The IPv6 Training Guide

www.routing.co.il/ipv62

About IPv6 education

IPv6 could be the #1 limiting factor for IPv6 Implementation. While equipment and software still suffer from missing features and bugs, IPv6 knowledge within IT staff is in a much worse condition.

www.routing.co.il/ipv63

IPv6 Training role

IPv6 training should be regarded as a broad subject, not a narrow, limited, “for experts”, domain. IPv6 (as a replacement for IPv4) should be present at all IT systems: hosts and servers, Routers and

Switches, software and hardware, load-balancers, firewalls, DNS servers, WEB servers, B-RAS servers, storage systems, security servers..etc.

www.routing.co.il/ipv64

Who should I train ?

EVERYBODY ! Computer technicians, network admins, security specialists, voice specialists, database administrators, software engineers, storage experts, help-desk at enterprise, help-desk at SP…and above all.. …. CIO !!!

www.routing.co.il/ipv65

What should I teach? IPv6 touches many IT subjects: Networking: Basics of addressing in routers, switches servers and hosts. Software: special courses tailored for programmers. Security: Aspects of IPv6 security. Platform specific courses: IPv6 in:

CiscoMicrosoftLinuxStorage certificationsCloud certificationsetc.

www.routing.co.il/ipv66

Example 1: IPv6 Technical Essentials Course

Essentials (or basic) course should be taken by all

technical levels. This course should be focused on:

IPv6 addressing ICMPv6 (SLAAC, Path MTU Discovery)Basics of IPv6 security (protocol vulnerabilities, + IPSec) Networking and Routing (L2 support, routing)Upper layer protocols (TCP, UDP, DNS)Transition: manual tunneling, dual stack

www.routing.co.il/ipv67

Example 2: IPv6 Advanced Technical Course

Advanced course (for SP) , should be taken by network experts only: This course is Cisco focused, and includes:

Lab setup with 9 routers, 6 computersDNS + DHCPv6 lab (including DHCP-PD)Routing (OSPF, IS-IS, MP-BGP)6RD Lab6PE (MPLS) labQoS + Netflow labsBasic Cisco security (IOS Firewall)IPv6 Multicast

www.routing.co.il/ipv68

IPv6 at Cisco Training CCNA – RS: mentioned in some places. CCNP – Route exam: Participants should be able to implement ipv6 d design/routing/redistribution, including “IPv6 inter-operation with IPv4” CCIE: What you need to accomplish in the LAB:

Build your IPv6 training

Plan

www.routing.co.il/ipv610

IPv6 training plan – IPv6 managerIPv6 training should have a cross-organization manager.Training dept. can help, but manager should be able to lead technical effort.IPv6 manager should be responsible to the creation and the implementation of the IPv6 training program.Other managers should participate and support this effort !!!

www.routing.co.il/ipv611

IPv6 training plan - teamSTART TODAY → create a “core team”.Not all team members should be “top experts”.Core team should be enthusiasts, “teachers” for all else.Should have access to the IPv6 Lab Should come from remote corners of the organization.

www.routing.co.il/ipv612

IPv6 training plan - Training Lab Lab should be “IPv6 only” lab (this is hard..)Should be big enough for needs (need will vary on time)Should be used for real IPv6 implementation experiments, side by side with other people doing their first steps.Lab should have a time-table.Lab should be the center of the IPv6 training plan.

www.routing.co.il/ipv613

IPv6 training plan - Training Lab(cont.) Use free tools whenever you can.Use old equipment if you find it (try to upgrade software)Use virtual equipment whenever possible.Use free/open source tools.....but..if you don't find what you need – Buy !!!(The price of your team not ready for the job will be much higher later)

www.routing.co.il/ipv614

IPv6 training plan - Training Lab(cont.) Equipment that should be used:Windows workstations (All needed OS versions)Windows servers (all needed OS versions)Unix/Linux serversRouters (L3 switches)L2 SwitchesFirewallsLoad balancersSoftware servers (WEB, DHCP, DNS,ERP, CRM, IPAM, etc.)IT Services from outside: cloud services, web hosting, storage etc.Inside applications

www.routing.co.il/ipv615

IPv6 training plan - activitiesIPv6 training activities should be small, and carry immediate results (even if activity is an instructor led course).Each activity should be carried by all relevant participants, and guided by a single participant that has prepared the session (and thus became an “expert”).Some Examples:IPv6 session: configure IPv6 addresses on hosts and routers. IPv6 session: capture ICMPv6 traffic. Identifying the way that ICMPv6 resolve MAC addresses.IPv6 session: Configure IPv6 on a DNS/WINS server. Adding AAAA records. IPv6 session: Configure 6RD setup.Etc.

www.routing.co.il/ipv616

Minimum IPv6 training ?Anything is better than nothing:If you have a single computer you can IPv6-ping the loopback address: ping ::1If you have 2 computers (and a cross cable) you can configure static ipv6 addresses.

www.routing.co.il/ipv617

More than a minimum IPv6 training.. Linux is free, Apache is free, bind is free, Wireshark is free, Firefox is free.One computer can “browse” a web-site located in the other computer. Bind will support DNS and allow us a domain name.Apache will be the web server.Wireshark will show us what is really happening.