Presentation on theme: "1 Migration paths to IPv6 Daniel Junqueira Sales Engineer – A10 Networks"— Presentation transcript:
1 Migration paths to IPv6 Daniel Junqueira Sales Engineer – A10 Networks
2 What are the benefits of IPv6? IP address abundance More people & devices connected requiring an IP address AT&T added 1.6M non- phone wireless device connections in Q1 2011, passes 12M devices ….but IPv6 also brings Efficiency - optimized for routers & other devices to process IPv6 Simplicity with address auto-configuration Source: ARIN CellphoneTV Surveillance Camera Game Console eBook Heart Rate Monitor Digital Weight Scale Digital DVD Recorder Car IPv4/8 Blocks Available Addresses: IPv4 = 4x10^9 versus IPv6 = 3x10^38
3 Why IPv6 is not widely adopted today? IPv6 requires a full IPv6 chain of communication End-devices/Clients, e.g. cell phones, home devices Service Providers, e.g. ISPs, Mobile Network Operators (MNOs) Enterprises/Content Providers, e.g. external websites Challenge No backward compatibility If one migrates before the other communication is broken!
4 Why is everyone talking about IPv6 now? IANA’s last IPv4 block issued on 02/01/2011! Demand accelerated & not abating. IANA’s last IPv4 block issued on 02/01/2011! Demand accelerated & not abating.
5 IPv6 has become a "hotter" topic Service Providers impacted first (Carriers, ISPs, MNOs) Most have been looking at transition solutions in the last months Enterprises/Content Providers External: Early deployments are happening, accelerating due to IPv4 depletion Estimated only 0.15% of top 1 million web sites are available via IPv6 However some external websites are being enabled now World IPv6 Day, June 8, 2011, is an example of increased attention End-devices/Clients IPv6 transition has been in the works for some time E.g. Dual-Stack on Windows Vista & Windows 7, MacOS 10.x, iPhone, Android Many devices with no, or limited, IPv6 support (earlier Windows versions, some game consoles, etc). Co-existence is required!
6 The secret to seamless IPv6 transition? There isn’t one…no panacea…no one solution fits all Each solution has its own pros & cons
7 Service Providers
8 Service Provider Challenges Today Main Challenges IPv4 exhaustion, IPv4 addresses for new subscribers No access to IPv6 content Typical ISPTypical MNO
9 Solutions to IPv4 exhaustion NAT using Large Scale NAT (LSN also known as CGN) Benefits of LSN Fairness Guaranteed NAT resources via user-quotas Transparency Minimum to no impact on most applications, including P2P applications Still requires ALG for some applications, e.g. FTP, PPTP Techniques using LSN NAT44 NAT444 LSN can be mixed with other techniques Encapsulation DNS + NAT + Protocol Translation
10 NAT44 - LSN Main SP interest: Mobile Service Operators (MSO) Usage: Looked into/tested by most mobile service operators and already deployed by some Goal: Resolve IPv4 exhaustion quickly with minimal changes
11 NAT44 - LSN Pros:Cons: Resolves IPv4 exhaustion (LSN/CGN) Transparent to P2P applications (LSN/CGN) No change in network or management/monitoring/billing tools Does not provide IPv6 services access Requires high performance NAT device
12 NAT444 - LSN Main SP interest: ISPs Usage: Looked into/tested by many ISPs Goal: Resolve IPv4 exhaustion quickly with minimal changes
13 NAT444 - LSN Pros:Cons: Resolves IPv4 exhaustion (LSN/CGN) No change in network or management/monitoring/billing tools Does not provide IPv6 services access IP addressing challenges, Double NAT Requires high performance NAT device Log Scaling
14 Solutions for Access to IPv6 Content Dual-Stack IPv4 and IPv6 Encapsulation using 6-to-4 or 4-to-6 Techniques using encapsulation 6rd/6to4/6rd-PT DS-Lite DNS + NAT with Protocol Translation DNS64/NAT64 Note: When combined with LSN (NAT44 or NAT444) can solve IPv4 exhaustion
15 Dual Stack + NAT with LSN Main SP interest: ISPs Note: Mobile Service Operators are not looking at this solution because of its cost Usage: Looked into/tested by some ISPs but few deployed today Goal: Resolve IPv4 exhaustion quickly with minimal changes Provide IPv6 service access once core network is Dual-Stack (IPv4+IPv6) capable
17 6rd (rapid deployment) Main SP interest: ISPs Usage: Looked into/tested by some ISPs and deployed by a few Goal: Provide IPv6 service access before Core Network IPv6 upgrade Note: Some ISPs look at combining 6rd with NAT444 + DNS64/NAT64
18 6rd (rapid deployment) Pros:Cons: Provides IPv6 services with access to IPv6 clients (via IPv4 tunnel) IPv4 service access same as today Can be deployed in "baby steps" No change in core network or management/monitoring/billing tools Still requires high performance gateway device but less so than other solutions (stateless translation) Does not resolve IPv4 exhaustion Requires 6rd capable CPEs Most cell phones do not support 6rd today Extends time before migration of core network + management/monitoring/billing tools to IPv6. But IPv6 migration still required.
19 DS-Lite (Dual-Stack Lite) + NAT with LSN Main SP interest: ISPs Usage: Currently being evaluated by some ISPs but not deployed yet Goal: Provide IPv4 service access to IPv4 clients and IPv6 service to IPv6 clients without having a dual-stack SP network Note: Some ISPs look at combining DS-Lite with DNS64/NAT64
20 Dual-Stack Lite (DS-Lite) + NAT with LSN Pros:Cons: Resolves IPv4 exhaustion Provides IPv6 services with access to IPv6 clients (direct) Provides IPv4 services with access to IPv4 clients (via IPv6 tunnels) Can be deployed in "baby steps“ SP only needs to manage IPv6 stack Easier Subscriber Address Management Requires IPv6 core network + IPv6 management/monitoring/billing tools Requires CPEs that are DS-Lite capable Requires high performance NAT device
21 NAT64 / DNS64 with LSN Main SP interest: Mobile Service Operators Some ISPs Usage: Looked into by many operators and expected to be deployed in production soon Goal: Once core network migrated to IPv6, provide IPv4 content access to IPv6-only clients
22 NAT64 / DNS64 with LSN Pros:Cons: Provides access to IPv4 content for IPv6- only clients (via NAT64/DNS64) Can be combined with other technologies such as 6rd, dual-stack, DS-Lite Requires IPv6 core network + IPv6 management/monitoring/billing tools Requires high performance NAT device
23 Enterprises/Content Providers
24 Enterprise/Content Provider Challenges Main Challenges No IPv6 services IPv4 exhaustion, IPv4 addresses for new services Typical Enterprises/Content Providers today
25 Content Providers’ IPv6 migration paths SLB-PTNAT-PT (deprecated) Main Target AlwaysNone Content Provider Challenge solved IPv4 exhaustion IPv6 Service Access IPv6-Only client access IPv4 TechnologyNAT + SLBNAT Pre-RequisiteData center with IPv6 access
27 SLB-PT Main interest: Enterprise Content Providers Usage: Looked into by many Enterprises / Content Providers and already deployed today at some accounts Goal: Offer IPv6 services quickly with minimal changes
28 SLB-PT Pros:Cons: Provides IPv6 services to IPv6 clients for existing IPv4 content (SLB-PT) Simple solution to implement, no server side changes Offers Load Balancing benefits (application scalability + high-availability) Supports a mix of IPv4 & IPv6 servers at the backend transparently Requires SLB-PT capable load balancer Loses client IP address information on servers when SLB-PT done Note: Most SLB vendors have a workaround for web applications. Requires high performance NAT device
29 Several Technologies Why are there so many technologies ? All customer networks are different No one technology fits all Relatively new technologies People are getting a feel for them and their applicability Lot of flux Different comfort levels Different budgets No one implementation fits all
30 A10 Networks Introduction Founded in 2004 Application Delivery Controllers (load balancing) IPv6 Migration As of 2011, A10 Networks: Is the fastest growing company in the ADC market with 4,927% three-year sales growth Is the technology and market leader in the new IPv6 Migration market with large scale live IPv6 deployments Has customers in production for ADC and IPv6 migration History of awards for A10’s IPv6 Solutions A10 is not new to the party IPv4/IPv6 at the Tokyo Interop ShowNet (for 4 years), IETF and NANOG meetings
31 Industry-leading Implementations Working closely with large ISPs worldwide Initial deployments now live Solution evaluated and tested in ISP labs Proven interoperability with DS-Lite client implementations Nokia testing in 2009 Award winning implementation LSN deployed in Tokyo Interop 2009 & 2010
32 AX Series Offers the Ideal Platform Cost effective, high performance ACOS powered hardware. ADCs/load balancers designed for NAT & store sessions 64-bit scalability, security and management Very high session establishment rate & large number of concurrent sessions Very high NAT Processing (packets per second) & throughput Flexible platform as no one size fits all Investment protection by quickly enabling new techniques Visibility on public IP addresses consumption Robust stateful high availability & hardware security and DDoS protection
33 Advanced Traffic Management Leader in IPv6 migration technologies for Service Providers and Enterprises Solutions in real world deployment today Ensures rapid Internet growth can continue despite IPv4 address shortage All-inclusive appliances
34 Thank You More information at ipv6.a10networks.comipv6.a10networks.com Uses the AX Series SLB-PT to translate all IPv6 requests to the public IPv4 website & back againwww.a10networks.com We also offer full support the legacy IPv4 networks