Presentation is loading. Please wait.

Presentation is loading. Please wait.

IPv6 Are we there yet?. Problem The Internet keeps growing Running out of IPv4 addresses Running out of time!

Published byAubrey Atkinson Modified over 9 years ago

Similar presentations

Presentation on theme: "IPv6 Are we there yet?. Problem The Internet keeps growing Running out of IPv4 addresses Running out of time!"— Presentation transcript:

1 IPv6 Are we there yet?

2 2IPv6@Belnet9/09/2015 Problem The Internet keeps growing Running out of IPv4 addresses Running out of time!

3 Problem 3IPv6@Belnet9/09/2015

4 4IPv6@Belnet9/09/2015 Original Design Network of networks Packet-based network Unique addresses End-to-end connectivity Layered design

5 5IPv6@Belnet9/09/2015 Quick fixes Address Resource Management CIDR NAT Rethinking IP, start in 1992

6 6IPv6@Belnet9/09/2015 Extending IPv4 lifetime NAT – CPE NAT – Carrier-grade CIDR

7 7IPv6@Belnet9/09/2015

8 8IPv6@Belnet9/09/2015 Internet Resources Addresses (IPv4/IPv6) + ASN Hierarchical manner (top-down) Goals of the Internet Registry System – Uniqueness – Aggregation – Conservation – Registration

9 9IPv6@Belnet9/09/2015 IPv4 depletion How many IPv4 addresses? 2 32 = ~4,3 billion IPv4 addresses

10 10IPv6@Belnet9/09/2015 What is left? IANA allocates /8 to RIRs 256 /8s is the entire IPv4 Internet Beginning of 2010, IANA had 26 /8s left In February 2011, IANA allocated the last /8 Even RIR’s are running out… –APNIC handed out last /8 in April 2012 –Microsoft – Nortel  trade of IPv4 blocks –Asking legacy holders to become LIR or sponsorship. –Ripe is exhausting rapidly http://www.iana.org/assignments/ipv4-address-space/ipv4-address-space.xml

11 11IPv6@Belnet9/09/2015 What is left?

12 12IPv6@Belnet9/09/2015 What is left? http://www.potaroo.net/tools/ipv4/index.html

13 13IPv6@Belnet9/09/2015 IPv6 Islands… Addresses (IPv4/IPv6) + ASN Hierarchical manner (top-down) Goals of the Internet Registry System – Uniqueness – Aggregation – Conservation – Registration

14 14IPv6@Belnet9/09/2015 IPv6 to the rescue It is clear that we need a better solution IPv6 to solve address exhaustion Extra features built in IPv6 exists for 16 years Time to act now!

15 IPv6 to the rescue 15IPv6@Belnet9/09/2015

16 16IPv6@Belnet9/09/2015 Improved features Better support for mobility Security, IPSec Auto-configuration Routing (simpler header, flexible extensions, aggregation) IPv6 Multicast, more addresses

17 17IPv6@Belnet9/09/2015 More… …IP addresses !!!!! 128 bits instead of 32 bits 2 128 addresses, 3.4×10 38 addresses 340 sextiljoen (undecillion) addresses Let’s just say … a lot of addresses Restore end-to end connectivity  Internet as it was meant to be!

18 18IPv6@Belnet9/09/2015 IPv6 subnetting

19 19IPv6@Belnet9/09/2015 IPv6 addresses 2001:6a8:3c80:8000:222:19ff:fe14:a617/64 2001:06a8:3c80:0000:0000:0000:0000:0039 2001:6a8:3c80::39 0001 1001 1111 1111 Network IDHost ID

20 20IPv6@Belnet9/09/2015 IPv6 interoperability 193.191.2.0/30.2.1 193.190.162.0/24 0/0 2001:6a8:2400:8003::/64 ::1 ::2 2001:6a8:24c0::/48 ::/0

21 21IPv6@Belnet9/09/2015 Differences Different types and scope of addresses No broadcast, thus no ARP Relies heavily on multicasting Auto-configuration instead of DHCP? Common to have multiple addresses on an interface. What IP will be used to source traffic?

22 22IPv6@Belnet9/09/2015 IPv6 @ Belnet 2001:6a8::/32 Native, dual-stack since Jan 2003 Multiple IPv6 peerings – Geant – Transit – BNIX – Other IXes Various services already available on IPv6 FTP, DNS, Jabber, NTP, WWW, SMTP, Antispam Pro…

23 23IPv6@Belnet9/09/2015  Text IPv6 assignments

24 24 IPv6@Belnet9/09/2015 Belnet: active use of IPv6 (live traffic) 2013 10% of the Belnet customer base IPv6: current status

25 Why you should run IPv6 Belnet: active use of IPv6 (live traffic) 2014 9/09/2015 IPv6@Belnet25

26 26IPv6@Belnet9/09/2015 IPv6 elsewhere Equipment vendors (routers, firewall, …) Software (OS, applications, …) Networks – Content: google, facebook (IPv6 day 8/06/2011) – IXes – ISPs: Comcast (US), XS4all (NL) – CDNs: Akamai (end of 2010)

27 27IPv6@Belnet9/09/2015 Why you should run IPv6 Experimental users Power users Global audience  Get your content available over IPv6

28 Interesting Sites https://www.vyncke.org/ipv6status/ 9/09/2015 IPv6@Belnet 28

29 Enabling IPv6 on your network

30 Your action plan Equipment inventory Raise awareness Get your assignment Prepare your address plan Get IPv6 on your DMZ Get IPv6 on your LAN 30IPv6@Belnet9/09/2015

31 Equipment inventory Routers and firewalls Does it support IPv6? At full performance? Server & Desktop OS Should be no-brainer for recent OSes Application software Does it depend on hard coded IPv4 addresses/ranges? If built on Apache or IIS no other problems expected... Other networked gear Printers? Switches? RA guard, PACL; RA snooping… 31IPv6@Belnet9/09/2015

32 Raise awareness Your ICT colleagues/Management Awareness of network changes No surprises End users Migration should be transparent to them Only warn when deployed on LAN and/or Wi-Fi Via Intranets? 32IPv6@Belnet9/09/2015

33 Prepare your address plan (1) 33IPv6@Belnet9/09/2015 2001:6a8:3c80:8004:ca2a:14ff:fe15:9cb6 Belnet /32 Customer /48 Host address 65536 assignable /64 ranges 8 0 0 4 L V A A 1000 0000 0000 0100 azerty

34 Prepare your address plan (2) Map your IPv4 address plan into your IPv6 prefix 10.50.60.0/24 -> 2001:6a8:1234:5060::/64 Easy, but not always a good idea Large networks need a decent IPv6 address plan Use location / VLAN id / type of service... 2001:6a8:1234: ::/64 e.g. 2001:6a8:1234:0165::/64 (site 0, vlan 165) 16 bits to play with 34IPv6@Belnet9/09/2015

35 Get IPv6 on your DMZ (1) Requirement: firewall support! Use a separate zone if you want to test in advance Use firewall policies similar to IPv4 policies ICMP! Enable IPv6 on your public servers OS + Applications Publish AAAA records in your DNS for IPv6- enabled services 35IPv6@Belnet9/09/2015

36 Get IPv6 on your DMZ (2) Sample interface config for JunOS devices: ge-0/0/0 { unit 0 { family inet { address 10.21.0.1/24; } family inet6 { address 2001:6a8:3d00:8000::1/64; } 36IPv6@Belnet9/09/2015

37 Get IPv6 on your DMZ (3) Sample default route for JunOS devices: routing-options { rib { inet6.0 { static { route 0::/0 next-hop 2001:6a8:3d00:8001::2; } 37IPv6@Belnet9/09/2015

38 Get IPv6 on your DMZ (4) Sample config for Cisco IOS devices: Router(config)# interface ethernet 0/0 Router(config-if)# ipv6 address 2001:6a8:3d00:8000::1/64 or: Router(config-if)# ipv6 address 2001:6a8:3d00:8000::/64 eui-64 static default route: Router(config)# ipv6 unicast-routing Router(config)# ipv6 route 0::/0 2001:6a8:3d00:8000::2 38IPv6@Belnet9/09/2015

39 Get IPv6 on your servers (1) Web servers IIS and Apache: no problem Application-specific, legacy, unknown,… Use reverse-proxy HTTPS: One domain per IP DNS servers Windows 2008’s DNS, BIND: no problem Windows 2003: support very limited But IPv6 DNS server not mandatory to serve AAAA records 39IPv6@Belnet9/09/2015

40 Get IPv6 on your servers (2) Mail servers Very few MTA supported Even less antispam software IPv6 blacklisting still experimental Our advise : do not port MTA now Get Belnet Antispam Pro (Fully IPv6 compliant) ! 40IPv6@Belnet9/09/2015

41 Get IPv6 on your LAN(s) Use a separate zone if you want to test in advance One LAN at a time admin, students, guests, eduroam,... Use firewall policies similar to IPv4 policies Do not forget inbound connections as there is no more NAT! Filtering inbound ports <1024 is good practice Filter everything incoming if you want a perfect match between policies Warn your power users about network changes You want to know if something is no longer working… 41IPv6@Belnet9/09/2015

42 Get IPv6 on your LAN (cont'd) Distribution of IPv6 addresses Router advertisement Widely supported Limited autoconfiguration options (only DNS server, if at all) Perfect for dual stack: DHCPv4 + RAdvd DHCPv6 Not widely supported yet (only recent MS products) Can coexist with router advertisement (DNS servers etc) 42IPv6@Belnet9/09/2015 Our advice : go DHCPv4 + RA

43 Transitioning technologies Tunneling technologies Tunnel broker Belnet hosts a SiXXs.net PoP server Native addresses Specific software on routers/stations 6to4 Built-in in Windows, OSX, Apple Airport & other home routers Teredo Built-in in Windows, Miredo Teredo port for Unix/Linux 43IPv6@Belnet9/09/2015

44 Transitioning technologies Native connectivity Dual stack IPv6 and IPv4 on same wire/lan/frames Advantages Easier to put on desktops, routers Control/inspect your traffic Stability, ISP support 44IPv6@Belnet9/09/2015 Our advice : go dual stack

45 Transitioning technologies (cont'd) NAT64 & DNS64 45IPv6@Belnet9/09/2015

46 Briefly Follow the steps Inventory Awareness Network plan DMZ + LAN Go Dual stack On the WAN On the LAN Belnet is a partner Ask us questions ! 46IPv6@Belnet9/09/2015

47 Thank You

48 NAT64 + DNS64 48IPv6@Belnet9/09/2015

49 NAT64 + DNS64 49IPv6@Belnet9/09/2015

Download ppt "IPv6 Are we there yet?. Problem The Internet keeps growing Running out of IPv4 addresses Running out of time!"

Similar presentations

IPv6 Deployment CANTO Nate Davis, Chief Operating Officer 13 August 2014.

IPv6 Deployment CANTO Nate Davis, Chief Operating Officer 13 August 2014.
IPv6 at NCAR 8/28/2002. Overview What is IPv6? What’s wrong with IPv4? Features of IPv6 IPv6 will soon be available at NCAR How to use IPv6.

IPv6 at NCAR 8/28/2002. Overview What is IPv6? What’s wrong with IPv4? Features of IPv6 IPv6 will soon be available at NCAR How to use IPv6.
IPv6: Paving the way for next generation networks Tuesday, 16 July 2013 Nate Davis Chief Operating Officer, ARIN.

IPv6: Paving the way for next generation networks Tuesday, 16 July 2013 Nate Davis Chief Operating Officer, ARIN.
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.

IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.
1 May, 2007: American Registry for Internet Numbers (ARIN) “advises the Internet community that migration to IPv6 numbering resources is necessary for.

1 May, 2007: American Registry for Internet Numbers (ARIN) “advises the Internet community that migration to IPv6 numbering resources is necessary for.
IPv6: Application perspective Zaid Ali Chairman/President SFBAY ISOC www.sfbayisoc.org.

IPv6: Application perspective Zaid Ali Chairman/President SFBAY ISOC
1 Muhammed Rudman

1 Muhammed Rudman
IPv4 Depletion IPv6 Adoption 3 February 2011 0 /8s Remaining.

IPv4 Depletion IPv6 Adoption 3 February /8s Remaining.
IPv6 The Big Move: Transition and Coexistent Frenil V. Dand.

IPv6 The Big Move: Transition and Coexistent Frenil V. Dand.
Implementing IPv6 Module B 8: Implementing IPv6

Implementing IPv6 Module B 8: Implementing IPv6
© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—7-1 Address Space Management Transitioning to IPv6.

© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—7-1 Address Space Management Transitioning to IPv6.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Introduction to IPv4 Introduction to Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Introduction to IPv4 Introduction to Networks.
IPv4 Run Out and Transitioning to IPv6 Marco Hogewoning Trainer, RIPE NCC.

IPv4 Run Out and Transitioning to IPv6 Marco Hogewoning Trainer, RIPE NCC.
1 Introduction Internet Protocol version 6 Presenter Veena Merz Manager Cisco Networking Area Academy.

1 Introduction "Internet Protocol version 6" Presenter Veena Merz Manager Cisco Networking Area Academy.
Addressing the Network IPv4

Addressing the Network IPv4
Enabling IPv6 in Corporate Intranet Networks

Enabling IPv6 in Corporate Intranet Networks
17/10/031 Summary Peer to peer applications and IPv6 Microsoft Three-Degrees IPv6 transition mechanisms used by Three- Degrees: 6to4 Teredo.

17/10/031 Summary Peer to peer applications and IPv6 Microsoft Three-Degrees IPv6 transition mechanisms used by Three- Degrees: 6to4 Teredo.
CIM 2465 IP Addressing Scheme1 IP Addressing Scheme (Topic 4) Textbook: Networking Basics, CCNA 1 Companion Guide, Cisco Press Cisco Networking Academy.

CIM 2465 IP Addressing Scheme1 IP Addressing Scheme (Topic 4) Textbook: Networking Basics, CCNA 1 Companion Guide, Cisco Press Cisco Networking Academy.
IP Version 6 Next generation IP Prof. P Venkataram ECE Dept. IISc.

IP Version 6 Next generation IP Prof. P Venkataram ECE Dept. IISc.

Similar presentations

Ads by Google