View
4
Download
0
Category
Preview:
Citation preview
Contacting Barlan
Barlan Technologies gwww.barlan.ie
Mark Langan: mark@barlan.ie01 866 6111
Michael Bass: michael@barlan.ie01 866 6122086 047 8790
BARLAN advancing business through technology
Internet Protocol version 6Internet Protocol version 6
Mark LanganMark LanganTechnical Director, Barlan Technologies
Engineers IrelandMonday 17th November 2008Monday 17 November 2008
I would like to cover…
Barlan overviewBarlan overviewIPv6, what is it?Why do we need it?Why do we need it?How do we use it?A e o ead fo it?Are you ready for it?What’s for the future?Di i / Q & ADiscussion / Q & A
Barlan Overview
Formed in 2003B d i M l hid C D bliBased in Malahide, Co. DublinNo geographical constraints
Support customers the US, BVI etc.Work with SME and Enterprise level organisationsDivided into two divisions
ICT division is focused on deploying ICT infrastructure from virtualisation toICT division is focused on deploying ICT infrastructure from virtualisation to mass storage to voice over IP in addition to its range of managed servicesSoftware Engineering division focuses on developing robust business applications supported by its code generation platform and a strong dataapplications supported by its code generation platform and a strong data modelling ethos
Deliver Complexity, Simply...
IPv6 – IPv4
RFC (Request for Comment)
• Computer Network Engineering Term• Computer Network Engineering Term• RFC’s are documents published by the IETF (Internet Engineering Task Force)
• The IETF is a large open international community of network designers, operators, vendors, and researchers concerned with the evolution of the Internet architecture and ,the smooth operation of the Internet.
• The IETF Mission Statement is documented in RFC 3935.
• RFC’s are documents used to convey concepts and information• The IETF adopts the RFC’s as standards• Each RFC is assigned a unique number• History of RFC’s dates back to the ARPAnet (Advanced Research Projects Agency
N t k)Network)• RFC 1 Network Working Group Request for Comment (7 Apr 1969)
IPv6
IPv6, what is it?
• What is IP?• IPv4IPv4• What happened IPv5?• IPv6, actually!IPv6, actually!• IPv6 versus IPv4
IPv6 – What is IP?
IP OverviewInternet Protocol (IP) is the primary protocol in the Internet Protocol suiteInternet Protocol suite
Responsible for data exchange between two devices
IP Version 4 (IPv4) is the current version
RFC 791 (Sept 1981)
Conceptually modelled as layers of functionalityAKA the DARPA (Defense Advanced Research Projects A ) d lAgency) model
Top layers relate closer to the user application e.g. web browser
B tt l l t l d t th h i lBottom layers relate closed to the physical transmission of data i.e. fibre, copper etc.RFC 1122 (Oct 1989) “Requirements for Internet Hosts - Communication Layers”Communication Layers
This is conceptual not formal!
IPv6 – What is IP?
IP MilestonesMay 1974 Description of Transmission Control Protocols (TCP) published by Vinton “Vint” Cerf and Bob Kahn used in a paper in IEEE called “A Protocol for Packet Network Intercommunication”used in a paper in IEEE called A Protocol for Packet Network Intercommunication
Known as the father and stepfather of the internet respectively
Vint worked at Advanced Research Projects Agency Network (ARPAnet)
Bob worked for Defense Advanced Research Projects Agency (DARPA)Bob worked for Defense Advanced Research Projects Agency (DARPA)
Dec 1974 RFC 675 “Specification of Internet Transmission Control Program“ published by Vinton Cerf, Yogen Dalal and Carl Sunshine (internetwork)( )
Sep 1981 - Internet Protocol version 4 became a standardRFC 791 replaces RFC 760 (Jan 1980)RFC 791 replaces RFC 760 (Jan 1980)
Jan 1 1983 ARPANET moved to TCP/IP replacing NCP. (Network control protocol)DNS was introduced by the University of WisconsinDNS was introduced by the University of Wisconsin
562 Hosts connected to it
IPv6 - What is IP? - 4 Layer Model
www.barlan.ieMy Office PC
ApplicationApplication
Page Request Over HTTP
Transport Transport
Internet Internet195.218.115.12189.101.162.1
Link Li kLink Link
LAN/InternetLAN/Internet
IPv6 - What is IP? - 4 Layer Model
Application sends
Application DATAData via higher level protocol such as FTP, SMTP, HTTP.
Transport DATATCP/UDPData that is passed has TCP
Header added to create TCP/UDP segment
Internet DATATCP/UDPIPAdds IP Header and creates
an IP Datagram
Link DATATCP/UDPIPHeader CRCAssuming Ethernet, frame
Link DATATCP/UDPIPHeader CRCand trailer added
IPv6 – What is IP? Layered ModelsTCP/IP Layered Model versus
Open Systems Interconnection Model (OSI) reference model
ApplicationDNS, FTP, HTTP, SMTP, Telnet
AApplicationDNS, FTP, HTTP, SMTP,
Telnet Please
Transport
TCP UDP
P
SSession
Presentation
NetBIOS, RTP, SIP
MIME, SSL, XDR Do
Not
I t t
TCP, UDP,
TTransport TCP, UDP Tell
InternetIPv4, IPv6, ICMP, ICMPv6, IPSec N
D
Network
Data Link
IPv4, IPv6, ICMP, ICMPv6, IPSec
ARP, OSPF, MAC(802.3, 802 11 /b/ / )
Sales
PeopleLink
ARP, OSPF,
MAC(ISDN, Ethernet, DSL)
D
PPhysicalDSL, 802.11a/b/g/n/
Physical
802.11a/b/g/n) People
Anything
IPv6 – What is IP?
IPv4 datagram overview (Network layer)Version- set to 4 for IPv4
Header Length - Required as it is not fixed
0-3 4-7 16-18
Header Typeof Service(RFC795
8-15 19-31
Header Length - Required as it is not fixed
Type of Service
Used for DiffServ (RFC 2475) and ECN (Explicit Congestion Notification) (RFC
0 Version Header Length
32 Flags
64
Identification Fragment Offset
Time to live Protocol Header Checksum
Type of Service (RFC 795 Service Mappings) Total Length
3168)
Total Length – header + data length
Identification – uniquely identify fragments
Fl d 't F t (DF) d M
96
128
160
Source Address (32 bits = 2̂ 32 addresses)
Destination Address
Options(withpadding!)Flags – don't Fragment (DF) and More Fragments (MF)
Fragment Offset – offset of this fragment relative to the beginning of the original
160
160 or 192
Options (with padding!)
Data Payload
g g gunfragmented datagram
Time to Live – mechanism to stop datagrams from persisting, measured in seconds but more like a hop decrement I t tmore like a hop decrement.
Protocol
Defines which protocol is used in the data e.g. TCP=6, UDP=17
Internet DATATCP/UDPIP
IPv6 – What is IP?
IPv4 datagram overview (Network layer) (cont.)Header Checksum
E h ki f th h d
0-3 4-7 16-18
Header Typeof Service(RFC795
8-15 19-31
Error checking of the header
This check is done at each router hop
Source Address
32 bits
0 Version Header Length
32 Flags
64
Identification Fragment Offset
Time to live Protocol Header Checksum
Type of Service (RFC 795 Service Mappings) Total Length
32 bits
Destination Address
32 bits
Options
96
128
160
Source Address (32 bits = 2̂ 32 addresses)
Destination Address
Options(withpadding!)Copied – options to be copied into all fragments
Option Class – general options category
160
160 or 192
Options (with padding!)
Data Payload
Option Number
Option Length – size of entire option field
Option Data – Specific dataOption Data Specific data.
Data – not part of the header and not part of the checksum
IPv6 – IPv4
Internet Protocol version 4Is dominant internetworking protocol (Internet Layer)
There are others s ch as ICMP (Internet Control Message Protocol) (RFC 792) IGMP (Internet Gro p ManagementThere are others such as ICMP (Internet Control Message Protocol) (RFC 792), IGMP (Internet Group Management Protocol) (RFC 1112 (v1), RFC 2236 (v2), RFC 3376 (v3))
Described in RFC-791 (September 1981)
Assigned the number 4 as the formal protocol version number carried in every IP datagramAssigned the number 4 as the formal protocol version number carried in every IP datagram
Known as a best effort delivery protocol
does not guarantee delivery
does not assure proper sequencing
does not avoid duplicate deliveries
Allows for 4,294,967,296 possible unique addresses (232)However, about 34 m addresses are reserved…for multicast and broadcast
Sample Address 192.168.100.10 -> 0xC0.0xA8.0x64.0x0A -> 0xC0A8640A -> 3232261130
4.3 billion addresses versus 6.7 billion people…
IPv6 – IPv4
Internet Protocol version 4 – Internet Addressing HistoryBefore 1981, IP addresses consisted of 2 parts, a network ID (1st octet) and a host ID (last 3 octets)
RFC 760RFC 760
This allowed for 256 networks…clearly not enough
Classful networking introduced in RFC 791 (Sep 1981)Class A 128 networks / 216 777 214 hosts per networkClass A 128 networks / 216,777,214 hosts per network
Class B 16,384 networks / 65,534 hosts per network
Class C 2,097,152 networks / 254 hosts per network
1993 Classful network replaced by CIDR (Classless Internet Domain Routing) or supernetting1993 Classful network replaced by CIDR (Classless Internet Domain Routing) or supernettingRFC 1517 Outlined the problems with classful networking
Exhaustion of the class-B network address space
Lack of a network class of a size that is appropriate most organisation
Inefficient utilization of class-B network numbers
Routing information overload
Eventual exhaustion of IP network numbers
Example: 83.71.238.168/29 = 83.71.238.168/255.255.255.248 = 8 internet addresses
IPv6 - what happened IPv5?
IPv5 – The missing Link?Called the Internet Stream Protocol (ST)
i t l ti i t d t lexperimental connection oriented protocol
designed to deliver streaming data to single or multiple destinations which guaranteed QoS required
applications are gaming, video, voip etc.
Defined by Internet Engineering Note IEN-119 (1979)
later revised in RFC 1190 (ST2) and RFC 1819 (ST2+)
Was never introduced for public usage
No more work is expected on this protocol
IPv6 – IPv6, actually!
IPv6 - History1991 IETF decided to replace IPv4 as it had outlived its design
Almost 20 years old at that pointAlmost 20 years old at that point
Designated as IPng (Next Generation) 1994 it had been officially named as IPv6
The base proposal was SIPP (Simple Internet Protocol Plus) RFC 1710
There were other proposals such as CATNIP and TUBA (TCP/UDP with Bigger Address space) and proposals prior to that such as PIP, Nimrod, Simple CLNP, CNAT, IP Encaps…
Recommendation was made in 1994 with RFC 1752 The Recommendation for the IP Next Generation Protocol
1996 onwards a series of RFC’s released which defined IPv6 and the hosting environments including RFC 2460 Internet Protocol, Version 6 (IPv6) Specification (Dec 1998)
Predecessor was RFC 1883 Internet Protocol, Version 6 (IPv6) Specification (Dec 1995)
IPv6 – IPv6, actually!
IPv6Major areas of change IPv4 and IPv6
IP Header format simplificationIP Header format simplificationIntroduced extension headers
Creates less work for routers and potentially lowers bandwidth cost for ipv6 packets
Expanded Address capabilityExpanded Address capabilityMore addresses
Auto configuration of nodes rather than the familiar 169….address when no DHCP server available.
New type called an anycast address (send to any (closest) member of a group)New type called an anycast address (send to any (closest) member of a group)Example, find nearest DNS server (RFC 3258 Distributing Authoritative Name Servers via Shared Unicast Addresses)
Flow labelling capability (RFC 3697 IPv6 Flow Label Specification - Mar 1994)QoS and real time datagram delivery support
Still experimental, will improve with age!
Support for mobile devicesImplemented as an extension header
SecurityExtensions to support authentication, data confidentiality and data integrity
IPv6 – IPv6, actually!
IPv6 – Transition mechanismsCannot simple turn off IPv4 on a Fri evening and expect the entire inter-network to use IPv6 by the following Monday
Mechanisms divided into three groups
D l St kDual Stack
IPv4 and IPv6 network stack implemented on the same device, either stack is used to communicate, effectively lowest level co-existence.
Windows Vista for example
Has the a if there aren’t enough IPv4 addresses
Translation
SIIT RFC 2765 Stateless IP/ICMP Translation Algorithm (SIIT) (Feb 2000)
NAT-PT - RFC 2766 Network Address Translation - Protocol Translation (NAT-PT) (Feb 2000)IPv4 packet gets translated to an IPv6 packet, similar to NAT translation
Uses a pool of globally unique IPv4 addresses combined with SIIT (RFC 2765 Stateless IP/ICMP Translation Algorithm (SIIT) Feb 2000))
Does not cover addresses in private networks!
NAT-PT - RFC 2766 Network Address Translation - Protocol Translation (NAT-PT) (Feb 2000)
IPv6 – IPv6, actually!
IPv6 – Transition mechanismsMechanisms divided into three groups (cont.)
Tunnelling
Tunnelling IPv6 traffic across IPv4 networksEncapsulating it in IPv4 datagramsp g g
Longer term, tunnelling IPv4 traffic across IPv6 networks
Manually configured
AutomaticallyAutomatically 6to4
RFC 3056 Connection of IPv6 Domains via IPv4 Clouds (Feb 2001)
6over4
RFC 2529 Transmission of IPv6 over IPv4 Domains without Explicit Tunnels (Mar 1999)
Teredo (Microsoft) and Miredo (Open source – Linux based)
Encapsulates IPv6 packets within a IPv4 UDP datagram
RFC 4380 Teredo: Tunneling IPv6 over UDP through Network Address Translations (NATs) (Feb 2006)
Ideal for NAT’d devices and a last resort!
E bl d XP i “ t h i t f i 6 t t d li t”Enabled on XP using “netsh interface ipv6 set teredo client”
IPv6 – IPv6, actually!
340,282,366,920,938,463,463,374,607,431,768,211,456Possible addresses
4,294,967,296
Possible addressesPossible addresses
http://en.wikipedia.org/wiki/Image:Internet address spaces.svghttp://en.wikipedia.org/wiki/Image:Internet_address_spaces.svg
IPv6 – IPv6, actually!
Bits 0-3 4-7 8-11 12-15 24-3116-23
ff C
IPv6 datagram overview (Network layer)
Version0 Version
32
64
96
Flow Label
Next Header Hop LimitPayload Length
Traffic ClassSet to 6 surprisingly!
Traffic ClassQoS mechanism, effectively experimental
96
128
160
192
Source AddressFlow LabelSpecial handling mechanism from source to destination
Payload Length 192
224
256
288
Destination Address
Payload LengthLength of the data in the packet
Next HeaderNext encapsulated protocolNext encapsulated protocol
Compatible with the Protocol field values in IPv4
Hop limitFor each router that forwards a packet, it decrements the count by 1, when zero is reached that router will then p , y ,discard the packet.
Source Address and Destination Address32 bit address
IPv6 – IPv6, actually!
IP 6 F Add i RFC 2373IPv6 Features – Addressing – RFC 2373New addressing format
Old format 192.168.100.1
IPv6 is made up of eight 16-bit words, separated by colons also known as colon hexadecimal notation
Example fe80::217:42ff:fe22:7ee9
Double colon signifies a block or block of zeros
fe80::217:42ff:fe22:7ee9 -> fe80:0000:0000:0000:0217:42ff:fe22:7ee9
Only 1 double colon can be used in an address
Types of addresses
Unicast – data delivered directly to the Interface or IID (Interface Identifier)Global – consists of a 64 bit network identifier and 64 bit interface identifier
Unique Local Routable between sites or a limited set of sites
Link LocalAutomatically configures addresses using the MAC address e.g. 00:17:42:22:7e:e9
Extended Unique Identifier (EUI)
Unspecified address (::) and loopback (::1)
IPv6 – IPv6, actually!
IPv6 FeaturesTypes of addresses (cont.)
AnycastAnycast
Defined in RFC 2373 (IP Version 6 Addressing Architecture)
Delivers to the closest routable host
MulticastMulticast Address
0 128 bits
Delivered to all hosts that have subscribed
Extension Headers (In order)
RFC 2460
8 bits11111111
4 bitsFlags
4 bitsScope
80 + 32 bitsGroup ID
Hop by Hop Options Header
Support for jumbogram and router alerts
Destination Options Headers
b d b h dOptions to be processed by the destination
Routing Header
Allows source to specify a route
Fragment HeaderFragment Header
Allows packets to be fragmented
ESP/AH Header
Carries secure data for secure communications/authenticity of encrypted data/ y yp
IPv6 – IPv6, actually!
IPv6 FeaturesDNS
IP 4 h t dd (A) d i D i N S t (DNS) t thIPv4 uses host address (A) resource records in Domain Name System (DNS) to map the host name to the address
IPv6 uses host address (AAAA) resource records in DNS to map the host name to the ddaddress
Covered in RFC 3596 DNS Extensions to Support IP Version 6 (Oct 2003)
IPv6 – IPv6 versus IPv4 –Field DifferencesBits 0-3 4-7 8-11 12-15
0 Version
24-3116-23
Flow LabelTraffic Class
0-3 4-7 16-18
0 Version Header Length Type of Service (RFC 791)
8-15 19-31
Total Length32
64
96
128
160
192
224
256
288
Source Address
Destination Address
Next Header Hop LimitPayload Length0 Version Header Length
32 Flags
64
96
128
160
160 or 192
Source Address (32 bits = 2^32 addresses)
Destination Address
Options (with padding!)
Data Payload
Identification Fragment Offset
Time to live Protocol Header Checksum
Type of Service (RFC 791) Total Length
Version 4 bits (set to 4) 4 bits (set to 6) VersionHeader Length 4 bits -Type of Service 8 bits 8 bits Traffic Class
IPv4 IPv6
Type of Service 8 bits 8 bits Traffic ClassTotal Length
(header + data)16 bits 16 bits
Payload Lengthsize of data
Identification 16 bits -Flags 4 bits -
Fragment Offset 8 bits -Fragment Offset 8 bitsTime to Live Field 8 bits 8 bits Hop Limit
Protocol 8 bits 8 bitsNext Header
http://www.iana.org/assignments/protocol-numbers
Ch k 16 biLink Layer and upper layers
Checksum 16 bits NoneLink Layer and upper layers
tend to handle this.Source Address 32 bits 128 bits Source Address
Destination Address 32 bits 128 bits Destination Address
Options 32 bitsReplaced with a daisy chain
of extension headers-
of extension headers- None 20 bits Flow Label
Header Length 20 - 60 bytes 40 bytes Fixed Header LengthTotal Number of fields 13 8Total Number of fields 13 8
IPv6 – IPv6 versus IPv4
Other differencesData Fragmentation
Extension headers cover fragmentation therefore routers do not have to do it!
Fragmentation is carried out by the host and reassembly carried out at the destination
Getting rid of NAT
Easier configurationAutoconfiguration
Neighbourhood discovery
B l Q S fBetter control over QoS features
SecurityIPSec an inherent feature, making security a more visible component of the underlying architecture
IPv6
Why do we need it?
• Who controls the internet?• A Brief History of…Internet Growth• What issues does it raise?• Isn’t this all hype?• What can happen if I don’t
upgrade?• How do I become ready?
http://www.litech.org/webbug/ipv6.jpgg g j g
IPv6 - Who controls the internet?
ICANN (Internet Corporation for Assigned Names and Numbers) (http://www.icann.org)Formed in 1998
Non profit organisation to help coordinate Internet tasks
Has nothing to do with controlling Internet content
IANA (Internet Assigned Numbers Authority) (http://www.iana.org)Operated by the ICANN
Coordinates some of the key elements that keep the internet running
Grouped into three categoriesDomain Names
Coordinates the pool of global addresses, providing them to Regional Internet Registries (RIR’s)p g , p g g g ( )
Maintains the codes/numbers contained in the variety of internet standards in coordination with the IETF
Number Resource Organisation (NRO) (http://www.nro.net)Umbrella for RIR’s (Regional Internet Authorities)
Its purpose is to undertake joint activities of the RIR’s, including joint technical projects, liaison activities and policy co-ordination.
Main aims are:protect the unallocated Number Resource poolprotect the unallocated Number Resource pool
to promote and protect the bottom-up policy development process
to act as a focal point for Internet community input into the RIR system
IPv6 - Who controls the internet?
RIR (Regional Internet Registry)Oversees IP allocation to particular regions in the world
There are only 5 currentlyAmerican Registry for Internet Numbers (ARIN)
RIPE Network Coordination Centre (RIPE NCC) Europe, Middle East and Central Asia
Began Apr 1992 in Amsterdam, the Netherlands
Asia-Pacific Network Information Centre (APNIC) Asia and Pacific Region
Latin American and Caribbean Internet Address Registry (LACNIC)
African Network Information Centre (AfriNIC)
ISP’s are the end point for this processThey assign addresses to their customersThey assign addresses to their customers
Irish Statistics (September 2008) from RIPE NCCHosts: 1,168,863, Web sites: 37,825
IPv4 Hosts: 1 363 584IPv4 Hosts: 1,363,584
IPv6 hosts: 3,079
IPv6 – why do we need it?
1984 NSFNET (National Science Foundation Network) created from splits into MILNET
600,000,000
A Brief History of…Internet Growth
Network) created from splits into MILNET and ARPANET
1985 NSFNET starts deploying T1 (1.544 Mbps) lines
500,000,000
1986 IETF Created to provide technical coordination for DARPA and Internet core
1988 M50 version of the Internet in force, need to upgrade again
300,000,000
400,000,000
need to upgrade again…
1990 The need for speed!
T3 (45 Mbps) introduced by NSFNET
ARPANET retired
200,000,000
Tim Berners-Lee @ CERN invents HTTP
1992 CERN release World Wide Web 0
100,000,000
Aug-81 Aug-84 Aug-87 Aug-90 Aug-93 Aug-96 Aug-99 Aug-02 Aug-051994 Can I order pizza?
Pizza Hut offers online ordering @ Santa Cruz (CA) location
g g g g g g g g g
IPv6 – why do we need it?
A Brief History of…Internet Growth1999 - 'SETI @ Home' project launches 17 May
f ( ) ( )Viruses of the Year: Melissa (March), ExploreZip (June)
2008 - 875m people shop online, 40% increase over 2 yearsHosts Over 570,937,778 (July 2008)
Source Internet Systems Consortium (www.isc.org)
2009 - How many IP devices will you have?VOIP Phone
600,000,000
VOIP Phone
Mobile phone with WLAN or 3G or GPRS
Games consoles
PC’ d L t ’
400,000,000
500,000,000
PC’s and Laptop’s
Sound system’s
Fridge? 200,000,000
300,000,000
0
100,000,000
Aug 81 Aug 84 Aug 87 Aug 90 Aug 93 Aug 96 Aug 99 Aug 02 Aug 05Aug-81 Aug-84 Aug-87 Aug-90 Aug-93 Aug-96 Aug-99 Aug-02 Aug-05
IPv6 – why do we need it?
What issues does it raise? Just like the oil…
When will it happen?August 2008 2.7 billion addresses used, less than a 1 billion left
2.46 billion to 2.7 billion in 1 year…
At th t t h til 2011/12At that rate, we have until 2011/12 approx.
(http://www.potaroo.net/tools/ipv4/index.html) source: Geoff Huston, Telstra, Australia
IPv4 will get turned off some time in the future
Routers are having a hard time lately and it is only getting worseOutages occur and you don’t necessarily experience it directly
Some ISP’s stop users getting on as their routing tables are literally overflowing…p g g g y g
Need more memory
Proliferation of internet devices Cars have interactive GPSCars have interactive GPS
My Fridge now orders my groceries
IPv6 – why do we need it?
What issues does it raise? (cont.)Coding for NAT is expensive and technically challenging
Makes peer to peer coding awkward and expensive
Breaks protocols requiring incoming connections e.g. VoIP
Application demand for peer to peerApplication demand for peer to peerGames
Internet telephony
Al t tiAlways on expectationDialup will disappear…
You could be loosing customersHow do you know an IPv6 user is not trying to access your site?
IPv6 – why do we need it
What issues does it raise? (cont.)Smaller countries with smaller address allocations may find IPv4 address depletion faster
Getting new addresses in IPv4 is getting more difficult
ISP’s are reusing addressesISP s are reusing addresses
What if the address you got is blacklisted?
Always on applications
Exchange push email, VoIP,Instant Messanger
Current applications send keep alive packets, uses up power, resulting in shorter battery life on the phoneshorter battery life on the phone.
This happens even with an inactive application, phone has to go from standby to active and stand down again.
Matters made worse by the array of applications including VPN software.
IPv6 has concept of long live connections…
IPv6 – why do we need it
Isn’t this all hype? NAT maybe bad but a reality
It does work for organisations
It does add security
IPv6 could be worse
Has reduced pressure for addresses considerably
IPv6 benefits vendors and consultantsReplacement hardwareReplacement hardware
Big consulting contracts, reminders of Y2K…
Will we get left behind?IPv4 network deployments are still being deployed in other countries…
IPv4 addressingWhen will the addresses really run out?When will the addresses really run out?
IPv4 allocations are unbalanced i.e. A lot of US institutions have class A allocations they do not use
I don’t need more addresses…I don t need more addresses…
IPv6 – why do we need it
Isn’t this all hype? (cont.)Who requires IPv6 now?
Do governments enforce it?
Is anyone panicking? None of our customers
How many websites have you not been able to visit because of IPv6?
IPv6 is basically unprovenBigger packetgg p
Will it really make a differenceSecurity?
Problems
What can happen if I don’t upgrade?Single User
Potential inability to access certain websites send email to friends across the other side of the worldPotential inability to access certain websites, send email to friends across the other side of the world
Skype might break…
SME / Enterprise OrganizationCommon business tasks such as online banking revenue online etc may not workCommon business tasks such as online banking, revenue online etc. may not work
Potential email communication disruption to other domains
My clients may not be able to access my site
Client unable to send me an emailC e t u ab e to se d e a e a
VPN may not work when abroad
GovernmentsIreland is internally known as a technology leadery gy
USFederal Agencies had until June 2008 to become IPv6 compliant http://www.fcw.com/online/news/89432-1.html
Follow up http://www.infoworld.com/article/08/04/02/Feds-will-meet-June-IPv6-deadline_1.html
Recommendations
How do I become ready?Single User
Shouldn’t be a concern for some timeShouldn’t be a concern for some time
SME / Enterprise OrganizationDo an IPv6 audit
Cannot measure the problem if any without a review processCannot measure the problem, if any, without a review process
Find devices that have automatically been set up – potential security problemhttp://www.securityfocus.com/archive/119/303782/2002-12-15/2002-12-21/0
Establish what devices are capable of supporting IPv6 and in what manner
Public facing services are most critical first, then the internal network
Include any outsourced internet services are part of the audit
SecurityIPv6 does not mean better security
It means more security concerns, same practises need to be applied
Do I need more addresses
R d IP 4 dd b f t th b fit t i tiReused IPv4 addresses can be more of a cost than a benefit to an organisation
Eventually, you will not get any more IPv4 addresses
We request addresses almost every day as a IT services provider
GovernmentsGovernmentsWe are already doing something
IPv6
Are you ready?
• Operating Systems• Routers• Mobile Phones• When do I need to be ready?• What will happen if I don’t upgrade?
http://www.litech.org/webbug/ipv6.jpgg g j g
Are you ready?
Operating SystemsLinux
kernel version 2.2 and aboveRed Hat Enterprise Linux 5 (Tikanga), 2007-03-14, kernel 2.6.18-8
4.0r5 Etch/ 23 October 2008; 2.6.?
Ubuntu 8.10, kernel Linux 2.6.27
Windows
XP – available, not turned on by default…ipv6 install!No DNS lookups, only payload passing... http://www.microsoft.com/technet/network/ipv6/ipv6faq.mspx
Vista – on by default, cannot be uninstalled, can be disabled
Server 2003 – available, not installed by default, y
Server 2008 – native IPv6 stack, on by default, cannot be uninstalled, can be disabled
Mobile – on by default
AppleApple
OS X support from 10.2 onwards, using KAME implementationApparently some problems with Thunderbird and Firefox (https://wiki tools isoc org/IETF71 IPv4 Outage)(https://wiki.tools.isoc.org/IETF71_IPv4_Outage)
Are you ready?
Mobile PhonesNokia
Symbian S40 and S60 platforms
Includes Phones *E Series – E50, E60, E61, E65, E70
N Series - N70, N71, N80, N90, N91, N92, N95
Communicator - 9500, 9300, 9300i (WLAN)
OtherSimilar support
* Source: Bob Hinden Nokia Fellow* Source: Bob Hinden, Nokia Fellow
Are you ready?
RoutersCorporate Support – Good
Cisco IOS 12.2(2)T onwardshttp://www.cisco.com/en/US/products/ps6553/products_ios_technology_home.html
Nortelhttp://www.nortel.com/products/01/passport/8600/collateral/nn117860.pdf
Juniperhttp://www.juniperipv6.com/
SME Support – Not so goodTry using a LinkSys 54G with ipv6….
are you ready?
What is Ireland doing about it?• National Irish IPv6 Centre (http://www.ipv6-ireland.org)
• Located at the Telecommunications Systems & Software Group (TSSG) at Waterford Institute of Technology
• Has active connectivity and collaborates with its partner institutions • HEAnet,
• The Hamilton Institute, ,
• NUI Maynooth
• BT Ireland.
I i h IP 6 T k F (h // i i 6 f )• Irish IPv6 Task Force (http://www.ie.ipv6tf.org)• A group made up of public and private sector representatives
• Promotes deployment and awareness of IPv6 under the auspices of the Department of Communications, Energy and Natural Resources (DCENR)Energy and Natural Resources (DCENR).
What’s for the future?
Simply put, it will be an IPv6 world, not an IPv4 one
Implementing IPv6 properly is an advantage, not a disadvantage
Discussion
Discussion / Q&A
• How many IP devices do you personally own?
• Is your organisation ipv6 aware?
Do they see moving to ipv6 as strategic?• Do they see moving to ipv6 as strategic?
• Does your organisation host its own website or email?
Recommended