Presentation on theme: "IPv6 for eBusiness www.ipv6.org.au IPv6 For eBusiness Melbourne Workshop March 22, 2007 Tony Hill ISOC-AU IPv6 SIG Mike Biber IPv6 Forum Downunder Nurani."— Presentation transcript:
IPv6 for eBusiness IPv6 For eBusiness Melbourne Workshop March 22, 2007 Tony Hill ISOC-AU IPv6 SIG Mike Biber IPv6 Forum Downunder Nurani Nimpuno APNIC AusRegistry
IPv6 for eBusiness 2 IPv6 for eBusiness Workshop Agenda 1. Mapping and Awareness: This will describe the IPv6 capabilities that Australian businesses can access right now, and what is needed for further IPv6 deployment. 2. Enabling: This will discuss the Enabling Tools developed by this project, including business case scenarios, a Return On Investment evaluator, a transition checklist and an Easy Access Device. 3. Infrastructure: This session will cover underpinning infrastructure issues for IPv6, the auDA IPv6 Registry Testbed and the Domain Name System under IPv6. 4. IPv6 Easy Access Demonstration: The IPv6 Easy Access Device provides access to IPv6 tunnelling even when your ISP supplies only IPv4. It provides a simple, low-cost one-step solution to achieving IPv6 connectivity for small to medium businesses. A demonstration of the device and its capabilities. Plus IP addressing issues from APNIC … potential exhaustion of the current IPv4 space, and IPv4 and IPv6 address allocation in the Asia Pacific region
IPv6 for eBusiness 3 IPv6e-B Mapping Presented by Tony Hill President Internet Society of Australia Chair ISOC-AU IPv6 SIG
IPv6 for eBusiness 4 Past IPv6 Australian Activity Launch of IPv6 Forum Downunder Participation in IPv6 Summits, Washington DC Formation of ISOC-AU IPv6 SIG Member of the Asia Pacific IPv6 Task Force Australian National ICT Industry Alliance –Endorsement of national discussion Engagement with Australian Government Tony Hill Keynote speaker at Global IPv6 Summit 2005, Korea First Australian IPv6 Summit 2005, Canberra
IPv6 for eBusiness 5 IPv6 in 2006 for Australia IPv6 Forum Downunder/ISOC-AU co-branding IPv6 World Congress Meeting Feb 2006 IPv6 Readiness Survey –h–http://www.ipv6.org.au/survey.html Second Australian IPv6 Summit 2006, Canberra –h–http://www.isoc-au.org.au/ipv6summit/ IPv6 for e-Business project commenced 2006 –h–http://www.ipv6.com.au 2nd Australian IPv6 Summit 2006 – follow-up
IPv6 for eBusiness 6 Key International IPv6 Issues for Australia Key Trading & Strategic Partners –Japan: developing since 1998, commercial IPv6 offerings –South Korea: IT839 mandating IPv6 by 2010 –China: IPv6 demonstration Projects by 2008 –USA: defence & government backbones IPv6 by 2008
IPv6 for eBusiness 7 Map of the IPv4 Internet Source: xkcd.com, used under license -
IPv6 for eBusiness 8 IPv6 for e-Business Project IPv6 for e-Business is a project for documenting, developing business tools, raising awareness and assessing readiness for Internet Protocol version 6, to build Australian capacity to take advantage of future innovation, especially in the area of business-to-business supply chains.
IPv6 for eBusiness 9 IPv6 for e-Business Team Kate Lance, (former) ED of ISOC-AU Narelle Clark, VP of ISOC-AU Mike Biber, IPv6 Forum Tony Hill, President of ISOC-AU Holly Raiche, new ED of ISOC-AU
IPv6 for eBusiness 10 IPv6 for e-Business Project IPv6 for e-Business has four aspects: Mapping: to document Australian services, software and technologies currently taking advantage of IPv6 as of July 2006Mapping Enabling: to develop integrated business models, checklists and tools to enable Australian businesses to easily adopt IPv6Enabling Awareness: to provide information resources, documents and seminars to build broad awareness of IPv6 opportunitiesAwareness Infrastructure: to assess infrastructure support for applications with the IPv6-ready.au Registry testbedInfrastructure
IPv6 for eBusiness 12 IPv6e-B Project Activity 1 MAPPING
IPv6 for eBusiness 13 Service Providers for Australia Telstra AARNet NTT Australia IPv6 Data FX Pacific Internet CityLink (NZ) UUNet iiNet AusRegistry Service providers with IPv6 addresses advertised in the last 12 months: IPv6 Summit 2006 connectivity provided through AARNet
IPv6 for eBusiness 14 IPv6 Survey – Nov % interested in IPv6 80% have implemented or are learning 63% will offer to customers or partners by 2008 Key barriers – top three: –Lack of connectivity –Lack of business case –Lack of customer demand 63% expect connectivity by 2008 n > 100
IPv6 for eBusiness 15 IPv6e-B IP Addressing Presented by Nurani Nimpuno/Gerard Ross APNIC
IPv6 for eBusiness 16 IPv6e-B Project Activity Enabling Presented by Mike Biber Convener IPv6 Forum Downunder
IPv6 for eBusiness 17 IPv6e-B Project Activity 2 Enabling 1.Business Case Models 2. ROI Assessment Tools 3. Transition Checklists 4. Easy Access Device
IPv6 for eBusiness 18 IPv6e-B Project Activity 2 Enabling 2.1 Business Case Scenarios 1.The 'do nothing' case 2.It's inevitable, may as well go with the flow 3.Competitive differentiation 4.Competitive protection 5.Return on investment 6.Known opportunities - understood and tangible 7.Unknown opportunities - preparing fertile ground
IPv6 for eBusiness 19 Business Case 1 – Do Nothing 2.1 'Do nothing' case All scenario studies should start with the 'do nothing' case. IPv6 was developed with a strong design goal of being backwards and forwards compatible. In a broad sense, the only applications or network communications that will 'break' are the cases where they are deliberately designed to do so. Applications specifically written for IPv6 may not work as effectively or at all in an IPv4 world. One may not be disadvantaged in the short to medium term by not adopting IPv6, however there will be increasing examples of functional benefits that will be denied to non-IPv6 users.
IPv6 for eBusiness 20 Business Case 2 – It’s Inevitable 2.2 It's inevitable, may as well go with the flow There is a certain inevitability to the IPv6 juggernaut. Overseas government departments are being mandated to use or make provision for IPv6 in reasonably short timeframes (Japan 2003, Switzerland 2005, Europe 2006, Korea 2006, USA 2008). Other countries such as China, Taiwan, the UK and Germany are actively integrating IPv6 planning into their strategic IT scenarios.
IPv6 for eBusiness 21 Business Case 3 - Differentiation 2.3 Competitive differentiation IPv6 offers opportunities to differentiate service offering from competitive offerings. At a superficial level, this might include straight connectivity options - IPv6 web sites that are hidden from non-IPv6 users. More substantially, IPv6 offers advantages in security, authentication, and enhanced trust relationships that may allow a tiered service offering based on a rich set of customer/consumer Quality of Service parameters. The increased security and functionality afforded by IPv6 can be parlayed in many different marketing messages.
IPv6 for eBusiness 22 Business Case 4 - Protection 2.4 Competitive protection As competitors increase their use of IPv6, others may be forced to comply to be seen to be compatible - this is the counter point to competitive differentiation. There will be cases where B2B, Extranet, social networking or other loose collaborative interactions may demand IPv6 compliance just to be allowed to participate. It may be that non-IPv6 authentication or access will not be acceptable. Microsoft's Windows Collaboration (also known as Windows Meeting Space) application in Windows Vista and Longhorn Server uses IPv6, so you must have IPv6 installed and enabled on your network adapter to use WMS. IPv6 is installed and enabled by default in Windows Vista. Staying competitive with our trading partners and neighbouring countries will increasingly dominate Australia's geo-strategic thinking. Australian industry will not be able to sell into advanced markets as they will lack an intimate and comprehensive appreciation of IPv6 networking. We may also become the dumping ground for obsolete IPv4 hardware and software applications.
IPv6 for eBusiness 23 Business Case 5 - ROI 2.5 Return on investment The return on investment for IPv6 adoption follows a similar profile to any other IT project. The IPv6 for eBusiness project developed ROI tools based on an Excel spreadsheet that can be used to calculate the NPV (net present value), ROI (return on investment) and payback periods, typically over a 15 year period.
IPv6 for eBusiness 24 Business Case 6 – Known Issues 2.6 Known opportunities - understood and tangible There are many cases where interoperability is a paramount requirement and current arrangements for addressability, security and compatibility need to be enhanced. Disparate entities are thrown together for short and longer times and need to interoperate. –E.g., emergency services respond to a natural disaster. The Fire, Police, Ambulance, rural fire authorities, SES, government departments, Utilities, Railways, Defence personnel and many others are thrown together with little opportunity for planning. –IPv6 based networking is increasingly used internationally to allow interoperability between these services on an ad hoc basis.
IPv6 for eBusiness 25 IPv6e-B IPv6 Known Opportunities are supported by the protocol’s unique technical properties …explored in more detail on the ipv6.org.au website and can be summarised as…
IPv6 for eBusiness 26 IPv6 - Unique Attributes 6.1 Vastly increased address space –Extending the 4 billion IPv4 address space to the 3.4 x 10^38 IPv6 address space allows many existing and new processes to receive addresses. –It has been said that in the future, any device worth more than $10 will have at least one IP address and be networked (source: Dr. Dean Economou, CENTIE 2002). Are we there yet?
IPv6 for eBusiness Fixed 40-byte headers –IPv4 packet headers vary in size depending on the attributes that are assigned - they are typically around 20 bytes. –With IPv6, a significant rationalization has taken place such that the IPv6 header is now a fixed 40 bytes. –Although this is approximately twice as big, the advantage of a fixed versus variable header cannot be understated. IPv6 - Unique Attributes
IPv6 for eBusiness 28 IPv6 Header – Comparison with IPv4 128 bit Source Address 128 bit Destination Address bit 0 31 Version IHLTotal Length IdentifierFlagsFragment Offset 32 bit Source Address 32 bit Destination Address Service Type Options and Padding Time to LiveHeader ChecksumProtocol 31 Version ClassFlow Label Payload Length Next Header Hop Limit IPv4 Header 20 octets, 12 fields, including 3 flag bits + fixed max number of options IPv4 Header 20 octets, 12 fields, including 3 flag bits + fixed max number of options IPv6 Header 40 octets, 8 fields + Unlimited Chained Extension (options) Header IPv6 Header 40 octets, 8 fields + Unlimited Chained Extension (options) Header Removed Changed bit 0
IPv6 for eBusiness Autoconfiguration –Autoconfiguration is the automatic configuration of devices without manual intervention, software configuration programs or jumpers, and devices should just "Plug and Play". –This process also includes duplicate address detection, multihoming and other useful network administration activity. IPv6 - Unique Attributes
IPv6 for eBusiness 30 IPv6 - Unique Attributes 6.4 Default IPsec Security –IPv4 was developed at a time when Security was not uppermost as a concern. –Authenticating protocols such as IPsec were developed later and need to be retrofitted into IPv4 protocol stacks. –Conforming standards- based IPv6 protocol stacks have IPsec as a mandatory requirement.
IPv6 for eBusiness Flow Label QoS –All of the Differentiated Services (DiffServ) and Integrated Services (IntServ) Quality of Service attributes from IPv4 are carried over into IPv6. –In addition, IPv6 exclusively has a 20-bit Flow Label field. –This field is being developed to provide a rich set of Quality of Service attributes for the growing IPv6 world. IPv6 - Unique Attributes
IPv6 for eBusiness End to end trust –Network Address Translation (NAT) has broken the end to end trust that was a hallmark of early IPv4 services. –Authenticated IPv4 Internet connections stop at these NAT gateways. –Authenticated IPsec IPv6 sessions will route from end to end. IPv6 - Unique Attributes
IPv6 for eBusiness Attribute Extension Headers –To conserve space in the IPv6 packet header, a series of Extension Attribute packets have been defined. –This vastly speeds up the router packet forwarding rates and improves the efficiency of the communications sessions. IPv6 - Unique Attributes
IPv6 for eBusiness Anycasting –Anycasting was a unique attribute of IPv6. –In IPv4, only Unicast and Multicast addressing was originally supported. But you can’t keep a good idea down… –Anycast addressing refers to a single source calling a predetermined list of Anycast destinations, but only one destination responds and participates in subsequent transmissions. IPv6 – ‘Unique’ Attributes
IPv6 for eBusiness MobileIPv6 –When a device moves from its home network, its IP address and gateway address will be recognized as a foreign address in its new location and will be denied service. –To overcome this limitation, a process called MobileIP was developed in IPv4. This consisted of the devices calling 'home' and telling the home network of its changing gateway environments (the foreign correspondent model). –In MobileIPv6, a foreign correspondent server is continuously updated as to the network the device is in and which gateway to use to reach the travelling device. –This vastly improves performance and reliability, and reduces cost. IPv6 - Unique Attributes
IPv6 for eBusiness 36 Business Case 7 - Unknowns 2.7 Unknown opportunities - preparing fertile ground –the Internet is now a mainstream activity Compared with only a short time ago, whole armies of engineers, entrepreneurs and programmers are dedicating their professional lives to exploiting the capabilities of the Next Generation IP. –New and innovative enhancements are being made every day to the Internet Protocol Suite. It can be anticipated that unforeseen and innovative applications will continuously come into being. Students being taught IPv6 protocols today will continue to find opportunities to express themselves in new and challenging ways as they graduate into the workforce. –IPv6 protocol suite is not a closed system. Using the open framework approach of Extended Attribute packets, IPv6 is an extensible protocol that has no practical limits. –IPv6 is uniquely positioned to support new and innovative applications such as Peer to Peer (P2P), Sensor Networking, GRID and Ambient Intelligence. –It is the platform both of the Future, and for today.
IPv6 for eBusiness 37 IPv6e-B Project Activity 2 Enabling 1.Business Case Models 2. ROI Assessment Tools 3. Transition Issues 4. Easy Access Device
IPv6 for eBusiness 38 IPv6e-B Project Activity 2 Enabling ROI Assessment Tools Return on Investment tools will assess three to five- year strategic needs under various scenarios. An Excel spreadsheet freely available from This software will run in Excel 2003 and later (probably in earlier versions too). It also runs in OpenOffice2.0 on Linux operating systems The Quality Improvement Company
IPv6 for eBusiness 39 IPv6e-B Return On Investment Tool
IPv6 for eBusiness 40 IPv6e-B Return On Investment Tool Worked Example We consider a hypothetical mining operation with 2000 personal computers, 400 trucks for ore haulage and a total of 20 IT staff paid, on average, $114K per year. The operation sees the benefits to be derived from transition to IPv6 as follows: –About 6% of its IT staff are involved in managing NATs and ensuring the interoperability of applications with NATs. This costs around $150K per year, or $75 per PC per year and can be essentially eliminated almost immediately by use of IPv6. –The use of IPv6 will also allow great improvement in real-time two way communication with the truck fleet as it operates. A transponder system will become operational a couple of years after IPv6 is enabled. This is seen to have 3 main benefits: maintenance costs will be reduced by an estimated 1% from the current $100K per truck per year, a saving of $1K per truck per year; truck replacement, at a cost of $160K per truck, will be delayed for an additional year, extending the current 3-year replacement cycle to 3.3 years, a saving of $7.6K per truck per year; and enhanced scheduling is expected to improve throughput and add $516K to the mine's pre-tax profit ($1.29K per truck per year). –Finally, the organisation expects to improve IT security. On average, the organisation has incurred security costs of $300K per year ($0.15K per PC), mainly due to virus attacks and unauthorised access. (The loss due to data theft is not known.) It is believed that the improved security protocols enabled by IPv6 will reduce the frequency of security breaches by 70%; but it will take a few years before these can be introduced.
IPv6 for eBusiness 41 IPv6e-B Return On Investment Tool
IPv6 for eBusiness 42 IPv6e-B Return On Investment Tool
IPv6 for eBusiness 43 IPv6e-B Return On Investment Tool
IPv6 for eBusiness 44 IPv6e-B Project Activity 2 Enabling 2.3 Transition Issues Organisations planning to test or deploy IPv6 would usually follow the phases below to ensure a non-disruptive transition: Start off with a pilot project, testing IPv6 on existing IPv4 networks. Run separate IPv4 and IPv6 networks on the same infrastructure. Transition to networks with 'dual-stack' IPv4 and IPv6 devices. Finally move fully to IPv6 networks, with legacy IPv4 phased out over time. For each of these phases, most organisations will need to follow a similar series of steps: Assess business requirements, risks and benefits Survey existing network infrastructure Educate technical staff professionally Resource network and security infrastructure Phase-in and test IPv6-capable devices Inform and set policies for general staff Monitor and maintain procedures and infrastructure
IPv6 for eBusiness 45 IPv6e-B Project Activity 2 Enabling 2.3 Information Resources A brief Introduction to IPv6 with some technical detail (May 2001).Introduction to IPv6 An excellent IPv6 Deployment Guide (Sept 2005, 5.5MB.pdf format). It covers IPv6 addressing, services, transition, routing, network management and security at a technical level.IPv6 Deployment Guide The IPv6 Forum Roadmap and Vision, discusses IPv6 business and technology drivers (May 2006, 1.3MB, pdf format).IPv6 Forum Roadmap and Vision Analysis of the Exhaustion of IPv4 Address Space (March 2006, 0.8MB pdf format).Exhaustion of IPv4 Address Space This is a growing list of IPv6-enabled products, applications and services.IPv6-enabled products, applications and services A graphical visualisation of IPv6 and IPv4 topology from CAIDA, March 2005.IPv6 and IPv4 topology
IPv6 for eBusiness 46 IPv6e-B Project Activity 2 Enabling 2.3 IETF Guides to IPv6 Deployment Small Business and Home Office Networks Large Enterprise Networks Internet Service Provider Networks Transition Techniques –The key RFCs are linked from the websitewww.ipv6.org.au
IPv6 for eBusiness 47 IPv6e-B Project Activity 3 AWARENESS Specific activities include: Information: IPv6 Basics, awareness website and resources, first phaseInformation Promotion: publicity for website, brochures, seminars via the IPv6 Summit 2006Promotion Seminars: presentations for business and SMEs in seven major citiesSeminars Updates: website and resources, second phase - progress, outcome of activitiesUpdates
IPv6 for eBusiness 48 IPv6e-B 2007 Australian Workshops Sydney Tuesday 6 March Brisbane Wednesday 7 March Adelaide Thursday 15 March Perth Friday 16 March Hobart Wednesday 21 March MelbourneThursday 22 March Ballarat Friday 23 March
IPv6 for eBusiness 49 IPv6e-B Infrastructure Presented by Tony Hill President Internet Society of Australia Chair ISOC-AU IPv6 SIG
IPv6 for eBusiness 50 IPv6e-B INFRASTRUCTURE Address Allocation DNS Operations Transition Support E-Commerce Security Keys …these are discussed in more detail on the ipv6.org.au website IPv6 infrastructure is underpinned by a set of attributes that support:
IPv6 for eBusiness 51 IPv6e-B Project Activity 4 INFRASTRUCTURE IPv6 Infrastructure Directions: address allocation processes, DNS operations issues, IPv6 connectivity availability, IPv6 transition planning support, e-Commerce dimensions, and Security key infrastructure. IPv6 Testbed Development: assessing readiness for applications such as RFID-based, remote sensing, Internet mobile phone address expansion, powerline delivery of network data, WiMax-enabled devices, voice and video over IP, desktop applications on mobile devices. Utilising the IPv6 ready.au registry, the project assessed the status of infrastructure planning, development and the potential of Australian infrastructure to support development of test bed applications
IPv6 for eBusiness 52 Moving to IPv6 for AusRegistry Chris Wright Chief Technology Officer IPv6e-B Transition Case Study
IPv6 for eBusiness 53 IPv6-eB AusRegistry Moving to IPv6 auDA and AusRegistry are working together to IPv6 enable the.au DNS and its associated infrastructure AusRegistry identified the following perquisites to be able to IPv6 enable the infrastructure: –IPv6 enabled Network equipment (Cisco & F5 equipment used) –IPv6 enabled Operating Systems (Redhat Enterprise Linux) –IPv6 transit provider (tunnelled via Telstra) –IPv6 enable software (BIND,Java, in-house software)
IPv6 for eBusiness 54 What has been completed? Registry has been modified to accept IPv6 glue records for.au domains and publish them to the DNS (AAAA record support) AusRegistry obtained IPv6 assignment from APNIC IPv6 enabled Registry Network infrastructure Obtained IPv6 transit IPv6 enabled DNS servers for.au 2LDs (further testing of recursive server/resolver behaviour is required) IPv6-eB AusRegistry
IPv6 for eBusiness 55 Outstanding Tasks Complete research into resolver/recursive server behaviour in mixed IPv4/IPv6 environments Pending results of above, publish IPv6 records for Name Servers to the DNS IPv6 enable.au WhoIs IPv6 enable.au Registration System & associated interfaces (EPP & Websites) IPv6-eB AusRegistry
IPv6 for eBusiness 56 IPv6e-B Project Activity 2 Enabling Easy Access Device The easy access device provides infrastructure to allow IPv6 connectivity with a 'tunnel terminator' for small businesses and home offices. It will allow straightforward, inexpensive IPv6 connectivity, without time-consuming and technically complex site-by-site deployments, and will be implemented on an open standards device.
IPv6 for eBusiness 57 IPv6e-B Easy Access Device The Easy Access Device is intended for use by small businesses and home offices. It provides the basic services for an IPv6 Local Area Network on the user's side, and sets up a tunnel to the native IPv6 Internet.
IPv6 for eBusiness 58 IPv6e-B Easy Access Device The essential features of the device are: It is the access point for the IPv6 tunnel It runs DHCP on the user's side to provide IPv6 addressesDHCP It runs local DNS to provide lookups between Internet names and addressesDNS It passes addresses in use to the upstream DNS where available It has IPv4 and IPv6 firewalls to provide security Its web pages are accessible via IPv6 The device runs on a generic small-sized personal computer running Ubuntu Linux, currently version 6.06LTS, kernel version Ubuntu Linux It also runs iptables for firewall services.iptables
IPv6 for eBusiness 59 IPv6e-B Easy Access Device Future steps in development of the device Add wireless facilities Add a variety of services Add a choice of Internet Service Providers 2007 Easy Access Device Testing Taking place through BuildersNet, with small and medium sized enterprises working in the construction industry, fundamentally connected into a broad range of businesses in the Australian economy.BuildersNet The Defence establishment through ADIESA will be invited to participate as well as other selected SMEs. By focusing initially on the needs of construction and Defence SMEs, the IPv6 for e-Business project will gain greater understanding of adoption issues across a wide range of sectors.
IPv6 for eBusiness 60 Interoperability & Internet Technology IPv4IPv6 Scalability - Numbers of Devices 4 x 10^93.4 x 10^38 Ease of ImplementationManual & DHCPAutoconfiguration SecurityApplication layer (if at all) Built into the Protocol End to EndNAT commonDirect addressing (with no NAT requirement) InteroperabilityConstrainedExtensive Source: Tony Hill, Global IPv6 Summit 2005, Seoul, Korea
IPv6 for eBusiness 61 Business Value Points Massively increased address space Expansion of Internet interoperable capabilities Compliance with government mandates Ease of implementation Security inherent, rather than ad hoc Direct addressing of all devices Increased potential for remote sensing
IPv6 for eBusiness 62 Expansion in Connected Devices Interoperability between IPv6 and RFID Explosion of Internet enabled mobile phones Potential of broadband over power lines Growth of WiMax VoIP Desktop applications as a mobiles, hand-held PCs and integrated devices give us a new TLA to ponder … IMS –IP Multimedia Subsystems