Copyright © 2006 Juniper Networks

Slides:



Advertisements
Similar presentations
1 IPv6 and IPv4 Interoperation and Transition Tony Hain co-chair IETF ngtrans WG
Advertisements

IPv4 - IPv6 Integration and Coexistence Strategies Warakorn Sae-Tang Network Specialist Professional Service Department A Subsidiary.
TCP/IP Protocol Suite 1 Chapter 27 Upon completion you will be able to: Next Generation: IPv6 and ICMPv6 Understand the shortcomings of IPv4 Know the IPv6.
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Implementing IP Addressing Services Accessing the WAN – Chapter 7.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Implementing IP Addressing Services IPv6.
IPv6 Victor T. Norman.
Project by: Palak Baid (pb2358) Gaurav Pandey (gip2103) Guided by: Jong Yul Kim.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Network Address Translation for IPv4  Connecting.
KOM 15032: Arsitektur Jaringan Terkini Bab 2. Pengalamatan IPv6.
© 2008 National Engineers Training Services. All rights reserved. IPv6- End User Perspective Fakhar Mirza CCNA, CCSP, CCIE Head of Technical, NETS.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Lecture15: Network Address Translation for IPv4 Connecting Networks.
1 Teredo - Tunneling IPv6 through NATs Date: Speaker: Quincy Wu National Chiao Tung University.
IPv4 & IPv6 Coexistence & Migration Joe Zhao SW2 Great China R&D Center ZyXEL Communications, Inc.
Enabling IPv6 in Corporate Intranet Networks
17/10/031 Summary Peer to peer applications and IPv6 Microsoft Three-Degrees IPv6 transition mechanisms used by Three- Degrees: 6to4 Teredo.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Octavio Medina ENSTB / IRISA DSTM Dual Stack Transition Mechanism.
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
Page 1 Transition To The New Internet IBC Global Conferences Ltd 22nd - 23rd June 2000, Millennium Britannia Hotel, London.
An Overview of IPv6 Transition/Co-existence Technologies Fernando Gont UTN/FRH LACNOG 2010 Sao Paulo, Brazil, October 19-22, 2010.
Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn
Lecture Week 7 Implementing IP Addressing Services.
IPv4/IPv6 Translation: Framework Li, Bao, and Baker.
資 管 Lee Lesson 11 Coexistence and Migration. 資 管 Lee Lesson Objectives Coexistence and migration overview Coexistence mechanisms ◦ Dual Stack ◦ Tunneling.
CSE 8343 Group 3 Advanced OS Inter Operability Between IPv4 and IPv6 Team Members Aman Preet Singh Rohit Singh Nipun Aggarwal Chirag Shah Eugene Novak.
Coexistence and Migration
Guide to TCP/IP Fourth Edition
Implementing IP Addressing Services Accessing the WAN – Chapter 7.
IPv6 and IPv4 Coexistence Wednesday, October 07, 2015 IPv6 and IPv4 Coexistence Motorola’s Views for Migration and Co-existence of 3GPP2 Networks to Support.
Guide to TCP/IP Fourth Edition Chapter 11: Deploying IPv6.
IPv6 transition strategies IPv6 forum OSAKA 12/19/2000 1/29.
Ch 6: IPv6 Deployment Last modified Topics 6.3 Transition Mechanisms 6.4 Dual Stack IPv4/IPv6 Environments 6.5 Tunneling.
ICMP
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 11: Network Address Translation for IPv4 Routing And Switching.
W&L Page 1 CCNA CCNA Training 3.4 Describe the technological requirements for running IPv6 in conjunction with IPv4 Jose Luis Flores /
© Janice Regan, CMPT 128, CMPT 371 Data Communications and Networking Network Layer NAT, IPv6.
Engineering Workshops Transition and Tunnels Dale Finkelson.
“IPv4 to IPv6 Transition”
6to4
IPv6 Transition Mechanisms - 6DISS Workshop - 5 March 2006 IPv6 Transition Mechanisms, their Security and Management Georgios Koutepas National Technical.
Network Layer IP Address.
Routing Loop Attack Using IPv6 Automatic Tunnels: Problem Statement and Proposed Mitigations (RFC 6324) Po-Kang Chen Oct 19,
CCNA4-1 Chapter 7-1 NAT Chapter 11 Routing and Switching (CCNA2)
Presented By:- Avinash Kumar Nitesh Kumar Yadav. OUTLINE  Introduction of IP v4.  Introduction of IP v6.  Advantages of IP v6 over IP v4.  Transition.
Single-stack IPv6-only data center deployments
IPv4 shortage and CERN 15 January 2013
WELCOME ALL.
IP: Addressing, ARP, Routing
IPv6 Overview 1. Introducing IPv6 2. IPv6 Routing
Presenter: Patrick N. zwane Advisor: Dr. Kai-Wei Kea Date: 25/01/2016
IPV6 TECHNIQUES TO Re-IMAGINE RESEARCH AND EDUCATION NETWORKS
IPv6 Deployment: Business Cases and Development Options
Network Address Translation
Instructor Materials Chapter 9: NAT for IPv4
SIIT-DC: IPv4 Service Continuity for IPv6 Data Centres
Routing and Switching Essentials v6.0
Introducing To Networking
SIIT-DC: IPv4 Service Continuity for IPv6 Data Centres
LESSON 3.3_A Networking Fundamentals Understand IPv6 Part 1.
Lecture#5 IPV6 Addressing
Implementing IP Addressing Services
Instructor Materials Chapter 9: NAT for IPv4
Implementing IP Addressing Services
Lecture#5 :IPV6 Adressing
Planning the Addressing Structure
Chapter 11: Network Address Translation for IPv4
IPv4 Addressing By, Ishivinder Singh( ) Sharan Patil ( )
Presentation transcript:

Copyright © 2006 Juniper Networks Transitioning to IPv6: Issues and Mechanisms Jeff Doyle Senior Network Architect APRICOT 2006 Perth, Australia 1 March, 2006 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

3 Types of Transition Mechanisms Dual Stacks IPv4/IPv6 coexistence on one device Tunnels For tunneling IPv6 across IPv4 clouds Later, for tunneling IPv4 across IPv6 clouds IPv6 <-> IPv6 and IPv4 <-> IPv4 Translators IPv6 <-> IPv4 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Dual Stacking In most cases, the simplest approach IPv6 now supported on most modern network platforms Routers Servers Hosts If (almost) everything is “bilingual”, transition is controlled by DNS 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Dual Stacking IPv4-only Host: Dual-Stacked Host: stan.v4.com 207.14.182.10 Query: stan.v4.com? A Resource Record: 207.14.182.10 DNS IPv6-only Host: 199.15.23.87 3ffe:3700:1100:1:210:a4ff:fea0:bc97 ollie.v6.com 3ffe.2301.1700.1.abcd.1234.dada.1 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Dual Stacking IPv4-only Host: Dual-Stacked Host: stan.v4.com 207.14.182.10 Query: ollie.v6.com? AAAA Resource Record: 3ffe.2301.1700.1.abcd.1234.dada.1 DNS IPv6-only Host: 199.15.23.87 3ffe:3700:1100:1:210:a4ff:fea0:bc97 ollie.v6.com 3ffe.2301.1700.1.abcd.1234.dada.1 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Tunnels Necessary if all nodes between communicating endpoints are not dual stacked Add a layer of complexity to the network and the transition plan 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Host to Router / Router to Host Tunnel Applications IPv4 Router to Router IPv6 IPv4 Host to Host IPv6 IPv6 Host to Router / Router to Host IPv4 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Tunnel Types Configured Tunnels Application: Permanent site-to-site connectivity Carriers, SPs, large backbones Technologies: GRE, IP-IP, IPSec… MPLS Controlled, deterministic Automatic Tunnels Application: Transient connectivity Connectivity across “v6 unaware” segments Router to Router Host to Router Host to Host Technologies: Tunnel Brokers 6to4 ISATAP Teredo? DSTM Possibly non-deterministic Possible security risks 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Automatic Tunnels: Endpoint Determination Configured tunnels: Endpoints (IP addresses) are determined by administrator Automatic tunnels require an automatic endpoint determination Two Approaches: Assign them from an authoritative server Tunnel brokers, Teredo, DSTM Imbed them in IPv6 addresses 6to4, ISATAP 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Authoritative Server Approach: Tunnel Broker AAA Authorization 2. Configuration request 3. TB chooses: TS IPv6 addresses Tunnel lifetime 4. TB registers tunnel IPv6 addresses 5. Config info sent to TS IPv6 Tunnel 6. Config info sent to client: Tunnel parameters DNS name 3 4 Tunnel Broker DNS 7. Tunnel enabled 1 2 5 6 IPv4 Network Client Tunnel Server IPv6 Network 7 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Imbedded Endpoint Address Approach: 6to4 138.14.85.210 (Dotted Decimal) = 8a0e:55d2 (Hex) IPv4 Interface: 138.14.85.210 IPv4 Address: 65.114.168.91 6to4 prefix: 2002:8a0e:55d2::/48 6to4 prefix: 2002:4172:a85b::/48 IPv4 Network IPv6 Site IPv6 Site 6to4 Router 6to4 Router 6to4 address: 2002:4172:a85b:1:20a:95ff:fe8b:3cba 6to4 address: 2002:8a0e:55d2:1:230:65ff:fe2c:9a6 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Imbedded Endpoint Address Approach: 6to4 6to4 Router Recognizes 6to4 Prefixes Local Tunnel Endpoint = 138.14.85.210 Packet Source Address: 2002:8a0e:55d2:1:230:65ff:fe2c:9a6 Packet Destination Address: 2002:4172:a85b:1:20a:95ff:fe8b:3cba Remote Tunnel Endpoint = 65.114.168.91 IPv6 IPv4 Network IPv6 Site IPv6 Site 6to4 Router 6to4 Router Host1: 2002:8a0e:55d2:1:230:65ff:fe2c:9a6 DNS: Host2 = 2002.4172.a85b:20a:95ff:fe8b:3cba Host2: 2002:4172:a85b:1:20a:95ff:fe8b:3cba 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Translators Necessary if IPv6-only endnode and IPv4-only endnode must speak Very few situations where translators should be required Dual stacking and/or tunneling should be sufficient in most cases The great majority of modern IPv6-capable network/host systems are dual stack, not IPv6-only IPv6-only devices are likely to be specialized, and in IPv6-only networks Add another layer of complexity to the network and the transition plan Avoid them if you can 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Translator Types Network level translators Stateless IP/ICMP Translation Algorithm (SIIT)(RFC 2765) NAT-PT (RFC 2766) Bump in the Stack (BIS) (RFC 2767) Transport level translators Transport Relay Translator (TRT) (RFC 3142) Application level translators Bump in the API (BIA)(RFC 3338) SOCKS64 (RFC 3089) Application Level Gateways (ALG) 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Translator Types Network level translators Stateless IP/ICMP Translation Algorithm (SIIT)(RFC 2765) NAT-PT (RFC 2766) Bump in the Stack (BIS) (RFC 2767) Transport level translators Transport Relay Translator (TRT) (RFC 3142) Application level translators Bump in the API (BIA)(RFC 3338) SOCKS64 (RFC 3089) Application Level Gateways (ALG) NAT-PT (using SIIT procedures) has emerged as the dominant translator 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Stateless IP/ICMP Translation (SIIT) 204.127.202.4 IPv4 Network Source = 216.148.227.68 Dest = 204.127.202.4 IPv6 Network SIIT Source = 204.127.202.4 Dest = 216.148.227.68 Source = ::ffff:0:216.148.227.68 Dest = ::ffff:204.127.202.4 Source = ::ffff:204.127.202.4 Dest = ::ffff:0:216.148.227.68 SIIT also changes: Traffic Class   TOS Payload length Protocol Number   NH Number TTL   Hop Limit 3ffe:3700:1100:1:210:a4ff:fea0:bc97 216.148.227.68 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Network Address Translation - Protocol Translation (NAT-PT) IPv6 Network IPv4 Network IPv4 Pool: 120.130.26/24 IPv6 prefix: 3ffe:3700:1100:2/64 DNS v4host.4net.org A 204.127.202.4 v4host.4net.org? NAT-PT v4host.4net.org AAAA 3ffe:3700:1100:2::204.127.202.4 v4host.4net.org 204.127.202.4 v6host.6net.com 3ffe:3700:1100:1:210:a4ff:fea0:bc97 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Network Address Translation - Protocol Translation (NAT-PT) IPv6 Network IPv4 Network IPv4 Pool: 120.130.26/24 IPv6 prefix: 3ffe:3700:1100:2/64 Mapping Table Inside Outside 3ffe:3700:1100:1:210:a4ff:fea0:bc97 120.130.26.10 DNS Source = 120.130.26.10 Dest = 204.127.202.4 Source = 3ffe:3700:1100:1:210:a4ff:fea0:bc97 Dest = 3ffe:3700:1100:2::204.127.202.4 NAT-PT Source = 204.127.202.4 Dest = 120.130.26.10 v4host.4net.org 204.127.202.4 Source = 3ffe:3700:1100:2::204.127.202.4 Dest = 3ffe:3700:1100:1:210:a4ff:fea0:bc97 v6host.6net.com 3ffe:3700:1100:1:210:a4ff:fea0:bc97 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Problems with NAT-PT Statefulness (mapping table) restricts asymmetric traffic Complicates network troubleshooting Single point of failure or attack Possible DNS difficulties Many of the same constraints, vulnerabilities as v4 NAT Nevertheless, some see v6 NAT as a necessity Maintaining provider independence, for example 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Transition Strategies: Dual Stacked IPv4/IPv6 Backbone (Possibly) lower capital expense (Possibly) higher operational complexity More risk of network disruption during migration Less incremental migration Legacy equipment issues IPv4 IPv4/IPv6 Access Access 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Transition Strategies: Separate IPv4/IPv6 Backbones (Possibly) higher capital expense Lower operational complexity Low risk to operational network Easier, more incremental migration IPv6 IPv4 Access Access 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Conclusions Dual stacking is the simplest approach Tunnel only when necessary Translation should seldom be needed, if at all A long-range transition plan reduces cost IPv6 SW/HW phased in as part of normal network evolution Biggest transition expense is likely to be planning, testing, inventory, training, etc. i.e., human resource expenses Not capital expenses 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Copyright © 2006 Juniper Networks Thank you! jeff@juniper.net 11/12/2018 Copyright © 2006 Juniper Networks Author: G. Arheilger, Juniper Networks, EMEA Central Copyright © 2003 Juniper Networks, Inc. All rights reserved.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.