Budapest Ipv6

Internet Protocol Version Six
Rafaª Maszkowski <rzm@icm.edu.pl>

August 19, 1999
Budapest, August 1999
Typeset by FoilTEX
why new version
2128 possible addresses
header simplication: less limitations, more exible processing
packets up to 232+ 40 bytes
more exible IP options processing
more possibilities of streams labeling
authentication and encryption (also for IPv4)
Typeset by FoilTEX 1
how and when
preparing hosts and routers implentations
need to dene additional protocols (key exchange, registration, readdressing)

and implement them
carefully - an assumption of very long coexistence of both versions
nobody knows when (year 2010?), careful address assignment policy gives more
time
IPv4 header (RFC 791)
header elds
Version IHL Type of Service Total Length
Identification Flags Fragment Offset
Time to Live Protocol Header Checksum
Source Address
Destination Address
IPv6 denition: RFC 2460
IP header elds
Version Traffic Class Flow Label
Payload Length Next Header Hop Limit
Source Address
Destination Address
IPv6 addresses
types
unicast, anycast, multicast
global, site-local, link-local
notation (RFC 1884):
00111111 11111110 00001001 00000010 00000000 00000000 00000000 00000000

00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000001
= 3F FE 09 02 00 00 00 00 00 00 00 00 00 00 00 01
= 3ffe:902:0:0:0:0:0:0:0:0:0:0:0:0:0:1 = 3ffe:902::1
= tEV9S=Hl@N%k0Cjq-Jsb< (RFC 1924)

headers order
headers: IPv6, Hop-by-Hop Options, Destination Options, Routing, Fragment,

Authentication, Encapsulating Security Payload, Destination Options, upper-layer
example:
IPv6 Header Routing Header Fragment Header fragment of TCP
header + data
Next Header = Next Header = Next Header =
Routing Fragment TCP
what stay as it is or changes a little
TCP, UDP - completely (except pseudoheader and jumbograms)
BGP i RIPng - similar like for IPv4 only with IPv6 addresses
FTP etc. - sending addresses in data problem
Application Programming Interface - big changes
what is changed
IP
ICMP - mostly like ICMPv4
IGMP - now called Multicast Listener Discovery, part of ICMPv6
ND -some of ARP, some of ICMP
automatic readdressing protocol in preparation
encryption and authentication, IPSec:
Authentication Header (RFC 2402)
Next Header Payload Len RESERVED

Security Parameters Index (SPI)
Sequence Number Field
Authentication Data (variable)
SPI: Security Parameter Index

SNF: additional securing against false packets
obligatory algorithms: MD5, SHA-1
encryption and authentication, IPSec: Encapsulating
Security Payload (RFC 2406)
Security Parameters Index (SPI)

Sequence Number
Payload Data (variable)
Padding (0-255 bytes)

Pad Length Next Header
Authentication Data (variable)
possible use for both encryption and (optional) authentication

obligatory algorithms: DES CBC, MD5, SHA-1, NULL (encryption), NULL
(authentication)
hosts and routers implementations
list in http://playground.sun.com/pub/ipng/html/ipng-implementations.html
my experience: Linux, Solaris
Linux conguration: http://www.bieringer.de/linux/IPv6/IPv6-HOWTO/

IPv6-HOWTO.html
IPv4-IPv6 communication
tunneling IPv6in IPv4 i IPv6

NAT, NAT-PT (with state memory), not translating IPsec and DNSSEC,
http://www.cs.washington.edu/research/networking/napt/reports/usenix98/
SIIT (Stateless IP/ICMP Translator)
IPv6-nodes must have an IPv4-translated [to IPv6] address assigned
not translating options and hop-by-hop header
translating IPsec ESP, could translate AH
socks-trans: http://www.socks.nec.com/socks-trans/translator.
html
IPv6 in practice, 6BONE
World: http://www.6bone.net/
In Poland: http://www.6bone.pl/
At ICM: ftp://6bone-gw.6bone.pl/
6BONE maps: the world, Poland
MERIT TELEBIT UNI-C CICNET
AS237 AS3263 AS1835 AS1225
INR SICS
AS2895 AS2839
B B
ATT... B
AS5623 B B B
B B
world
Poland
LO13 b
AS1887 SZCZECIN
D
b AS1887 B
2 3 bg
BRAVE 6 redoctober TORMAN
AS1887 7 magellan B AS65432
C 3 8 mailbox B 1
B B ICM-PL1
AS8664
CETI B
ELEPHANT AS1919 b
AS9999 3 B
5 ICM-PL
B
B - BGP4+ AS8664
b - iBGP4+ 0 1
X - not yet working
i - some IGP PMWAW 4
S - static S ZWIERACZ 6
0 - 3ffe:902 subnet IREPW 7
3 - host # in the subnet AMG 8
PG 9
Rafal Maszkowski <rzm@icm.edu.pl>, 19981018, xfig 3.2.2 CEU A
dynamic routing, BGP4 (RFC 1771)
developed since 1989 (RFC 1105)
connections: TCP, port 179
Autonomous System, ASN, assigning subnets to ASN
AS-path, attributes (ORIGIN, AS PATH, NEXT HOP, MED, ...)
redistribution, policy: attributes, ltration of ASNs and nets
dynamic routing, BGP4+ (RFC 2283)
not big changes in respect to IPv4 BGP
specialized routers: Cisco, ...
UNIX routers: mrt, gated, zebra
BGP4+, example mrtd dialog
Oct 8 20:52:23 [7] BGP4+ 3e:902:1::2 recv attribute:
ORIGIN: IGP
ASPATH: 65432 1887 2839
NEXT HOP: 158.75.63.81
BGP4+ 3e:902:1::2 announce family 2 subfamily 1 nhalen 32
NEXT HOP: 3e:902:1::2
NEXT HOP: fe80::9e4b:3f51
BGP4+ 3e:902:1::2 recv announce:
3e:200::/24
BGP Add Route Head: 3e:200::/24
BGP New Route: 3e:200::/24 nh 3e:902:1::2 proto bgp
RIB6 update: 3e:200::/24 nh 3e:902:1::2 proto kernel pref 250 -> 20
RIB6 active: 3e:200::/24 nh 3e:902:1::2 proto bgp pref 20
BGP4+ example conguration - mrtd.conf
! to SICS
! the one we got from SICS
access-list 5 permit 3e:280::/40
! the one we got from CICNET
!access-list 5 deny 3e:902::/32
! bogus static temporary x
access-list 5 deny 3e:200::/32
! SICS's net
access-list 5 deny 3e:200::/24 rene
! default
access-list 5 deny 3f00::/8
! pass
access-list 5 permit all
!
router bgp 8664
network 3e:902:0::/48 ! CICNET
network 3e:280::/40 ! SICS
!network 3e:200:1:a::/64 ! SICS
network 3e:140f:1::/48 ! UNI-C
redistribute static
aggregate-address 3e:902::/32 summary-only
aggregate-address 3e:280::/40 summary-only
aggregate-address 3e:140f:1::/48 summary-only
! SICS
neighbor 3e:200:1:a::1 remote-as 2839
neighbor 3e:200:1:a::1 bgp4+ 1
neighbor 3e:200:1:a::1 distribute-list 5 out
!
6BONE routing policy
BGP distribution restrictions and multihome site problem

Budapest Ipv6

Enviado por

Dados do documento

Descrição original:

Título original

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

Budapest Ipv6

Enviado por

Direitos autorais:

Formatos disponíveis

Internet Protocol Version Six

Rafaª Maszkowski <rzm@icm.edu.pl>

Budapest, August 1999

 2128 possible addresses

 header simplication: less limitations, more exible processing

 packets up to 232+ 40 bytes

 more exible IP options processing

 more possibilities of streams labeling

 authentication and encryption (also for IPv4)

 preparing hosts and routers implentations

 need to dene additional protocols (key exchange, registration, readdressing)

 carefully - an assumption of very long coexistence of both versions

 notation (RFC 1884):

00111111 11111110 00001001 00000010 00000000 00000000 00000000 00000000

= tEV9S=Hl@N%k0Cjq-Jsb< (RFC 1924)

headers: IPv6, Hop-by-Hop Options, Destination Options, Routing, Fragment,

 TCP, UDP - completely (except pseudoheader and jumbograms)

 FTP etc. - sending addresses in data problem

 Application Programming Interface - big changes

 ICMP - mostly like ICMPv4

 IGMP - now called Multicast Listener Discovery, part of ICMPv6

 ND -some of ARP, some of ICMP

 automatic readdressing protocol in preparation

Next Header Payload Len RESERVED

Authentication Data (variable)

SPI: Security Parameter Index

Security Parameters Index (SPI)

Payload Data (variable)

Padding (0-255 bytes)

Authentication Data (variable)

possible use for both encryption and (optional) authentication

 my experience: Linux, Solaris

 Linux conguration: http://www.bieringer.de/linux/IPv6/IPv6-HOWTO/

 tunneling IPv6in IPv4 i IPv6

 developed since 1989 (RFC 1105)

 connections: TCP, port 179

 Autonomous System, ASN, assigning subnets to ASN

 AS-path, attributes (ORIGIN, AS PATH, NEXT HOP, MED, ...)

 redistribution, policy: attributes, ltration of ASNs and nets

 not big changes in respect to IPv4 BGP

 specialized routers: Cisco, ...

 UNIX routers: mrt, gated, zebra

 BGP distribution restrictions and multihome site problem

Você também pode gostar

2128 possible addresses

header simplication: less limitations, more exible processing

packets up to 232+ 40 bytes

more exible IP options processing

more possibilities of streams labeling

authentication and encryption (also for IPv4)

preparing hosts and routers implentations

need to dene additional protocols (key exchange, registration, readdressing)

carefully - an assumption of very long coexistence of both versions

notation (RFC 1884):

TCP, UDP - completely (except pseudoheader and jumbograms)

FTP etc. - sending addresses in data problem

Application Programming Interface - big changes

ICMP - mostly like ICMPv4

IGMP - now called Multicast Listener Discovery, part of ICMPv6

ND -some of ARP, some of ICMP

automatic readdressing protocol in preparation

my experience: Linux, Solaris

Linux conguration: http://www.bieringer.de/linux/IPv6/IPv6-HOWTO/

tunneling IPv6in IPv4 i IPv6

developed since 1989 (RFC 1105)

connections: TCP, port 179

Autonomous System, ASN, assigning subnets to ASN

AS-path, attributes (ORIGIN, AS PATH, NEXT HOP, MED, ...)

redistribution, policy: attributes, ltration of ASNs and nets

not big changes in respect to IPv4 BGP

specialized routers: Cisco, ...

UNIX routers: mrt, gated, zebra

BGP distribution restrictions and multihome site problem