Upload
others
View
0
Download
0
Embed Size (px)
Citation preview
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Diseño e instalación de redes orientado a la transición IPv4-IPv6
Corporación Unificada Nacional de Educación Superior
CUN
Julio 2021
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Ricardo Alfredo López Bulla✔ Ingeniero de Sistemas
✔ Especialista en seguridad informática
✔ Especialista en redes y telecomunicaciones
✔ Especialista en multimedia
✔ Magister en Informática Aplicada
✔ Instructor Trainer CISCO
✔ Certificado CCNA- CCNA Security - CCNA CyberOps- CCNP
✔ Certificado TestOut Security Pro
✔ Certificado CEH Ethical Hacking
✔ Certificado LACNIC IPV6
✔ Certificado IPv6 Forum
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
⮚ Ing. Ricardo Alfredo López Bulla
Mail [email protected]
WhatsApp 300 2176856
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
RED: Conjunto de nodos interconectados a través de un medio con un objetivo y una funcionalidad
Diseño e instalación de redes orientado a la transición IPv4-IPv6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
• Las redes se forman por:Dispositivos, Medios y Servicios
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Tendencias de la
Red• BYOD (Bring Your Own
Device)
• Colaboración en línea
• Comunicaciones de video
• Computación en la nube
• IoT
• SDN - SDWAN
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Tendencias
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
El Problema
• El 3 de febrero de 2011, la IANA asignó los últimos bloques de direcciones IPv4 libres a los RIRs, y anuncia el inicio de la fase de agotamiento.
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
ICANN Internet Corporation for Assigned Names and Numbers
IANA Internet Assigned Numbers Authorit
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Circular 002 de 2011 y Resolución 2710 de 2017
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Resolución 2710 de
3 de octubre de 2017
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Direccionamiento IP
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
DIRECCIONAMIENTO IP
La dirección lógica es un valor que identifica a un Host en una
red, debe ser única en la red y/o en el segmento de red a la que
pertenece.
192.168.10.1 /24 IPV4
2001:DB8:CAFE:3FEA::6F7A:3C /64 IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
• Dirección a 32 bit
• 4.300 millones Aprox de direcciones disponibles
• Representación decimal punteado 192.168.10.10
• 4 octectos 11000000.10101000.00001010. 00001010
• Mascara de red
• Clases
• Direcciones Privadas y Publicas
• NAT
Direccionamiento IPV4
Segmento de red Segmento de host
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Direccionamiento IPV4 Direcciones Especiales
❑ 0.0.0.0 No definida
❑ 100.64.0.0/10-100.127.255.255 Espacio de direcciones
compartido
❑ 127.0.0.0 – 127.255.255.255 Loopback
❑ 169.254.0.0 -169.254.255.255 Link-Local APIPA
❑ 192.0.2.0 – 192.0.2.255 Test Net
❑ 224.0.0.0 – 224.0.0.255 Multicast enlace local
❑ 224.0.1.0 – 239.255.255.255 Multicast Internet
❑ 240.0.0.0 - 255.255.255.254 Dirección experimental
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Calculo de la RED operador AND
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Direccionamiento IPV4
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Alternativas de Agotamiento IPV4
⮚Subneting
⮚Direccionamiento público y privado
10.X.X.X – 172.16.0.0 a 172.31.255.255 – 192.168.X.X
⮚NAT
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
IPV6 la única alternativa para seguir
en Internet.
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Direccionamiento IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
DIRECCIONAMIENTO IPV6
• 128 BIT- 340 sextillones de direcciones
• No tiene mascara
• No usa clases
• Encabezado mas simple
• Protocolo mas seguro IPSec
• Se representa con 8 grupos de 4 dígitos hexadecimales
• Cada grupo hexadecimal se denomina hexteto
• Usa “/” como indicador del prefijo de red, acompañado con un valor de 0- 128, por
defecto es /64
• 2001:0DB8:CAFE:3DEA:67EA:843B:C289:10FB/64
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
2001:0DB8:CAFE:3DEA: 67EA:843B:C289:10FB /64
Prefijo ID de InterfazLongitud prefijo
Dirección IPV6
2001:0DB8:CAFE:3DEA:67EA:843B:C289:10FB /64
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Tipo de direcciones IPV6
Unicast, Multicast, Anycast
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
• DIRECCIONES ESPECIALES IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
REGLAS REDUCCIÓN DE DIRECCIONES IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
• Reducción de Direcciones IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Reducir la dirección IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Asignación de direcciones
IPV6Direcciones GUA y LLA
• Direccionamiento estático IPV6
• Direccionamiento por
Autoconfiguración
• Direccionamiento por DHCP IPV6
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Asignación de dirección IPv6 estática
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
RS mensaje de
solicitud
RA mensaje de
Anuncio
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Mensaje ICMPv6 RA :
•Prefijo de red y longitud del prefijo : esto le dice al dispositivo a qué red
pertenece.
•Dirección de puerta de enlace predeterminada : esta es una LLA de IPv6, la
dirección IPv6 de origen del mensaje RA.
•Direcciones DNS y nombre de dominio : estas son las direcciones de los
servidores DNS y un nombre de dominio.
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Métodos para los mensajes RA:
•Método 1: SLAAC : "Tengo todo lo que necesita,
incluido el prefijo, la longitud del prefijo y la dirección de la
puerta de enlace predeterminada".
•Método 2: SLAAC con un servidor DHCPv6 sin
estado : "Aquí está mi información, pero necesita obtener
otra información, como direcciones DNS, de un servidor
DHCPv6 sin estado".
•Método 3: DHCPv6 con estado (sin SLAAC) - “Puedo
darle la dirección de su puerta de enlace
predeterminada. Necesita pedirle a un servidor DHCPv6
con estado toda su otra información ".
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
SLAAC (stateless address autoconfiguration)
Global unicast addresses (GUA) y Link-local addresses (LLA)
"%“11. ID de zona o ID de alcance. El sistema operativo
lo utiliza para asociar el LLA con una interfaz específica.
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Mensajes RA•A Flag : bandera de configuración automática de direcciones.
•Flag O : bandera de Otra información está disponible desde un servidor DHCPv6 sin estado.
•Flag M : Bandera Use un servidor DHCPv6 con estado para obtener una GUA IPv6.
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Proceso para generar ID de Interfaz Stateless
✔ Randomly generated (DAD)
✔ EUI 64
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Proceso EUI-64 Identificador único extendido (EUI)
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Práctica EUI-64
© 2019 Cisco and/or its affi l iates. All rights reserved. Cisco Confidential
Diseño e instalación de redes orientado a la transición IPv4-IPv6
Corporación Unificada Nacional de Educación Superior
CUN
Julio 2021