Presentation is loading. Please wait.

Presentation is loading. Please wait.

IPv6: Hype or Reality? Tim Helming Director of Product Management Corey, Nachreiner, CISSP, Sr. Network Security Strategist,

Published byGavin Manning Modified over 10 years ago

Similar presentations

Presentation on theme: "IPv6: Hype or Reality? Tim Helming Director of Product Management Corey, Nachreiner, CISSP, Sr. Network Security Strategist,"— Presentation transcript:

1 IPv6: Hype or Reality? Tim Helming Director of Product Management Corey, Nachreiner, CISSP, Sr. Network Security Strategist,

2 Welcome! IPv6: Hype, or Reality?Answer: Yes!

3 Youre here because v6 matters to you Were here to help!Things well answer: How soon will I need v6? How do I prepare? What will the transition be like? How can WatchGuard help me?

4 Come On In: The Waters Fine!

5 IPv4 is dead…long live IPv4! Last 2 /8s Allocated… So, what does v6 adoption look like?

6 IPv6 is Everywhere….sort of… Breadth, not depth All regions are participatingTraffic Volumes Low Source: Elise Gerich, IANA/ICANN

7 Sometimes unofficial data is the most interesting… IPv4: 5.5 Gbps worldwide IPv6: 407 kbps for a big /12 IP Background Radiation Graphic: Geoff Huston, APNIC

8 IPv6 Primer IPv6 Field Guide OK….Pencils and Binoculars Ready?

9 IPv6 Technical Brief

10 Whats the problem with IPv4? Simply put, it doesnt offer enough addresses… World Population: Around 6.8 billion Number of IPv4 addresses: Around 4.3 billion

11 It Gets Worse… People (personal computers) arent the only thing online…

12 IPv6 Technical Benefits Exponentially more IP addresses Fixed headers means faster traffic True end-to-end addressing. (No more NAT?) Built in end-to-end security (IPSec) Built in QoS functionality Autoconfiguration Great for mobiles

13 Quick IPv4 Address Recap Developed in 80s 2 32 4.3 billion possible addresses (4,294,967,296) Generally represented in decimal NAT allows more (1000s of devices can hide behind one IPv4 address) Developed in 80s 2 32 4.3 billion possible addresses (4,294,967,296) Generally represented in decimal NAT allows more (1000s of devices can hide behind one IPv4 address) 208.132.96.25 32-bit (four bytes) long One byte = 0 - 255 1101000.10000100.01100000.00011001

14 Dissecting an IPv6 Address Developed in 1998 (RFC 2460) 2 128 3.4 x 10 38 or 340 Undecillion (what?) possible addresses Generally represented in hexadecimal (HEX) Who needs NAT! Developed in 1998 (RFC 2460) 2 128 3.4 x 10 38 or 340 Undecillion (what?) possible addresses Generally represented in hexadecimal (HEX) Who needs NAT! 2560:1900:4545:0003:0200:F8FF:FE21:67CF 128-bits (16 bytes) long Two bytes = 0 – FFFF (65535) 0010000111011010000000001101001100000000000000000010111100111011 0000001010101010000000001111111111111110001010001001110001011010 340 282 366 920 938 463 463 374 607 431 768 211 456

15 2001:19:545:3:200::67CF Shortening IPv6 Addresses 2001:0019:0545:0003:0200:0000:0000:67CF 2001:19:545:3:200:0:0:67CF Remove preceding zeros Remove groups of zeros 2001:19:545:3:200:::67CF

16 Reading HEX Primer Hexadecimal (base 16) is a numeral system with sixteen symbols 0-9 = well… zero through nine (duh) A-F = 10 – 15 10,11,12,13 = 16, 17, 18. 19 Converting HEX to decimal: 4D5F (4 x 16 3 ) + (13 x 16 2 ) +(5 x 16 1 ) + (15 x 16 0 ) (16384) + (3328)+(80)+(15) 19807 or (0100110101011111)

17 Types of IPv6 Addresses Unicast Address – a one-to-one address: Global – publicly routable address assigned by IANA (2000::/3) Link local – Local address assigned for auto configuration or neighbor discovery, etc… not routed. (FE80::/10) Unique local – like private addresses. Just used at local site (FC00 or FD00::/8) Special – special addresses like loopback or default gateway Compatible – used for IPv4 to IPv6 migration Multicast Address – an address intended for one-to-many communication: Multicast – sent to members in a multicast group Broadcast – sent to all address on a network (technically, now a all- nodes multicast) Anycast Address – a new address used to send to the first receipient of a group

18 IPv6 Hierarchical Addressing 2561:1900:4545:0003:0200:F8FF:FE21:67CF Interface IDSLA IDGlobal Routing Prefix TLA IDNLA ID Prefix

19 IPv6 Subnetting CIDR only (slash notation) No concept of subnet masks / followed by prefix size (decimal number 1-128) CIDR only (slash notation) No concept of subnet masks / followed by prefix size (decimal number 1-128) 2001:1900:4545:0003:0200:F8FF:FE21:67CF 2001:1900:4545::/48= 2001:1900:4545:0000:0000:0000:0000:0000 - 2001:1900:4545:FFFF:FFFF:FFFF:FFFF:FFFF /16 /32/48 CIDR to range tool: http://www.ultratools.com/tools/ipv6CIDRToRange

20 What about MAC? Hosts generate a unique Interface Identifier Called 64-bit Extended Unique Identifier or EUI-64 48-bit MAC addresses converted by adding FFFE to the middle 1.MAC Address: 90-3A-2B-06-2C-D1 2.Split in half: 90-3A-2B06-2C-D1 3.Insert FFFE: 90:3A:2B:FF:FE:06:2C:D1 4.Change 7 th bit to 1: 92:3A:2B:FF:FE:06:2C:D1

21 What about ARP? IPv6 replaces ARP with the Neighborhood Discovery Protocol. This new protocol combines many functions: Address resolution (uses ICMPv6 Neighbor advertisement and solicitation msgs) Duplicate address detection Next-Hop determination Neighbor unreachable detection Host-to-Host Functions Router Discovery Prefix Discovery Parameter Discovery Address Autoconfiguration Host/Router Discovery FunctionsRedirect Function

22 Simplified Headers Mean Faster Traffic VersionIHL Type of Service Total Length Identification Flags Fragment Offset Time to Live ProtocolHeader Checksum Source Address Destination Address OptionsPadding IPv4 Header (20 bytes) Version Traffic Class Flow Label Payload Length Next Header Hop Limit Source Address Destination Address IPv6 Header (40 bytes) Stays sameDroppedName/position changeNew

23 IPv6 OS Support

24 Field Guide to Common IPv6 Addresses

25 Common Address Field Guide (1) Loopback address (was 127.0.0.1) Link-local address (was 169.254.0.0/16) 0000:0000:0000:0000:0000:0000:0000:0001 or ::1 FE80::/10 FE80::28BB:0ACB:3F57:D837

26 Common Address Field Guide (2) Default route (was 0.0.0.0/0) Unique Local Address or ULA (Also called Site Local. Similar to private networks) 0000:0000:0000:0000:0000:0000:0000:0000/0 or ::/0 FC00::/7 FC00::28BB:0ACB:3F57:D837

27 Common Address Field Guide (3) Multicast address (was 224.0.0.0/4) Anycast address (new – send to the nearest node in a group) FF00::/8 FF02::1 Looks like a unicast address

28 Common Address Field Guide (4) 6to4 addresses 2002::/16 16 bits32 bit16 bits64 bits 2002IPv4 address (hex) SLA IDInterface ID 207.134.42.111 = 2002:CF86:2A6F::/48

29 Common Address Field Guide (5) Unique Global (public IP address) 2000::/3 2260:F3A4:32CB:715D:5D11:D837

30 Common Address Field Guide (6) Other addresses/ranges of lesser note: 42::/16 - The Retiolum Prefix 2001::/32 -Teredo tunneling (transition mechanism) 2001:2::/48 -Assigned to BMWG 2001:10::/28 - ORCHID (Overlay Routable Cryptographic Hash Identifiers) 3FFE::/16 – 6Bone IPv6 Testbed addresses (legacy)

31 IPv6 Technical Summary

32 Glossary IP address: Internet protocol address. An address network devices use to identify one another NAT: Network address translation. A standard to hide many special IPs behind one real IP Hexadecimal: A base-16 numbering system consisting of 0-F Routing Prefix: The first 64-bits of an IPv6 address, which identifies routing info Interface ID: The last 64-bits of an IPv6 address, which identifies a single host CIDR: Classless Inter-Domain Routing. A scalable method for assigning IPs and routing packets MAC: Media Access Control address. A unique address for specific network hardware ARP: Address resolution protocol. A standard for IPv4 devices to find one another locally EUI-64: A unique 64-bit identifier of IPv6, based on MAC Network Discovery (ND) Protocol: IPv6 replacement for ARP and more…

33 Glossary (cont.) Addresses Unicast Address: Specific One-to-one address Multicast Address: An address to communicate from one-to-many Anycast Address: A new type of address to communicate from one to the first in a group to receive. Loopback: Address that represents the local host Local Link: Required, non-routable address that connects to local network, and is used for autoconfiguration Default Route: Address that represents where to send non-local traffic Unique Local: Non-global address similar to IPv4 private networks 6to4: One of many IPv6 transition mechanisms Unique Global: A specific, publicly routable IPv6 host address

34 Things We Havent Covered (Lots) IPv6 SecurityIPv6 QoSDHCPv6IPv6 & DNSICMPv6Transition and Tunneling mechanismsHeader ExtensionsIPv6 MobilityAnd much more…

35 Extra Reading Material for Geeks IPv6 Request For Comments (RFCs): RFC 1752 (1995): The Recommendation for IP Next Generation (IPng) Protocol RFC 2460 (1998): Internet Protocol Version 6 (IPv6) Specification RFC 2462: IPv6 Stateless Address Autoconfiguration RFC 3775: Mobility Support in IPv6 RFC 2893: Transition Mechanisms for IPv6 Hosts and Routers RFC 2373: IP Version 6 Addressing Architecture And many more (over 70 RFCs related to IPv6 ): http://oversteer.bl.echidna.id.au/IPv6/RFC/

36 Wrapping Up

37 You Have Some New IPv6 Knowledge….Now What? Continue Learning and Exploring! Start Playing: Use v6 internally now, even if just in a lab Attend WatchGuards Upcoming Webinars!

38 Thank You!

Download ppt "IPv6: Hype or Reality? Tim Helming Director of Product Management Corey, Nachreiner, CISSP, Sr. Network Security Strategist,"

Similar presentations

IPv6 Addressing Details LAC NIC VII October 26, 2004 Wilfried

IPv6 Addressing Details LAC NIC VII October 26, 2004 Wilfried
Overall Outline Introduction to IPv6, Addressing & Routing ICMPv6 and Neighbour Discovery DNSSecurity QoS, Mobility Multicast, Transition OS and Platform.

Overall Outline Introduction to IPv6, Addressing & Routing ICMPv6 and Neighbour Discovery DNSSecurity QoS, Mobility Multicast, Transition OS and Platform.
Planning Your Conversion from IPv4 to IPv6 John Curran ARIN President & CEO This presentation describes the impending depletion of Internet Protocol version.

Planning Your Conversion from IPv4 to IPv6 John Curran ARIN President & CEO This presentation describes the impending depletion of Internet Protocol version.
IPv6: No Longer Optional John Curran President & CEO, ARIN.

IPv6: No Longer Optional John Curran President & CEO, ARIN.
Demystifying IPv6: Ensuring a Smooth Transition John Curran ARIN President & CEO This presentation describes the impending depletion of Internet Protocol.

Demystifying IPv6: Ensuring a Smooth Transition John Curran ARIN President & CEO This presentation describes the impending depletion of Internet Protocol.
IPv6 INTRODUCTION.

IPv6 INTRODUCTION.
IPv6 Addressing John Rullan Cisco Certified Instructor Trainer Thomas A. Edison CTE HS Stephen Lynch Network Architect, CCIE #36243 ABS Technology Architects.

IPv6 Addressing John Rullan Cisco Certified Instructor Trainer Thomas A. Edison CTE HS Stephen Lynch Network Architect, CCIE #36243 ABS Technology Architects.
The TCP/IP Model  Internet Protocol Address.  Defined By IANA [Internet Assigned Number Authority] in 1970.  IP Address is a Logical Address and it.

The TCP/IP Model  Internet Protocol Address.  Defined By IANA [Internet Assigned Number Authority] in  IP Address is a Logical Address and it.
1. Also known as IPng (next generation) Developed to alleviate IPv4 address exhaustion A new version of the Internet Protocol Improve upon IP protocol.

1. Also known as IPng (next generation) Developed to alleviate IPv4 address exhaustion A new version of the Internet Protocol Improve upon IP protocol.
Objectives: Chapter 4: IP Addressing  Internet Architecture IPv4 Addressing IP address Classes Subnets and subnet mask Subnets design with IP addressing.

Objectives: Chapter 4: IP Addressing  Internet Architecture IPv4 Addressing IP address Classes Subnets and subnet mask Subnets design with IP addressing.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA TCP/IP Protocol Suite and IP Addressing Halmstad University Olga Torstensson 035-167575

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA TCP/IP Protocol Suite and IP Addressing Halmstad University Olga Torstensson
Connectivity  Colocation  Cloud Services Why You Can’t Ignore IPv6 Presented by Kirk Coviello VP of Support Services, Digital West Networks, Inc.

Connectivity  Colocation  Cloud Services Why You Can’t Ignore IPv6 Presented by Kirk Coviello VP of Support Services, Digital West Networks, Inc.
Introduction to IPv6 Presented by: Minal Mishra. Agenda IP Network Addressing IP Network Addressing Classful IP addressing Classful IP addressing Techniques.

Introduction to IPv6 Presented by: Minal Mishra. Agenda IP Network Addressing IP Network Addressing Classful IP addressing Classful IP addressing Techniques.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 26 IPv6 Addressing.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 26 IPv6 Addressing.
Introduction to IPv6 Network & Application Passakon Prathombutr Next Generation Internet (NGI) National Electronics and Computer Technology Center.

Introduction to IPv6 Network & Application Passakon Prathombutr Next Generation Internet (NGI) National Electronics and Computer Technology Center.
ZyXEL Confidential Address Autoconfiguration Feng Zou SW2 ZyXEL Communications Corp. 04/11/2006.

ZyXEL Confidential Address Autoconfiguration Feng Zou SW2 ZyXEL Communications Corp. 04/11/2006.
Future Directions For IP Architectures Ipv6 Cs686 Sadik Gokhan Caglar.

Future Directions For IP Architectures Ipv6 Cs686 Sadik Gokhan Caglar.
IPv6 The New Internet Protocol Integrated Network Services Almerindo Graziano.

IPv6 The New Internet Protocol Integrated Network Services Almerindo Graziano.
IPv6 Introduction What is IPv6 Purpose of IPv6 (Why we need it)Purpose of IPv6 IPv6 Addressing Architecture IPv6 Header ICMP v6 Neighbor Discovery (ND)

IPv6 Introduction What is IPv6 Purpose of IPv6 (Why we need it)Purpose of IPv6 IPv6 Addressing Architecture IPv6 Header ICMP v6 Neighbor Discovery (ND)
1 IPv6 5A7CE IP Next Generation (IPv6) what?what? why?why? when?when?

1 IPv6 5A7CE IP Next Generation (IPv6) what?what? why?why? when?when?

Similar presentations

Ads by Google