Welcome to the CIW IPv6
Lesson 1: IPv6-Introduction and IPv4 comparison Describe the need for IPv6 Explain the need for IPv6 Compare and contrast the IPv4 and IPv6 headers Identify removed, revised and new header fields in IPv6
The different of internet and Telecommunication Telecommunication establish the direct physical connection, occupancy IP net establish the logical connection, not occupancy, is dynamic
The need for IPv6 The shortcoming of IPv4 The IPv4 internet has approximately 4 billion unique IP addresses Creating unmanageable routing tables for the internet ‘s backbone routers
History of IPv6 The name initially given to the next version of IP was IP Next Generation or IPng(1992) Candidate TCP and UDP over bigger addresses (TUBA) –RFC 1347 CATNIP-RFC 1707 Simple Internet Protocol Plus(SIPP)-RFC 1710 The decision
IPv4 vs. IPv6: key differences IPv4 header 20 bytes in length (without options) Ten fields of information and a source and destination address The ten fields account for 12 bytes of 20-byte length
DATAGRAM IDENTIFICATION# Figure-IPv4 header VER HDR.LTH SERVICE DATADRAM LENGTH DATAGRAM IDENTIFICATION# FLAGS FRAGMENT OFFSET TTL PROTOCOL HEADER CHECKSUM SOURCE ADDRESS DESTINATION ADDRESS OPTIONS
IPv6 header The IPv6 header has the following characteristics 40 bytes in length (fixed) Six fields of information and a source and destination address The six fields account for 8 bytes of the 40-byte length Larger than the IPv4 header, but simpler and more compact
DESTINATION ADDRESS(128 bits) Figure-IPv6 header 16 31 VER CLASS FLOWLABEL PAYLOAD LENGTH NEXT HEADER HOP LIMIT SOURCE ADDRESS(128 bits) DESTINATION ADDRESS(128 bits)
IPv4 removed fields IPv6 assigns a fixed format for all IP headers IPv6 removes the header checksum IPv6 removes the hop-by-hop segmentation procedure IPv6 removes the Type of Service field
IPv4 removed fields Fixed format for IP headers Header length field Option field No header checksum No hop-by-hop segmentation Datagram Identification Number field Flags field Fragment Offset field Maximum Transmission Unit (MTU) No Type of Service field
IPv4 revised fields Datagram Length field is changed to the Payload Length field Protocol field is changed to the Next Header field Time To Live (TTL) field is changed to the Hop Limit field
IPv6 new fields Flow Label field Class field
Table: IPv4 to IPv6 header change Removed IPv4 Fields Header Length Options Checksum Data Identification Number Flags Fragment Offset Type of Service Revised IPv4 Fields Datagram Length->Payload Length Protocol->Next Header Time To Live->Hop Limit New IPv6 Fields Flow Label Class
Lesson Summary Why use IPv6? The difference of Telecommunication and IP net The history of IPv6 The IPv4’s header IPv6 Compare with IPv4
Lesson 2: IPv6 Header and Extension Header Define each IPv6 header field and its function Identify IPv6 extension header types Describe Hop-by-Hop, Destination Option, Routing, and Fragment extension headers Explain how IPv6 extension header types affect routing performance
IPv6 Header In Detail Version (4 bits) Class (8 bits) Flow Label (20 bits) Payload Length (16 bits) Next Header (8 bits) Hop Limit (8 bits) Source Address (128 bits) Destination Address (128 bits)
DESTINATION ADDRESS(128 bits) Figure-IPv6 Header 16 31 VER CLASS FLOWLABEL PAYLOAD LENGTH NEXT HEADER HOP LIMIT SOURCE ADDRESS(128 bits) DESTINATION ADDRESS(128 bits)
IPv6 Extension Headers One of the objective of IPv6: provide additional options for special-case packets Do not require a significant amount of additional processing (RFC 2460) IP header IP extension headers Data payload
IPv6 Extension Headers Provide several options Different types of extension headers Hop-by-Hop Destination Option Routing Fragment extension
Hop-by-Hop Extension Header Used to pass optional information to all nodes along a packet’s delivery path Method: give the value 0 in the preceding header’s Next Header field. Three fields Next Header (8 bits) Header Extension Length (8 bits) Options (variable length) NEXT HEADER OPTIONS HDR EXT LENGTH
Destination Options extension header Pass additional parameters to the destination system (not need to be processed ) Method: give the value 60 in the preceding header’s Next Header field. Three fields Next Header (8 bits) Header Extension Length (8 bits) Options (variable length) NEXT HEADER OPTIONS HDR EXT LENGTH
Routing Extension Header Used to specify routes for a packet Method: give the value 43 in the preceding header’s Next Header field. Six fields Next Header (8 bits) Header Extension Length (8 bits) Routing Type (8 bits) Segments Left (8 bits) Reserved (32 bits) Addresses (128 bits)
Figure Routing Extension Header 16 31 NEXT HEADER HDR RESERVED ADDRESS[1] ADDRESS[2]
Fragment Extension Header Divide packets that are larger than the MTU Method: give the value 44 in the preceding header’s Next Header field. Six fields Next Header (8 bits) Reserved (8 bits) Fragment Offset (13 bits) RES (2 bits) M (1 bit) Identification (32 bits)
Figure Fragment extension header NEXT HEADER HDR EXT LENGTH ROUTING TYPE=0 RES M IDENTIFICATION
IPv6 Extension Header Order The recommended order for extension headers IPv6 header Hop-by-Hop extension header Destination Option extension header (first) Routing extension header (type 0) Fragment extension header
IPv6 Extension Header Order Authentication extension header Encapsulation Security Payload extension header Destination Options extension header (second) Upper-layer header (payload) The different of two Destination Option header
Figure How Extension Headers Can Be Daisy-chained IPv6 Header Next Header= TCP TCP Header +Data IPv6 Header Next Header= Routing Routing Header TCP TCP Header +Data IPv6 Header Next Header= Routing Routing Header Fragment Fragment Header TCP TCP Header +Data
OS and IPv6 Windows NT and IPv6 Build 1773 and later IPv6 utilities(ipv6,ping6,tracert6,ttcp) Linux and IPv6 Version 6.1 uses the 2.2.12-20 kernel does support IPv6 Linux 2.2.14-5.0 kernel support IPv6
Lesson 3:IPv6 Address Architecture IPv4 addresses vs IPv6 addresses IPv6 address abbreviation Address types IPv6 address assignments Aggregatable global unicast address Special unicast address Multicast addresses Fixed length vs. variable length
IPv6 Addresses vs. IPv4 Addresses Length IPv6:128 bits in length,divided into eight 16-bit integers IPv4:32 bits in length, divided into four 8-bit integers Notation IPv6:expressed in colon notation IPv4:expressed in period notation
IPv6 Address vs. IPv4 Address Number system IPv6 addresses are expressed in hexadecimal form,such as A342:0000:0000:0000:0000:123F:0000:0034:EA3D IPv4 addresses are expressed in decimal form,such as 207.199.55.165
IPv6 Address Abbreviation Drop all leading zeros,for example: 00A3=A3 A342:0000:0000:123F:…=A342:0:0:123F:… Double-colon convention Include a double colon in place of null integers Several continuous null integers can be abbreviated as a double colon Don’t use the double colon twice in one address Expanding IPv6 addresses
IPv6 Address Type Unicast New name for the point-to-point address in IPv4 Considered be a one-to-one communication Multicast Used to reference a group of systems by a single IP address A multicast address is a one-to-many communication
IPv6 Address Type Anycast Similar to multicast and considered as a simplified multicast Difference between multicast and anycast Anycasting is currently in the experimental stage
IPv6 Address Assignments IPv6 address prefixes Address Prefix(binary) Definition 0000 0000 Reserved 0000 001 Reserved for NSAP 0000 010 Reserved for IPX 001 Aggregatable Global Unicast addresses 100 Reserved for Geographic- based Unicast address 1111 1110 10 Link –local addresses 1111 1110 11 Site-local addresses 1111 1111 Multicast addresses
IPv6 Address Assignments Aggregatable Global Unicast address The numeric identify of prefixes length,suuc as: FE80:0000:0000:0E0F:EFFF:FE87:0000/10 Several addresses associated with a system
Aggregatable Global Unicast Addresses Address format Prefix TLA NLA SLA Host Address Starting binary value Top-Level Aggregator(TLA) Next-Level Aggregator(NLA) Site-Level Aggregator(SLA) Host address 1 13 bits 32 bits 16 bits 64 bits
Special Unicast Address IPv4-based IPv4-to-IPv6 transition For example,207.199.55.165 translates to the IPv6 address ::207.199.55.165 Loopback 0:0:0:0:0:0:0:1 or ::1 Unspecified 0:0:0:0:0:0:0:0 or ::
Special Unicast Address Site local Prefix(10 bits) SLA Host Address Link local Prefix(10 bits) Host Address 1111 1110 11 38 bits=0 16 bits 64 bits 1111 1110 10 54 bits=0 64 bits
Multiple Address Multicast address format Flags Prefix(8 bits) Flags Scope Group Identifier Flags Used for transient address Released after the session ends Scope Maintain a proper scope for a multicast group 1111 1111 4 bits 112 bits
Multiple Address Group Identifier Address Group Identifier FF0X:0:0:0:0:0:0:0 Reserved FF02:0:0:0:0:0:0:1 All nodes address FF02:0:0:0:0:0:0:2 All routes address FF02:0:0:0:0:0:0:6 OSPF designated routers FF02:0:0:0:0:0:0:7 ST routers FF02:0:0:0:0:0:0:8 ST hosts FF02:0:0:0:0:0:0:B Mobile agents FF0X:0:0:0:0:0:0:108 Sun NIS+information service FF0X:0:0:0:0:0:0:10C IETF-1-VIDEO FF02:0:0:0:0:0:1:1 Link name FF02:0:0:0:0:0:1:2 All DHCP agents FF02:0:0:0:0:0:1:3 All DHCP servers FF02:0:0:0:0:0:1:4 All DHCP relays
Fixed Length vs. Variable Length Good revisability in IPv6 IPv6 growth flexibility For example:China and Republic of the Marshare Islands(RMI)
Welcome to the CIW IPv6
Lesson 4:IPv6 Routing and Security Why? Simple Routing Aggregatable Routing Hierarchy Multicast Routing IPv6 Routing Protocol IPv6 Security
Why Using TLA instead of CIDR
Aggregatable Routing Hierarchy The concept of a hierarchical database of aggregatable routes TLA NLA SLA Hosts
Aggregatable Routing Hierarchy Smaller routing tables Compare with DNS For example,suppose there a SLA router SLA IPv6 prefix:2FE2:21:EE00:AC1::/64 NLA IPv6 prefix:2FE2:21:EE00::/48 TLA IPv6 prefix:2FE2:21::/16 forward forward
MAXIMUM RESPONSE DELAY MULTIPLE ADDRESS(128 bits) Multicast Routing Group Membership Query(type 130) Group Membership Report(type131) Group Membership Reduction(type 132) Message format 88 168 318 TYPE CODE CHECKSUM MAXIMUM RESPONSE DELAY UNUSED MULTIPLE ADDRESS(128 bits)
IPv6 Routing Protocol RFC 2283 and IPv6 BGP BGPv4 to IDRP Updating interior routing protocols to work IPv6 Open Shortest Path First(OSPF) Routing Information Protocol(RIP)
SECURITY PARAMETERS INDEX(SPI) IPv6 Security Two basic types of security Authentication Confidentiality IPv6 authentication MD5 authentication Authentication extension header 16 31 NEXT HEADER PAYLOAD LENGTH RESERVED SECURITY PARAMETERS INDEX(SPI) SEQUENCE NUMBER FIELD AUTHENTICATION DATA
ENCRYPTED DATA AND PARAMETERS IPv6 Security IPv6 confidentiality Typical Encrypted Security Payload(ESP) extension header IPv6 HEADER EXTENSION HEADERS ESP HEADER ENCRYPTED DATA AUTH DATA UNENCRYPTED ENCRYPTED 8 16 32 32—BIT SPI 32—BIT SEQUENCE NUMBER ENCRYPTED DATA AND PARAMETERS AUTHENTICATION DATA
INITIALIZATION VECTOR(IV) IPv6 Security Cipher Block Chaining mode of the Data Encryption Standard(DES-CBC) 8 16 32 32—BIT SPI 32—BIT SEQUENCE NUMBER INITIALIZATION VECTOR(IV) PAYLOAD DATA PADDING PADDING LNTH PAYLOAD TYPE
Welcome to the CIW IPv6
Lesson 5:Reduced Network Management with IPv6 Why? Neighbor Discovery(ND) Protocol Internet Control Message Protocol Version 6(ICMPv6) Plug-and-Play Autoconfiguration Address Resolution
Neighbor Discovery(ND) Protocol Defined in RFC 2461 Tasks of ND Allowing hosts to find routers Enabling nodes to determine one another’s link layeraddress Enabling nodes to discover the existence of other nodes Enabling nodes to maintain reachability information Providing nodes to active neighbors
Internet Control Message Protocol Version 6(ICMPv6) ICMPv4 to ICMPv6 Streamlined protocol IGMP inclusion Extended formats ICMPv6 header 8 16 31 TYPE CODE CHECKSUM MESSAGE (CONTENTS DEPEND ON MESSAGE TYPE AND CODE)
Internet Control Message Protocol Version 6(ICMPv6) ICMPv6 messages ICMP Message Types Added to ICMPv6 Packet Too Big Group Membership Query Group Membership Report Group Membership Reduction Router Solicitation Router Advertisement Neighbor Solicitation Neighbor Advertisement Removed from ICMPv6 Source Quench Timestamp Request/Timestamp Reply Information Request/Information Reply Subnet Mask Request/Subnet Mask Reply
Plug-and-Play Autoconfiguration Stateless autoconfiguration Router Solicitation message header 8 16 32 TYPE CODE CHECKSUM RESERVED OPTIONS
Plug-and-Play Autoconfiguration Router Advertisement message header Advantages and disadvantages of stateless autoconfiguration 8 16 32 TYPE CODE CHECKSUM MAX HOP LIMIT M O RESERVED ROUTE LIFETIME REACHABLE TIME RETRANSMIT TIME OPTIONS
Plug-and-Play Autoconfiguration Stateful configuration Additional configuration for the requesting systems Basic authentication to determine which systems can receive configuration data Requires a server Requires an administrator
Address Resolution Overview Neighbor Solicitation message header TYPE 8 16 32 TYPE CODE CHECKSUM RESERVED TARGET ADDRESS(128 bits) OPTIONS
Address Resolution Neighbor Advertisement message header TYPE CODE 8 16 32 TYPE CODE CHECKSUM R S O RESERVED TARGET ADDRESS(128 bits) OPTIONS
Welcome to the CIW IPv6
Lesson 6:Transitioning to IPv6 Why? Simple Internet Trasition(SIT) Mechanisms Dual IP Stacks IPv4 Address Compatibility IPv6-in-IPv4 Tunneling :The 6Bone
Why?
Simple Internet Transition(SIT) Mechanisms SIT features Low cost Simple address transition Few prerequisites No upgrade schedule SIT mechanisms Dual IP stacks IPv4 address compatibility IPv6-in-IPv4 tunneling
Dual IP Stacks Dual IP stack support Upgrades to IPv6 hosts Upgrades to IPv6 routers IPv6 name service IPv4 address with a host record or “A” record Using “AAAA” record as IPv6 records
IPv4 Address Compatibility 32 bits 0:0:0:0:0:0 96 bits 32 bits
IPv6-in-IPv4 Tunneling:The 6Bone Tunneling process IPv6 HEADER PAYLOAD IPv6 Packet IPv4 HEADER IPv6 HEADER PAYLOAD IPv6-in-IPv4 Packet
IPv6-in-IPv4 Tunneling:The 6Bone Connecting to the 6Bone Isolated IPv6 Host Tunnel Dual-Stack Router IPv6 Host 6Bone Island IPv6 Host