unicast address is removed

Ping Link-local Address Global Unicast: 2001:0DB8:CAFE:1::1/64 R1# ping fe80::2 Output Interface: ser 0/0/0 % Invalid interface. Use full interface name without spaces (e.g. Serial0/1) Output Interface: serial0/0/0 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to FE80::2, timeout is 2 secs:!!!!! FE80::1 Fa0/0 R1 FE80::1 Ser 0/0/0 :1 FE80::2 Ser 0/0/0 :2 2001:0DB8:CAFE:A001::/64 Must include exit-interface R2

IPv6 Static Routes

Router(config)# ipv6 unicast-routing A router s interfaces can be enabled (configured with an IPv6 address) for IPv6 like any other device on the network For the router to act as an IPv6 router it must be enabled with the ipv6-unicast routing command This enables the router to: Send ICMPv6 Router Advertisement messages Enable the forwarding of IPv6 packets Configure static routing and participate in IPv6 routing protocols (EIGRP for IPv6, OSPFv3) Similar to old ip routing command for IPv4 which is enabled by default

Router(config)#ipv6 route ipv6-prefix/ipv6-prefix-length {ipv6-address exit-interface} Static Route with a next hop IPv6 address: Router(config)# ipv6 route 2001:db8:acad:2::/64 2001:db8:feed::1 Prefix Prefixlength Next-hop Note: Static routes using only an exit interface on point-to-point networks are common, however the use of the default CEF forwarding mechanism makes this practice unnecessary

Static Route with an exit interface: R1(config)# ipv6 route 2001:db8:acad:2::/64 g0/0 A fully specified static route includes an exit interface and the next hop address: R1(config)# ipv6 route 2001:db8:acad:2::/64 g0/0 2001:db8:feed::1 A floating static route, administrative distance greater than primary route: R1(config)# ipv6 route 2001:db8:acad:2::/64 2001:db8:feed::1 R1(config)# ipv6 route 2001:db8:acad:2::/64 2001:db8:feed::2 5 A summary route: R1(config)# ipv6 route 2001:db8:acad::/48 2001:db8:feed::1

R1(config)# interface gigabitethernet 0/0 R1(config-if)# ipv6 address 2001:db8:acad:1::1/64 R1(config-if)# ipv6 address fe80::1 link-local R1(config-if)# exit EUI-64 Interface ID is used by default R1(config)# interface serial 0/0/0 R1(config-if)# ipv6 address 2001:db8:acad:4::1/64 R1(config-if)# ipv6 address fe80::1 link-local R1(config-if)# exit

R1# show ipv6 interface brief GigabitEthernet0/0 [up/up] FE80::1 2001:DB8:ACAD:1::1 Serial0/0/0 [up/up] FE80::1 2001:DB8:ACAD:4::1 R1# Same Link-local address on all interfaces

R1#show ipv6 route <output omitted> C 2001:DB8:ACAD:1::/64 [0/0] via GigabitEthernet0/0, directly connected L 2001:DB8:ACAD:1::1/128 [0/0] via GigabitEthernet0/0, receive C 2001:DB8:ACAD:4::/64 [0/0] via Serial0/0/0, directly connected L 2001:DB8:ACAD:4::1/128 [0/0] via Serial0/0/0, receive L FF00::/8 [0/0] via Null0, receive R1# Connected routes occur for any interface with an IPv6 unicast address that has more than link local scope Link-local addresses are not included in the routing table because they are not routable off the link

R1#show ipv6 route <output omitted> C 2001:DB8:ACAD:1::/64 [0/0] via GigabitEthernet0/0, directly connected L 2001:DB8:ACAD:1::1/128 [0/0] via GigabitEthernet0/0, receive C 2001:DB8:ACAD:4::/64 [0/0] via Serial0/0/0, directly connected L 2001:DB8:ACAD:4::1/128 [0/0] via Serial0/0/0, receive L FF00::/8 [0/0] via Null0, receive R1# Multicast packets Not routed The local routes are all /128 routes (host routes) for the router s IPv6 unicast address Allow the router to more efficiently process packets directed to the router itself rather than for packet forwarding

R1(config)#ipv6 route 2001:DB8:ACAD:2::/64 2001:DB8:ACAD:4::2 R1(config)#ipv6 route 2001:DB8:ACAD:5::/64 2001:DB8:ACAD:4::2 R1(config)#ipv6 route 2001:DB8:ACAD:3::/64 2001:DB8:ACAD:4::2 R1(config)#

R1#show ipv6 route static IPv6 Routing Table - default - 8 entries Codes: C - Connected, L - Local, S - Static, <Output omitted> S 2001:DB8:ACAD:2::/64 [1/0] via 2001:DB8:ACAD:4::2 S 2001:DB8:ACAD:3::/64 [1/0] via 2001:DB8:ACAD:4::2 S 2001:DB8:ACAD:5::/64 [1/0] via 2001:DB8:ACAD:4::2 R1#

R1(config)# ipv6 route ::/0 2001:db8:acad:4::2 R1(config)# end R1# show ipv6 route S ::/0 [1/0] via 2001:DB8:ACAD:4::2

2001:DB8:ACAD:1::/64 G0/0 :1 FE80::1 R1 2001:DB8:ACAD:4::/64 S0/0/0 S0/0/1 G0/0 :1 R2 :1 :1 FE80::1 FE80::2 FE80::2 2001:DB8:ACAD:2::/64 FE80::2 can be on any link! Where are you? IPv6 link-local addresses R1(config)# ipv6 route 2001:db8:acad:2::/64 fe80::2 % Interface has to be specified for a link-local nexthop R1(config)# ipv6 route 2001:db8:acad:2::/64 s0/0/0 fe80::2 R1(config)# end R1# show ipv6 route S 2001:DB8:ACAD:2::/64 [1/0] via FE80::2, Serial0/0/0

OSPFv3 Single Area and Multi-Area

OSPFv2 OSPFv2 IPv4 OSPfv2 OSPFv2 IPv4 Neighbor Table LSDB Routing Table Neighbor Table LSDB Routing Table IPv4 Network R1 IPv6 Network R2 OSPFv3 OSPFv3 IPv6 OSPFv3 OSPFv3 IPv6 Neighbor Table LSDB Routing Table Neighbor Table LSDB Routing Table

OSPFv2 Advertises IPv4 networks IPv6 prefixes Link-State Yes Yes Routing Algorithm SPF SPF Metric Cost Cost OSPFv3 Source address IPv4 source address IPv6 link-local address Destination address 224.0.0.5 All-OSPF-routers 224.0.0.6 All-DR-routers IPv4 unicast address Authentication Plain text and MD5* IPSec Areas Yes Yes Packet types FF02::5 All-OSPFv3-routers FF02::6 All-DR-routers IPv6 link-local address Same Hello, DBD, LSR, LSU and LSAck packets Neighbor discovery Yes, Hello Packets Yes, Hello Packets DR and BDR Multi-access networks Multi-access networks Router ID 32-bit router ID 32-bit router ID

OSPFv3 OSPFv3 IPv6 OSPFv3 OSPFv3 IPv6 Neighbor Table LSDB Routing Table Neighbor Table LSDB Routing Table IPv6 Network R1 R2 Source Address: IPv6 link-local address Destination Address: FF02::5, FF02::6 or IPv6 link local address

2001:DB8:CAFE:A001::/64 Link-local addresses FE80::1 R1 G0/0 :1 S0/0/0 :1 2001:DB8:CAFE:1::/64 2001:DB8:CAFE:2::/64 Link-local addresses G0/0 FE80::2 :1 S0/0/1 :1 S0/0/0 :2 R2 S0/1/0 :1 S0/0/1 :1 S0/0/0 :2 2001:DB8:CAFE:A003::/64 2001:DB8:FEED:1::/64 S0/0/1 :2 R3 S0/0/1 :2 G0/0 :1 2001:DB8:CAFE:3::/64 ISP 2001:DB8:CAFE:A002::/64 Link-local addresses FE80::3 Internet Note: All addresses have been configured

R1(config)#ipv6 router ospf 10 R1(config-rtr)# *Mar 29 11:21:53.739: %OSPFv3-4-NORTRID: Process OSPFv3-1-IPv6 could not pick a router-id, please configure manually R1(config-rtr)# R1(config-rtr)#router-id 1.1.1.1 32-bit Router ID similar to OSPFv2 R1(config-rtr)#auto-cost reference-bandwidth 1000 % OSPFv3-1-IPv6: Reference bandwidth is changed. Please ensure reference bandwidth is consistent across all routers. R1(config-rtr)#end R1# There is no no shutdown Must modify reference bandwidth because we have gigabit Ethernet links, otherwise Fastethernet and faster would have the same cost

Interface Type Gigabit Ethernet 1 Gbps Fast Ethernet 100 Mbps Ethernet 10 Mbps Serial 1.544 Mbps Serial 128 kbps Serial 64 kbps Reference Bandwidth in bps Default Bandwidth in bps Cost 1,000,000,000 1,000,000,000 1 1,000,000,000 100,000,000 10 1,000,000,000 10,000,000 100 1,000,000,000 1,544,000 647 1,000,000,000 128,000 7812 1,000,000,000 64,000 15625

R1(config)# interface GigabitEthernet 0/0 R1(config-if)# ipv6 ospf 10 area 0 No network commands needed! R1(config-if)# exit R1(config)#interface Serial0/0/0 R1(config-if)# ipv6 ospf 10 area 0 R1(config-if)# exit R1(config)#interface Serial0/0/1 R1(config-if)# ipv6 ospf 10 area 0 R1(config-if)# end R1# R1#show ipv6 ospf interfaces brief Interface PID Area Intf ID Cost State Nbrs F/C Se0/0/1 10 0 7 15625 P2P 0/0 Se0/0/0 10 0 6 647 P2P 0/0 Gi0/0 10 0 3 1 WAIT 0/0 R1#

R2(config)# ipv6 router ospf 10 R2(config-rtr)# router-id 2.2.2.2 R2(config-rtr)# auto-cost reference-bandwidth 1000 R2(config-rtr)# exit R2(config)# interface GigabitEthernet 0/0 R2(config-if)# ipv6 ospf 10 area 0 R2(config-if)# exit R2(config)# interface Serial0/0/0 R2(config-if)# ipv6 ospf 10 area 0 R2(config-if)# exit R2(config)# interface Serial0/0/1 R2(config-if)# ipv6 ospf 10 area 0 R2(config-if)#

R1#show ipv6 ospf neighbor OSPFv3 Router with ID (1.1.1.1) (Process ID 10) Neighbor ID Pri State Dead Time Interface ID Interface 3.3.3.3 0 FULL/ - 00:00:39 6 Serial0/0/1 2.2.2.2 0 FULL/ - 00:00:36 6 Serial0/0/0 R1# Neighbors 32-bit Router IDs

R1 #show ipv6 protocols IPv6 Routing Protocol is "connected" IPv6 Routing Protocol is "ND" IPv6 Routing Protocol is "ospf 10" Routing protocol and Process ID Router ID 1.1.1.1 OSPFv3 Router ID Number of areas: 1 normal, 0 stub, 0 nssa Interfaces (Area 0): Serial0/0/1 Serial0/0/0 GigabitEthernet0/0 Redistribution: None R1# Interfaces enabled for OSPFv3

R1# show ipv6 route ospf O 2001:DB8:CAFE:2::/64 [110/657] via FE80::2, Serial0/0/0 O 2001:DB8:CAFE:3::/64 [110/1304] via FE80::2, Serial0/0/0 O 2001:DB8:CAFE:A002::/64 [110/1294] via FE80::2, Serial0/0/0 R1# Link-local addresses are used as next hop addresses

Hello and Dead Timers remain the same R1(config)# interface serial 0/0/0 R1(config-if)# ipv6 ospf hello-interval 5 R1(config-if)# ipv6 ospf dead-interval eigrp 20 R1(config-if)# *Apr 10 15:03:51.175: %OSPFv3-5-ADJCHG: Process 10, Nbr 2.2.2.2 on Serial0/0/0 from FULL to DOWN, Neighbor Down: Dead timer expired R1(config-if)# Just add v6! Changing interface priority (DR/BDR) and cost R1(config)# interface serial 0/0/0 R1(config-if)# ipv6 ospf priority 10 R1(config-if)# ipv6 ospf cost 65

2001:DB8:CAFE::/48 R2 S0/1/0 :1 2001:DB8:FEED:1::/64 Default Route S0/0/1 :2 ISP Internet R1 R3 R2(config)# ipv6 route ::/0 2001:DB8:FEED:1::2 R2(config)# ipv6 router ospf 10 R2(config-rtr)# default-information originate R1# show ipv6 route OE2 ::/0 [110/1], tag 10 via FE80::2, Serial0/0/0

Multi-Area OSPFv3

Advantages of Multi-Area OSPF We don t have time to cover multi-area OSPF except for the commands associated with OSPFv3 But here is a quick overview of the concepts

I m tired of listening to X and I need coffee R1 R2 My routing table is too big and I am running low on memory I m receiving too many LSAs My SPF algorithm is running too often for me to route properly

I still need coffee Area 1 Area 0 Area 51 R1 R2 My routing table is smaller as it does not have external routes (default). I do not need to rerun my SPF algorithm if there is a change in another area. I m now only receiving LSAs from area 0 and area 1 I now only need to run the SPF algorithm when there is a change in area 0 or area 51

Area 1 Area 0 Area 51 R1 R2 Only R2 and routers in area 51 exchange router LSAs and run the SPF algorithm Link fails

2001:DB8:CAFE:A001::/64 2001:DB8:CAFE:2::/64 G0/0 :1 FE80::2 S0/0/0 :2 R2 S0/0/1 :1 Area 0 2001:DB8:CAFE:A002::/64 S0/0/0 :1 R1 G0/0 :1 FE80::1 2001:DB8:CAFE:1::/64 FE80::3 S0/0/1 :2 R3 G0/0 :1 Area 1 Area 51 2001:DB8:CAFE:3::/64

2001:DB8:CAFE:A001::/64 2001:DB8:CAFE:2::/64 G0/0 :1 FE80::2 S0/0/0 :2 R2(config)# ipv6 router ospf 10 R2(config-rtr)# S0/0/0 router-id 2.2.2.2 S0/0/1 R2(config-rtr)# exit :1 :2 R2(config)# interface R1 FE80::1 GigabitEthernet FE80::3 0/0 R3 R2(config-if)# G0/0 ipv6 ospf 10 area 0 No changes G0/0 to R2 R2(config-if)# :1 exit All interfaces :1 in Area 0 R2(config)# interface Serial0/0/0 R2(config-if)# 2001:DB8:CAFE:1::/64 ipv6 ospf 10 area 2001:DB8:CAFE:3::/64 0 R2(config-if)# exit R2(config)# interface Serial0/0/1 R2(config-if)# ipv6 ospf 10 area 0 R2 S0/0/1 :1 Area 0 2001:DB8:CAFE:A002::/64 Area 1 Area 51

R1(config)# ipv6 router ospf 10 2001:DB8:CAFE:2::/64 R1(config-rtr)# router-id 1.1.1.1 Area 0 R1(config-rtr)# exit G0/0 An ABR (Area Border R1(config)# interface Serial :1 0/0/0 FE80::2 Router) has interfaces in R1(config-if)# ipv6 ospf 10 area 0 R1(config-if)# exit S0/0/0 R2 more than one area S0/0/1 R1(config)# 2001:DB8:CAFE:A001::/64 interface GigabitEthernet :2 0/0 :1 2001:DB8:CAFE:A002::/64 R1(config-if)# ipv6 ospf 10 area 1 R1(config-if)# S0/0/0 :1 R1 G0/0 :1 FE80::1 2001:DB8:CAFE:1::/64 Area 0 FE80::3 S0/0/1 :2 R3 G0/0 :1 Area 1 Area 51 2001:DB8:CAFE:3::/64

Configuring OSPFv3 Configuring OSPFv3

The protocol implementation for IPv6 includes these characteristics: Based on OSPF version 2 (OSPFv2), with enhancements Distributes IPv6 prefixes Runs directly over IPv6 Operates as ships in the night with OSPFv2 This implementation adds these IPv6-specific attributes: 128-bit addresses Link-local address Multiple addresses and instances per interface Authentication (now uses IPsec) OSPFv3 runs over a link rather than a subnet

Open Shortest Path First version 3 (OSPFv3 RFC 5340) is a link state routing protocol for IPv6. It s based on OSPFv2. The following remained the same as OSPFv2: Packet types (Hello, DBD, LSR, LSU, LSA) Mechanisms for neighbor discovery and adjacency formation LSA flooding and aging (but there are now 3 types of scopes) SPF calculations DR election procedure Multi-area support (including NSSA) Multiple topologies support (NBMA, point-to-multipoint, point-to-point and broadcast) Router-ID is still a 32-bit address

Unlike OSPFv2, OSPFv3: OSPFv3 runs over a link and is configured on an interface. Uses the term link similarly to IPv4 OSPF's subnet or network. IPv6 link-local addresses are required. There are now three separate LSA flooding scopes: Link-local scope, Area scope, and AS scope. Multiple OSPFv3 instances are supported on one interface. Multicast addresses have changed. Security is improved.

OSPFv3 runs over a link as opposed to IPv4 over an IP subnet. IPv6 uses the term link which replaces the terms network and subnet used in the IPv4 OSPF. The network statement in the router subcommand mode of OSPFv2 is replaced by the ipv6 ospf process-id area area-id interface command.

OSPFv3 uses IPv6 link-local addresses to identify the OSPFv3 adjacency neighbors. Therefore, when configuring the ipv6 ospf neighbor command, the IPv6 address used must be the link-local address of the neighbor.

Separate autonomous systems, each running OSPF, use a common link. A single link could belong to multiple areas. OSPFv3 uses a new field, called the Instance ID, to allow multiple instances per link. To have two instances talk to each other, they must share the same instance ID. By default, the instance ID is set to 0.

FF02::5 Represents all OSPFv3 routers on the link-local scope, equivalent to 224.0.0.5 in OSPFv2. FF02::6 Represents all designated routers (DRs) on the link-local scope, equivalent to 224.0.0.6 in OSPFv2.

IPv6 addresses are not present in the OSPF packet header (part of payload information). Router LSAs and network LSAs do not carry IPv6 addresses. The router ID, area ID, and link-state ID remain at 32 bits. The DR and BDR are identified by their router ID and not by their IP address.

OSPFv3 uses IPv6 IPsec AH and ESP extension headers instead of the variety of mechanisms defined in OSPFv2. Authentication is no longer part of OSPF. It is now the job of IPv6 and IPsec to make sure that the right level of authentication is in use.

Router LSAs contain only 32-bit IDs. Two OSPFv3 LSAs that are not available in OSPFv2 include: Link LSAs Intra-area prefix LSAs OSPFv3 Type 3 and 9 LSAs carry all IPv6 prefix information.

OSPFv2 and OSPFv3 commands are similar. In most cases, you simply either prefix or replace ip in the OSPF command with ipv6. ipv6 address = ip address show ipv6 route = show ip route

1. Complete the OSPF network strategy and planning for your IPv6 network. (E.g., are multiple areas required?). 2. Enable IPv6 unicast routing using the ipv6 unicast-routing command. 3. (Optional) Enter OSPFv3 router configuration mode and configure the router ID. 4. Enable IPv6 on the interface using the ipv6 ospf area command. 5. (Optional) Configure OSPFv3 interface specific settings, including area, router priority, and OSPFv3 path cost. 6. (Optional) Configure routing specifics from router configuration mode, including router priority, route summarization, stub features, and so on.

Configure the OSPFv3 routing process parameters. Router(config)# ipv6 router ospf process-id The process-id parameter identifies a unique OSPFv3 process local to the router and can be any positive integer. R1(config)# ipv6 router ospf 10 R1(config-rtr)#? area OSPF area parameters auto-cost Calculate OSPF interface cost according to bandwidth default Set a command to its defaults default-information Distribution of default information default-metric Set metric of redistributed routes discard-route Enable or disable discard-route installation distance Administrative distance distribute-list Filter networks in routing updates ignore Do not complain about specific event log-adjacency-changes Log changes in adjacency state maximum-paths Forward packets over multiple paths passive-interface Suppress routing updates on an interface process-min-time Percentage of quantum to be used before releasing CPU redistribute Redistribute IPv6 prefixes from another routing protocol router-id router-id for this OSPF process summary-prefix Configure IPv6 summary prefix timers Adjust routing timers

Define the router ID for OSPFv3. Router(config-rtr)# router-id {ip-address} The ip-address a number in a IPv4 address format. The router ID must be unique on each router. The router ID selection process is the same as for OSPFv2. 1. Router ID is used if explicitly configured. 2. Otherwise, the highest loopback address is used. 3. Otherwise, the highest active IPv4 address. R1(config-rtr)# router-id? A.B.C.D OSPF router-id in IP address format R1(config-rtr)# router-id 10.10.10.1 R1(config-rtr)#

Enable an OSPFv3 instance on an interface. Router(config-if)# ipv6 ospf process-id area area-id [instance instance-id] Parameter Description process-id Internal identifier for the OSPF process that is locally assigned and can be any positive integer. area-id Specifies the area that is to be associated with the OSPF interface. instance-id (Optional) Used to control selection of other routers as neighboring routers. Router becomes neighbors only with routers that have the same instance ID.

R1(config)# int fa0/0 R1(config-if)# ipv6 ospf? <1-65535> Process ID authentication Enable authentication cost Interface cost database-filter Filter OSPF LSA during synchronization and flooding dead-interval Interval after which a neighbor is declared dead demand-circuit OSPF demand circuit flood-reduction OSPF Flood Reduction hello-interval Time between HELLO packets mtu-ignore Ignores the MTU in DBD packets neighbor OSPF neighbor network Network type priority Router priority retransmit-interval Time between retransmitting lost link state advertisements transmit-delay Link state transmit delay R1(config-if)# ipv6 ospf 10? area Set the OSPF area ID R1(config-if)# ipv6 ospf 10 area 0? instance Set the OSPF instance <cr> R1(config-if)# ipv6 ospf 10 area 0 R1(config-if)#

Specify the cost of sending a packet on an interface. Router(config-if)# ipv6 ospf cost interface-cost The interface-cost is a range from 1 to 65535. The default cost is the same as IPv4. R1(config)# int fa0/0 R1(config-if)# ipv6 ospf cost? <1-65535> Cost R1(config-if)# ipv6 ospf cost 1 R1(config-if)#

Change the OSPF priority used in DR elections. Router(config-if)# ipv6 ospf priority number-value The number-value is a range from 0 to 255 with the default of 1. A router with a router priority set to 0 is ineligible to become the DR or BDR. The router with the higher router priority has precedence in an election. If case of a tie, the router with the higher router ID has precedence. R1(config)# int fa0/0 R1(config-if)# ipv6 ospf priority? <0-255> Priority R1(config-if)# ipv6 ospf priority 10 R1(config-if)#

Define an area as a stub or totally-stub area. Router(config-rtr)# area area-id stub [no-summary] The command functions the same as it does for IPv4. The area-id identifies the interface as being in a stub area. The no-summary parameter is configured on the ABR only and indicates that the area is a totally stub area. R1(config)# ipv6 router ospf 10 R1(config-rtr)# area 10? authentication Enable authentication default-cost Set the summary default-cost of a NSSA/stub area nssa Specify a NSSA area range Summarize routes matching address/mask (border routers only) stub Specify a stub area virtual-link Define a virtual link and its parameters R1(config-rtr)# area 10 stub no-summary R1(config-rtr)#

Summarizes routes at an area boundary. Router(config-rtr)# area area-id range ipv6-prefix /prefix-length [advertise not-advertise] [cost cost] The command functions the same as it does for IPv4. Parameter area-id ipv6-prefix/prefix-length advertise not-advertise cost Description Specifies the area for which routes are to be summarized. The summary IPv6 address and prefix length. (Optional) Generates a Type 3 summary LSA. (Optional) Suppresses Type 3 summary LSA to hide the network. (Optional) Value from 0 to 16777215 that defines the metric or cost for this summary route

R1# show ipv6 route R1# conf t R1(config)# ipv6 router ospf 1 R1(config-router)# area 1 range 2001:0DB8::/48 R1(config-router)# end R1# R1# show ipv6 route Note: The cost of the summarized routes is that of the highest cost route being summarized.

Trigger a new SPF recalculation and repopulation of the RIB. Router# clear ipv6 ospf [process-id] {process force-spf redistribution counters [neighbor [neighbor-interface neighbor-id]]} Command is useful if OSPF settings have been altered. R1# clear ipv6 ospf 10? counters OSPF counters force-spf Run SPF for OSPF process process Reset OSPF process redistribution Clear OSPF route redistribution R1# clear ipv6 ospf 10 counters R1# R1# clear ipv6 ospf 10 process Reset OSPF process? [no]: y R1#

Command Description show ipv6 ospf [process-id] [area-id] neighbor [interface-type interfacenumber] [neighbor-id] [detail] Displays OSPFv3 neighbor information. show ipv6 ospf [process-id] [area-id] interface [type number] [brief] Displays OSPFv3 interface information. show ipv6 ospf [process-id] [area-id] Displays general information about the IPv6 OSPF processes.

Area 0 Area 1 2001:410:FFFF:1::1/64 3FFE:B00:FFFF:1::2/64 3FFE:B00:FFFF:1::1/64 S0/0/1 R1 S0/0/2 S0/0/3 R2 R1(config)# ipv6 router ospf 100 R1(config-rtr)# router-id 10.1.1.3 R1(config-rtr)# area 0 range 2001:410::/32 R1(config-rtr)# exit R1(config)# interface Serial0/0/1 R1(config-if)# ipv6 address 2001:410:FFFF:1::1/64 R1(config-if)# ipv6 ospf 100 area 0 R1(config-if)# exit R1(config)# interface Serial0/0/2 R1(config-if)# ipv6 address 3FFE:B00:FFFF:1::2/64 R1(config-if)# ipv6 ospf 100 area 1 R1(config-if)# R2(config)# ipv6 router ospf 100 R2(config-rtr)# router-id 10.1.1.4 R2(config-rtr)# exit R2(config)# interface Serial0/0/3 R2(config-if)# ipv6 address 3FFE:B00:FFFF:1::1/64 R2(config-if)# ipv6 ospf 100 area 1 R2(config-if)#

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R1(config)# ipv6 unicast-routing R1(config)# R1(config)# interface s0/1/0 R1(config-if)# ipv6 ospf 1 area 0 R1(config-if)# *Aug 14 06:24:23.040: %OSPFv3-4-NORTRID: OSPFv3 process 1 could not pick a routerid, please configure manually R1(config-if)# exit R1(config)# ipv6 router ospf 1 R1(config-rtr)# router-id 0.0.0.1 R1(config-rtr)#exit R1(config)# interface s0/1/0 R1(config-if)# ipv6 ospf 1 area 0 R1(config-if)# exit R1(config)# interface fa0/0 R1(config-if)# ipv6 ospf 1 area 13 R1(config-if)# In this multi-area example, all four routers will be configured to support OSPFv3.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R2(config)# ipv6 unicast-routing R2(config)# R2(config)# ipv6 router ospf 1 R2(config-rtr)# router-id 0.0.0.2 R2(config-rtr)# exit R2(config)# R2(config)# interface s0/1/0 R2(config-if)# ipv6 ospf 1 area 0 *Aug 14 06:15:14.836: %OSPFv3-5-ADJCHG: Process 1, Nbr 0.0.0.1 on Serial0/1/0 from LOADING to FULL, Loading Done R2(config-if)# Notice how R2 immediately creates a neighbor adjacency with R1.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R2# show ipv6 ospf neighbor Neighbor ID Pri State Dead Time Interface ID Interface 0.0.0.1 1 FULL/ - 00.00.33 6 Serial0/1/0 R2# R2# show ipv6 ospf interface Serial0/1/0 is up, line protocol is up Link Local Address FE80::219:55FF:FE92:B212, Interface ID 6 Area 0, Process ID 1, Instance ID 0, Router ID 0.0.0.2 Network Type POINT_TO_POINT, Cost: 64 Transmit Delay is 1 sec, State POINT_TO_POINT, Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:09 Index 1/1/1, flood queue length 0 Next 0x0(0)/0x0(0)/0x0(0) Last flood scan length is 1, maximum is 2 Last flood scan time is 0 msec, maximum is 0 msec Neighbor Count is 1, Adjacent neighbor count is 1 Adjacent with neighbor 0.0.0.1 Suppress hello for 0 neighbor(s) R2(config-if)#

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R4(config)# ipv6 unicast-routing R4(config)# ipv6 router ospf 1 R4(config-rtr)# router-id 0.0.0.4 R4(config-rtr)# interface fa0/0 R4(config-if)# ipv6 ospf 1 area 24 *Aug 14 06:34:36.992: %OSPFv3-5-ADJCHG: Process 1, Nbr 0.0.0.2 on FastEthernet0/0 from LOADING to FULL, Loading Done R4(config-if)# end R4# R4 is configured and immediately forms an adjacency with R2.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R4# show ipv6 route ospf <output omitted> OI 12:12::/64 [110/65] via FE80::219:55FF:FE92:B212, FastEthernet0/0 OI 2001:1::/64 [110/65] via FE80::219:55FF:FE92:B212, FastEthernet0/0 R4# The routing table of R4 displays the Area 0 route 12:12::/64. The 2001:1::/64 route is a global unicast address configured on R1.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R3(config)# ipv6 unicast-routing R3(config)# ipv6 router ospf 1 R3(config)# *Aug 14 06:24:09.976: %OSPFv3-4-NORTRID: OSPFv3 process 1 could not pick a router-id, please configure manually R3(config-rtr)# router-id 0.0.0.3 R3(config-rtr)# exit R3(config)# interface fa0/0 R3(config-if)# ipv6 ospf 1 area 13 R3(config-if)# *Aug 14 06:40:43.804: %OSPFv3-5-ADJCHG: Process 1, Nbr 0.0.0.1 on FastEthernet0/0 from LOADING to FULL, Loading Done R3(config-if)# end R3# Finally R3 is configured and immediately forms an adjacency with R1.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R3# show ipv6 route ospf <output omitted> OI 12:12::/64 [110/65] via FE80::219:56FF:FE2C:9F60, FastEthernet0/0 OI 24:24::/64 [110/66] via FE80::219:56FF:FE2C:9F60, FastEthernet0/0 OI 2001:1::/64 [110/129] via FE80::219:56FF:FE2C:9F60, FastEthernet0/0 R3# R3# ping 24:24::4 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 24:24::4, timeout is 2 seconds:!!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 16/16/16 ms R3# The routing table of R3 reveals the Area 24 route and a ping verifies connectivity.

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R1(config)# ipv6 router ospf 1 R1(config-rtr)# area 13 stub no-summary R1(config-rtr)# *Aug 14 06:54:11.780: %OSPFv3-5-ADJCHG: Process 1, Nbr 0.0.0.3 on FastEthernet0/0 from FULL to DOWN, Neighbor Down: Adjacency forced to reset R1(config-rtr)# R3(config)# ipv6 router ospf 1 R3(config-rtr)# area 13 stub R3(config-rtr)# *Aug 14 06:40:17.716: %OSPFv3-5-ADJCHG: Process 1, Nbr 0.0.0.1 on FastEthernet0/0 from LOADING to FULL, Loading Done R3(config-rtr)# The reduce the size of the routing table in Area 13, R1 and R3 create a totally-stub area. Notice that the no-summary keyword is only required on the ABR (R1).

Area 13 Area 0 Area 24 13:13::3/64 13:13::1/64 12:12::1/64 12:12::2/64 24:24::1/64 24:24::4/64 Fa0/0 Fa0/0 S0/1/0 S0/1/0 Fa0/0 Fa0/0 R3 R1 R2 R4 R3# show ipv6 route ospf <output omitted> OI ::/0 [110/2] via FE80::219:56FF:FE2C:9F60, FastEthernet0/0 R3# R3# ping 24:24::4 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 24:24::4, timeout is 2 seconds:!!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 12/14/16 ms R3# Notice that the routing has been reduced to only 1 default route and connectivity has been verified.

IPv6 Access Control Lists

IPv4 ACLs Standard Numbered Named Extended Numbered Named IPv6 ACLs Named only Similar features to Extended ACLs IPv6 ACLs are very similar to IPv4 ACLs but with three significant differences 1. Applying an IPv6 ACL to an interface: ip access-group is used in IPv4 ipv6 traffic-filter is used to apply an IPv6 ACL to an IPv6 interface 2. No Wildcard Masks Prefix-lengths are used instead of wildcard masks 3. Two additional default statements (besides implicit deny any)

I know your IPv6 address but I need your MAC address permit icmp any any nd-na permit icmp any any nd-ns ICMPv6 Neighbor Solicitation message 1 I have the IPv6 address you are looking for and here is my MAC address ICMPv6 Neighbor Advertisement message Two default statements allow the router to participate in the IPv6 equivalent of ARP IPv6 uses ICMPv6 Neighbor Discovery (ND) messages to accomplish name address resolution encapsulated in IPv6 packets ARP does not use IPv4 IPv6 ACLs need to implicitly permit ND packets to be sent and received on an interface 2

2001:DB8:CAFE:30::/64 G0/0 R1 S0/0/0 IPv6 NETWORK R1(config)# ipv6 access-list NO-R3-LAN-ACCESS R1(config-ipv6-acl)# deny ipv6 2001:db8:cafe:30::/64 any R1(config-ipv6-acl)# permit ipv6 any any R1(config-ipv6-acl)# exit R1(config)# interface s0/0/0 R1(config-if)# ipv6 traffic-filter NO-R3-LAN-ACCESS in R1(config-if)# Deny all IPv6 packets from the 2001:DB8:CAFE:30::/64 coming into Serial 0/0/0 Permit all other IPv6 packets

G0/0 R1 S0/0/0 IPv6 NETWORK 2001:DB8:CAFE:11::/64 R1(config)#ipv6 access-list NO-FTP-TO-11 R1(config-ipv6-acl)#deny tcp any 2001:db8:cafe:11::/64 eq ftp R1(config-ipv6-acl)#deny tcp any 2001:db8:cafe:11::/64 eq ftp-data R1(config-ipv6-acl)#permit ipv6 any any R1(config-ipv6-acl)#exit R1(config)#interface g0/0 R1(config-if)#ipv6 traffic-filter NO-FTP-TO-11 in R1(config-if)# Deny FTP traffic from Gig0/0 to 2001:DB8:CAFE:11::/64

Quick review of IPv6 IPv6 Static Routes OSPFv3 Multi-Area OSPFv3 IPv6 Access Control Lists

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback