1. 1 IPv6 @ Cisco Patrick Grossetete Cisco Systems Cisco IOS IPv6 Product Manager pgrosset@cisco.com Ansar Pasha Cisco Systems Network Consultant, Govt & Defense, South ansar@cisco.com

2. Presentation_ID 222 Agenda IPv6 Business CaseIPv6 Business Case IPv6 Protocols & Standards Integration and Transition Cisco IOS IPv6 Roadmap IPv6 Deployment scenarios References

3. Presentation_ID 333 The End-User Perspective The network capability to provide the desired services It’s all about the applications, and their services Don’t care about IPv6!!! The End-User Perspective The network capability to provide the desired services It’s all about the applications, and their services Don’t care about IPv6!!! What is IPv6? Basic Perspectives The Network Manager Perspective Stability of a given technology, implementations and benefits Cost of deployment and operation Care but…has to get confident

4. Presentation_ID 444 IPv6 – A Key Driver for the e-Economy O.S. & Applications e-Nations The Ubiquitous Internet Higher Ed./Research Manufacturing Government (Federal/Public Sector) Transportation Agriculture/Wildlife Medical Consumer & Services Mobile Networking Services on the edge of the Network Restoring an environment for Innovation

5. Presentation_ID 555 With millions of new devices becoming IP aware, the need for increased addressing and plug & play networking is only met with the implementation of IPv6 IP – The Application’s Convergence Layer EthernetOpticalE-PowerWirelessStorageChannelCATV P S DN xDSL IP version 6 More to Come

6. Presentation_ID 666 A need for IPv6? IETF IPv6 WG began in early 90s, to solve addressing growth issues, but CIDR, NAT,… were developed IPv4 32 bit address = 4 billion hosts ~37% of the IPv4 address space is still unallocated (08/02) General perception is that “IPv6 has not yet taken hold strongly” IPv4 Address shortage is not [yet] true for all regions Private sector requires a business case Data on Wireless infrastructure emerges recently Internet growth!!!But reality looks far better for the coming years!!! To sustain the Internet growth!!!

7. Presentation_ID 777 IP Address Allocation History 1981 - IPv4 protocol published 1985 ~ 1/16 of total space 1990 ~ 1/8 of total space 1995 ~ 1/3 of total space 2000 ~ 1/2 of total space 2002.5 ~ 2/3 of total space This despite increasingly intense conservation efforts PPP / DHCP address sharing NAT (network address translation) CIDR (classless inter-domain routing) plus some address reclamation Theoretical limit of 32-bit space: ~4 billion devices Practical limit of 32-bit space: ~250 million devices (RFC 3194)

8. Presentation_ID 888 Do We Really Need a Larger Address Space? Internet Population ~945M by end CY 2004 (source Computer Industry Almanac) – only 10-15% How to address the future Worldwide population? (~9B in CY 2050) Emerging Internet countries need address space, eg: China uses nearly 2 class A (11/2002), ~20 class A needed if every student (320M) has to get an IP address Mobile Internet introduces new generation of Internet devices PDA (~20M in 2004), Mobile Phones (~1.5B in 2003), Tablet PC Enable through several technologies, eg: 3G, 802.11,… Transportation – Mobile Networks 1B automobiles forecast for 2008 – Begin now on vertical markets Internet access on planes, eg. Lufthansa – train, eg. Narita express Consumer, Home and Industrial Appliances During the life cycle of a technology, a new product is often considered to have reached the early majority – or the mass market – after achieving 22 percent penetration.

9. Presentation_ID 999 Explosion of New Internet Appliances Source: N+I Tokyo, July 2002

10. Presentation_ID 10 Broadband Home – A necessity for IPv6 ! Wireless Laptop Distance learning Video calls MP3 downloads PDA IP Phone Printer Wireless Gaming Broadband Internet Access Wired Devices Streaming Video/Audio Print/file sharing Broadband Access Point Multiplayer gaming Video on demand Home security Digital audio Domestic appliances Home Networking At the heart of the digital home sits the Broadband access point distributing a host of enhanced content and services throughout the home Internet access Multiple voice lines Wireless printing Wireless IP Phone Triple Play Services Multiple devices served in a Home Multiple devices served in a Home Commercial download TV guide

11. Presentation_ID 11 Mobile Wireless Networking – an IPv6 Must WiFi HotSpots Mobile Operator GPRS, 3G, 4G Broadband ISP WiFi at Home Enterprise’s Mobile Wireless Networking challenges Manage the growth of subscribers CY04, 1.5B Mobile Phone’s users Address this large number of “Always- reachable” devices Support a Multimedia environment The IPv6 Benefits Unlicensed Band (WiFi,…) Personal mobility high data rate incremental infrastructure Licensed Band (GPRS, 3G, DVB-T,…) Full mobility Modest data rate New infrastructure The Ubiquitous Internet

12. Presentation_ID 12 Traffic Evolution Applications – Server/Client, P2P, GRID – generate different traffic patterns than Client/Server Symmetrical Symmetrical – as much upstream as downstream traffic (users become servers) Very long sessions Very long sessions – Always-on devices may be left unattended. Streaming applications can run for a long period of time. Often 24/7. Sustained high bandwidth Sustained high bandwidth – many devices can now use all bandwidth available. Multiple video sessions require high bandwidth capacity Non-local Non-local – Traffic travels globally, and between ISP networks, hence putting load on the peering points (est. 60% of traffic) and expensive long haul links.

13. Presentation_ID 13 Networks in Motion GPS Telematics: Industry related to using computers in concert with telecommunications systems. This includes Internet access, as well as all types of networks that rely on a telecommunications system to transport data. “Telematics to Become $8 Billion Industry by 2005, According to New Study from Allied Business Intelligence” http://www.telematicsupdate.com Server HA Toll or Gaz Station’s Internet GPRS or 3G Network

14. Presentation_ID 14 Restoring an End-to-End Architecture Internet started with end-to-end connectivity for any applications Replacing ALG such as Decnet/SNA gateway Today, NAT and Application- Layer Gateways connect disparate networks Peer-to-Peer or Server-to-Client applications mean global adresses when you connect toPeer-to-Peer or Server-to-Client applications mean global adresses when you connect to IP Telephony, Fax, Video Conf Mobile, Residential,… Distributed Gaming Remote Monitoring Instant Messaging New Technologies/Applications for Home Users ‘Always-on’—Cable, DSL, Ethernet-to-the-Home, Wireless,… Global Addressing Realm

15. Presentation_ID 15 Building the “IPv6 House” 19941994 1995-1998 2001-20042001-2004 IESG IPng WG creation IETF IPv6 WG Core Specs More IETF specs (Mobile IPv6, DHCPv6 PD, Flow Label…), Applications port 2004-2008 Commercial Products & Infrastructures (6NET, GEANT,…) Today, Core IPv6 specifications are IETF Draft Standards well-tested & stable, enabling a move to “full production”

16. Presentation_ID 16 IPv6 Markets National Research & Education Networks (NREN) & Academia Geographies & Politics Wireless (PDA, 3G Mobile Phone networks, Car,...) Home Networking Set-top box/Cable/xDSL/Ethernet-to-the-home Eg. Japan Home Information Services initiative Distributed Gaming Consumer Devices Enterprise Requires full IPv6 support on O.S. & Applications Service Providers

17. Presentation_ID 17 IPv6 O.S. & Applications support All software vendors officially support IPv6 in their latest O.S. releases Apple MAC OS X, HP (HP-UX, Tru64 & OpenVMS), IBM zSeries & AIX, Microsoft Windows XP,.NET, CE; Sun Solaris,… *BSD, Linux,… 2003 and beyond: Call for Applications Applications must be agnostic regarding IPv4 or IPv6. Successful deployment is driven by Applications See playground.sun.com/ipv6 and www.hs247.com for latest update www.hs247.com

18. Presentation_ID 18 IPv6 Geo-Politics Regional and Countries IPv6 Task Force Europe - http://www.ipv6-taskforce.org/#http://www.ipv6-taskforce.org/# Belgium, France, Spain, Swiss, UK,… North- America - http://www.nav6tf.org/http://www.nav6tf.org/ Japan IPv6 Promotion Council - http://www.v6pc.jp/en/index.htmlhttp://www.v6pc.jp/en/index.html China, Korea, India,… Relationship Economic partnership between governments China-Japan, Europe-China,… Recommendations and project’s funding IPv6 2005 roadmap recommendations – Jan. 2002 European Commission IPv6 project funding: 6NET & EuroIX Tax Incentives Japan only – 2002-2003 program

19. Presentation_ID 19 ISP Deployment Activities Several Market segments IX, Carriers, Regional ISP, Wireless ISP have to get an IPv6 prefix from their Regional Registry http://www.ripe.net/ripencc/mem- services/registration/ipv6/ipv6allocs.html Large carriers are running trial networks but Plans are largely driven by customer’s demand Regional ISP focus on their specific markets Japan is leading the worldwide deployment Target is Home Networking services (dial, DSL, Cable, Ethernet-to-the-Home,…)

20. Presentation_ID 20 IPv6 & Wireless Market segments Mobile phone industry goes to IP: 3GPP/3GPP2/MWIF Wireless service providers have had IPv4 address requests rejected for long term business plan Vertical markets need the infrastructure: Police, Army, Fire Department, Transports Some 802.11 Hot Spots already offer an IPv6 connectivity. Commercial services need a Phase approach R&D (03), Trial (04-05), Deployment (06 & beyond) Key driver is the client’s device & application Symbian 7.0, Microsoft Pocket PC 4.1, Netfront 3.x,…

21. Presentation_ID 21 3GPP Mobile Wireless Network Architecture ISP IPv6 for GPRS (data & GTP) can be done now Mentioned in 2G and 3G R3+ specifications But only few IPv6 (or dual stack) handset prototype IPv6 for Internet Multimedia Subsystem (mandatory & exclusive) Migration from ATM to IP(v6) in UTRAN Shall be IPv6, IPv4 optional and dual-stack recommended PDN IPv4 SSD IPv4/v6 IPv6 (e.g. IMS) SSG SGSN (2G) NMS BTS (2G) NodeB (3G) RNC (3G) BSC (2G) GRX (GTP) SGSN (3G) CG, AAA, DHCP, DNS ) GGSN (3G) CDN arch. GGSN (2G) BG CN(GTP) RAN CN RAN DNS

22. Presentation_ID 22 IPv6 – for an Ubiquitous Internet Connect Everything to the Internet Simply (Plug & Play) and Safety Enjoy the Internet Everywhere & Anywhere Broadband, wireless,… China, India, Africa,… Play, Learn, and Live on the Internet for Everybody Peer to Peer & Client/Servers applications Global reachability as well as community of interest Home Information Services We need One InternetWe need One Internet Global communications enhances business, trade, research

23. Presentation_ID 23 How to get an IPv6 Address? How to get address space? Real IPv6 address space now allocated by APNIC, ARIN and RIPE NCC to ISP APNIC2001:0200::/23 & 2001:0C00::/23 ARIN2001:0400::/23 RIPE NCC2001:0600::/23 & 2001:0800::/23 6Bone3FFE::/16 6to4 tunnels2002::/16 Enterprises get their IPv6 address space from their ISP. Further information on www.cisco.com/ipv6

24. Presentation_ID 24 IPv6 Forum 151 members (January 2003) Created in 1999 Cisco is a founding member Mission is to promote IPv6 not to specify it (IETF) www.ipv6forum.com IPv6 Forum OneWorld working group Australian, India, Korea, Mexico, Russian, UK,… Held ‘IPv6 summit’ around the World Madrid – May 2003, U.S. – June 2003

25. Presentation_ID 25 Agenda IPv6 Business Case IPv6 Protocols & Standards Integration and TransitionIntegration and Transition Cisco IOS IPv6 Roadmap IPv6 Deployment scenarios ReferencesReferences

26. Presentation_ID 26 IETF v6Ops Working Group Follow-up of IETF NGTrans WG The IPv6 Operations (v6ops) working group of the IETF is under the Operations and Management Area, and has as its overall goal assisting the transition to IPv6, the next generation Internet protocol chosen by the IETF community. http://www.6bone.net/v6ops/default.htm Http://www.ietf.org/html.charters/ngtrans- charter.html

27. Presentation_ID 27 IPv4-IPv6 Transition / Co-Existence A wide range of techniques have been identified and implemented, basically falling into three categories: (1)Dual-stack techniques, to allow IPv4 and IPv6 to co-exist in the same devices and networks (2)Tunneling techniques, to avoid order dependencies when upgrading hosts, routers, or regions (3)Translation techniques, to allow IPv6-only devices to communicate with IPv4-only devices Expect all of these to be used, in combination

28. Presentation_ID 28 Dual Stack Approach Dual stack node means: Both IPv4 and IPv6 stacks enabled Applications can talk to both Choice of the IP version is based on name lookup and application preference TCPUDP IPv4IPv6 Application Data Link (Ethernet) 0x08000x86dd TCPUDP IPv4IPv6 IPv6-enable Application Data Link (Ethernet) 0x08000x86dd Frame Protocol ID Preferred method on Application’s servers

29. Presentation_ID 29 Dual Stack Approach & DNS In a dual stack case, an application that: Is IPv4 and IPv6-enabled Asks the DNS for all types of addresses Chooses one address and, for example, connects to the IPv6 address DNS Server IPv4 IPv6 www.a.com = * ? 3ffe:b00::1 10.1.1.1

30. Presentation_ID 30 Cisco IOS Dual Stack Configuration Cisco IOS is IPv6-enable: If IPv4 and IPv6 are configured on one interface, the router is dual-stacked Telnet, Ping, Traceroute, SSH, DNS client, TFTP,… IPv6 and IPv4 Network Dual-Stack Router IPv4: 192.168.99.1 IPv6: 2001:410:213:1::/64 eui-64 router# ipv6 unicast-routing interface Ethernet0 ip address 192.168.99.1 255.255.255.0 ipv6 address 2001:410:213:1::/64 eui-64

31. Presentation_ID 31 Using Tunnels for IPv6 Deployment Many techniques are available to establish a tunnel: Manually configured Manual Tunnel (RFC 2893) GRE (RFC 2473) Semi-automated Tunnel broker Automatic Compatible IPv4 (RFC 2893) 6to4 (RFC 3056) 6over4 ISATAP (Intra-Site Automatic Tunnel Addressing Protocol)

32. Presentation_ID 32 IPv6 over IPv4 Tunnels Tunneling is encapsulating the IPv6 packet in the IPv4 packet Tunneling can be used by routers and hosts IPv4 IPv6 Network Tunnel: IPv6 in IPv4 packet IPv6 Host Dual-Stack Router IPv6 Host IPv6 Header IPv4 Header IPv6 Header Transport Header Data Transport Header

33. Presentation_ID 33 Manually Configured Tunnel (RFC 2893) IPv4 IPv6 Network Dual-Stack Router2 Dual-Stack Router1 IPv4: 192.168.99.1 IPv6: 3ffe:b00:c18:1::3 IPv4: 192.168.30.1 IPv6: 3ffe:b00:c18:1::2 router1# interface Tunnel0 ipv6 address 3ffe:b00:c18:1::3/64 tunnel source 192.168.99.1 tunnel destination 192.168.30.1 tunnel mode ipv6ip router2# interface Tunnel0 ipv6 address 3ffe:b00:c18:1::2/64 tunnel source 192.168.30.1 tunnel destination 192.168.99.1 tunnel mode ipv6ip Manually Configured tunnels require: Dual stack end points Both IPv4 and IPv6 addresses configured at each end

34. Presentation_ID 34 IPv4 Compatible Tunnel (RFC 2893) IPv4-compatible addresses are easy way to autotunnel, but it: May be deprecated soon IPv4 Dual-Stack Router IPv4: 192.168.99.1 IPv6: ::192.168.99.1 IPv4: 192.168.30.1 IPv6: ::192.168.30.1

35. Presentation_ID 35 IPv4 IPv6 Network 6to4 Router2 6to4 Router1 192.168.99.1192.168.30.1 Network prefix: 2002:c0a8:6301::/48 Network prefix: 2002:c0a8:1e01::/48 == E0 router2# interface Loopback0 ip address 192.168.30.1 255.255.255.0 ipv6 address 2002:c0a8:1e01:1::/64 eui-64 interface Tunnel0 no ip address ipv6 unnumbered Ethernet0 tunnel source Loopback0 tunnel mode ipv6ip 6to4 ipv6 route 2002::/16 Tunnel0 6to4 Tunnel: Is an automatic tunnel method Gives a prefix to the attached IPv6 network 2002::/16 assigned to 6to4 Requires one global IPv4 address on each Ingress/Egress site 6to4 Tunnel (RFC 3056) 2002 Public IPv4 address /48/64 /16 Interface ID SLA

36. Presentation_ID 36 6to4 Relay IPv4 IPv6 Network 6to4 Router1 192.168.99.1 Network prefix: 2002:c0a8:6301::/48 IPv6 address: 2002:c0a8:1e01::1 = 6to4 Relay IPv6 Internet router1# interface Loopback0 ip address 192.168.99.1 255.255.255.0 ipv6 address 2002:c0a8:6301:1::/64 eui-64 interface Tunnel0 no ip address ipv6 unnumbered Ethernet0 tunnel source Loopback0 tunnel mode ipv6ip 6to4 ipv6 route 2002::/16 Tunnel0 ipv6 route ::/0 2002:c0a8:1e01::1 6to4 relay: Is a gateway to the rest of the IPv6 Internet Default router Anycast address (RFC 3068) for multiple 6to4 Relay

37. Presentation_ID 37 IPv6-IPv4 Communication Mechanisms Translation NAT-PT (RFC 2766) TCP-UDP Relay (RFC 3142) DSTM (Dual Stack Transition Mechanism) API BIS (Bump-In-the-Stack) (RFC 2767) BIA (Bump-In-the-API) ALG SOCKS-based Gateway (RFC 3089) NAT-PT (RFC 2766)

38. Presentation_ID 38 NAT-PT Overview NAT-PT IPv4-only network IPv4 HostIPv6 Host IPv6-only network 172.16.1.1 2001:0420:1987:0:2E0:B0FF:FE6A:412C Src: 2001:0420:1987:0:2E0:B0FF:FE6A:412C Dst: PREFIX::1 1 2 Src: 172.17.1.1 Dst: 172.16.1.1 3 Src: 172.16.1.1 Dst: 172.17.1.1 Src: PREFIX::1 Dst: 2001:0420:1987:0:2E0:B0FF:FE6A:412C 4 ipv6 nat prefix 2010::/96 PREFIX is a 96-bit field that allows routing back to the NAT-PT device

39. Presentation_ID 39 Configuring Cisco IOS NAT-PT LAN2: 192.168.1.0/24 LAN1: 2001:2::/64 Ethernet-2 Ethernet-1 NATed prefix 2010::/96.200 interface ethernet-1 ipv6 address 2001:2::10/64 ipv6 nat prefix 2010::/96 ipv6 nat ! interface ethernet-2 ip address 192.168.1.1 255.255.255.0 ipv6 nat ! ipv6 nat v4v6 source 192.168.1.100 2010::1 ! ipv6 nat v6v4 source route-map map1 pool v4pool1 ipv6 nat v6v4 pool v4pool1 192.168.2.1 192.168.2.10 prefix-length 24 ! route-map map1 permit 10 match interface Ethernet-1 DNS.100 2001:2::1 Network Address Translation-Protocol Translation RFC 2766 IP Header and Address translation Support for ICMP and DNS embedded translation Auto-aliasing of NAT-PT IPv4 Pool Addresses

40. Presentation_ID 40 Agenda IPv6 Business Case IPv6 Protocols & Standards Integration and Transition Cisco IOS IPv6 RoadmapCisco IOS IPv6 Roadmap IPv6 Deployment scenarios ReferencesReferences

41. Presentation_ID 41 Cisco IPv6 Technology Strategy Performance IPv6 Hardware Assisted Forwarding Intelligent Services Cisco IOS IPv6 Feature set Evolutionary Infrastructure IPv6 Solutions Focusing on Integration and Co-Existence Innovation

42. Presentation_ID 42 Cisco IPv6 Calendar IPv6 is Production Ready – Cisco IOS 12.3 Cisco IOS IPv6 Phase III deliverables FCS: OSPFv3, QoS, ISATAP, Multi-Topology IS-IS EFT: Netflow IPv6, DHCPv6 PD, Radius IPv6, IPv6 Multicast, … IPv6 Hardware Assisted Forwarding Cat.6K/7600 Sup720 Cat. 3750 March 2001 Cisco IOS IPv6 Phase I announcement May 2001 Cisco 12.2(2)T FCS October 2001 Cisco 12.0(19)ST1 FCS on 12000 series December 2001 Cisco IOS Phase 2 announcement Cisco partners on 6NET project October 2002 IPv6 Hardware assisted forwarding on Cisco 12000 series October 1996 Cisco IOS IPv6 Technology Preview software deployed on 6Bone June 2000 Cisco IOS IPv6 Statement of Direction 3 phases roadmap 2000200120022003 IPv6 – Integration & Co-Existence

43. Presentation_ID 43 Market Target Phase III On-Going Phase III On-Going Phase II Done Phase II Done Phase I Done Phase I Done Early Adopter Deployment Production Backbone Deployment Enhanced IPv6 Services Cisco IOS Release Cisco IOS Roadmap: The Confluence of IPv4/IPv6 Cisco IOS Upgrade = IPv6

44. Presentation_ID 44 The Introductory Phase Cisco IOS Technology Preview code built the experimental IPv6 Internet – ‘6Bone’ Cisco engineers co- chair the IETF IPv6 and Ngtrans WG Cisco, a founding member of the IPv6 Forum www.cisco.com/ipv6 Comprehensive Cisco Platform support 1 st networking company to deliver commercial IPv6 support over the broadest range of routers/switches, including all transition mechanisms IOS 12.3M, 12.2S, 12.3T IPv6 HW FW – C12000, C6500, C7600, C10720 Cisco gains extensive deployment experience, e.g. 6NET Moving IPv6 into Production Service Providers – Asia and Europe Academic institutions Broadband Services Service Providers - US IP Telephony Home Networking Government & Defense Etc. 1997-20002001-20032004 & Beyond 44

45. Presentation_ID 45 Cisco IOS IPv6 Release Positioning General Production – Cisco IOS 12.3M Core ISP & NREN – Cisco 12.0S on Cisco 12000 series ISP and Enterprise Infrastructure – Cisco IOS 12.2S Broadband Access – Cisco IOS 12.2(15)B Technology development – Cisco IOS 12.3T

46. Presentation_ID 46 Feature Set Cisco IOS IPv6 Phase I – Early Adopters 12.2T Also 12.3M 12.2T Also 12.3M 12.0S/ST (*) 12.2S IPv6 Basic specifications (RFC 2460) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S ICMPv6 (RFC 2463) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Neighbor Discovery (RFC 2461) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Stateless Auto-Configuration 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S RIPng (RFC 2080) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S MP-BGP4 (RFC 2545 & 2858) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Configured & Automatic Tunnels 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S 6to4 Tunnels (RFC 3056) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Data Links (*) 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Applications 12.2(2)T 12.0(22)S/(21)ST 12.2(14)S Standard Access Control List Ethernet, FDDI, PPP, HDLC ATM PVC & LAN-E, FR PVC Ethernet, FDDI, PPP, HDLC ATM PVC & LAN-E, FR PVC Ping, Traceroute, Telnet, TFTP, DNA AAAA over IPv4, HTTP Ping, Traceroute, Telnet, TFTP, DNA AAAA over IPv4, HTTP GRE Tunnels Done 12.2(2)T 12.2(4)T 12.2(14)S N/A 12.0(22)S/(21)ST

47. Presentation_ID 47 Feature Set Cisco IOS IPv6 Phase II – Infrastructure 12.2T Also 12.3M 12.2T Also 12.3M 12.0S/ST (*) 12.2S IS-IS for IPv6 12.2(8)T 12.0(22)S/(21)ST 12.2(14)S CEFv6/dCEFv6 12.2(13)T 12.0(22)S/(21)ST 12.2(14)S Extended Access Control List 12.2(13)T 12.0(23)S 12.2(14)S IPv6 over MPLS – 6PE 12.2(15)T 12.0(22)S 12.2(14)S NAT-PT (RFC 2766) 12.2(13)T N/A TBD IPv6 MIBs 12.2(15)T 12.0(22)S 12.2(14)S CDP IPv6 Address Family on Neighbor 12.2(8)T N/A 12.2(14)S Static ND Cache entry 12.2(8)T 12.0(22)S/(21)ST 12.2(14)S Broadband Access 12.2(13)T N/A TBD DNS AAAA over IPv6 12.2(8)T 12.0(22)S/(21)ST 12.2(14)S SSH over IPv6 Encapsulation, AAA, Prefix Pools Encapsulation, AAA, Prefix Pools Link-local Address for BGP4+ peering Done 12.2(8)T 12.2(4)T 12.2(14)S 12.0(22)S/(21)ST 12.0(22)S

48. Presentation_ID 48 Cisco IOS IPv6 Status PositioningCisco IOS ReleaseFirst FCS Date General Production12.3M – 12.4MMay 2003 – May 2005 Core12.0S on 12000, 10720 IOS-XR on CRS-1 Feb 2002 May 2004 Edge & Enterprise Infrastructure 12.2SFeb 2003 L3 switches12.2S-based Derivatives C6500 12.2SX, C4500 12.2EW, C3750/3560 12.2SE Technology development 12.3T – 12.4T Note – as well as 12.2S Aug 2003 – June 2005 IPv6 Start Here documents the IPv6 feature set per Cisco IOS releases www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/ftipv6s.htm

49. Presentation_ID 49 Extensive Platform Support Check latest release number & availability with your local Cisco team Cisco IOS 12.2T Cisco 800 series Routers Cisco 1400 series Routers Cisco 1600 series Routers Cisco 1700 series Routers Cisco 2500 series Routers [12.2(4)T] Cisco 2600 series Routers Cisco 3600 series Routers Cisco 3700 series Routers Cisco 4500/4700 series Routers [12.2(2)T only] Cisco 7100 series Routers Cisco 7200 series Routers Cisco 7500 series Routers Cisco IOS 12.2S Cisco 7100 series Routers Cisco 7200 series Routers Cisco 7300 series Routers Cisco 7400 series Routers Cisco 7500 series Routers Cisco 7600 series Routers Catalyst 6500 series Cisco IOS 12.0S Cisco 12000 Series Routers Cisco 10720

50. Presentation_ID 50 Industry’s Broadest Platform Support Cisco IOS 12.3/12.3T Cisco 800 Series Routers Cisco 1700 Series Routers Cisco 1800 Series Routers Cisco 2600 Series Routers Cisco 2800 Series Routers Cisco 3600 Series Routers Cisco 3700 Series Routers Cisco 3800 Series Routers Cisco 7200 Series Routers Cisco 7301 Series Routers Cisco 7500 Series Routers Cisco IOS 12.2S & derivatives Cisco 72/7300 Series Routers Cisco 75/7600 Series Routers Cisco 10000 Series Routers (H2CY05) Catalyst 3750/3560 Series Catalyst 4500 Series Catalyst 6500 Series Cisco Product Portfolio PIX Firewall (7.0) Radar Mobile Wireless, Home Networking, IP Telephony - Radar Cisco IOS 12.0S Cisco 12000 Series Routers Cisco 10720 Series Cisco IOS-XR CRS-1, Cisco 12000

51. Presentation_ID 51 IPv6 QoS (MQC) Mobile IPv6 HA Cisco IOS 12.4M – IPv6 Feature Overview IPv6 standard ACL IPv6 extended ACL IPv6 IPsec authentication for OSPFv3IPv6 IPsec authentication for OSPFv3 IPv6 FirewallIPv6 Firewall Security RIPng OSPFv3 IS-IS for IPv6 MT IS-IS MP-BGP IPv6 Unicast MP-BGP IPv6 MulticastMP-BGP IPv6 Multicast Policy Based RoutingPolicy Based Routing Routing Broadband Access Cisco VSA AAA Radius AAA (RFC 3162)Radius AAA (RFC 3162) RBEPPPoA, PPPoE, RBE and ATM 1483 encapsulations DHCPv6 Prefix Delegation (RFC3633), DHCPv6 RelayDHCPv6 Prefix Delegation (RFC3633), DHCPv6 Relay Stateless DHCP (RFC 3646)Stateless DHCP (RFC 3646) Generic PrefixGeneric Prefix MLDv1, v2, Access GroupMLDv1, v2, Access Group PIMv2 SM, SSM, Bi-DirPIMv2 SM, SSM, Bi-Dir PIM Embedded RPPIM Embedded RP IPv6 MC over IPv4 tunnelsIPv6 MC over IPv4 tunnels Scope BoundariesScope Boundaries Static mRoutesStatic mRoutes BSRBSRMulticast Configured & Automatic Tunnels (RFC 2893) 30686to4 (RFC 3056 & 3068) IPv6 over GRE/IPv4 IPv6 over MPLS (6PE) ISATAP NAT-PT (RFC 2765 & 2766) CEF SwitchedCEF Switched IP over IPv6 TunnelsIP over IPv6 Tunnels Integration IPv6 (RFC 2460) ICMPv6 (RFC 2463) Neighbor Discovery (RFC 2461) Stateless Auto-Configuration AnycastAnycast CEFv6/dCEFv6 uRPF Strict Mode CEFv6 Switched TunnelsCEFv6 Switched Tunnels Core Telnet, TFTP, DNS resolver, HTTP, Ping, Traceroute, SSH Cisco IP & IP-Forwarding MIBs Netflow for IPv6Netflow for IPv6 SNMP over IPv6SNMP over IPv6 Applications & Mgnt Cisco IOS Software Release 12.4M

52. Presentation_ID 52 IPv6 Ready Logo Phase I program as described on www.ipv6ready.org www.ipv6ready.org TAHI conformance tests + Moonv6 participation Cisco IOS Release & IPv6 Ready Logo Phase I Cisco IOS 12.3(6)M - Logo ID 01-000164 Cisco IOS 12.3(7)T - Logo ID 01-000165 Cisco IOS 12.2(14)S - Logo ID 01-000161 Cisco IOS 12.2(17a)SX1 Cat.6500/C7600 - Logo ID 01- 000160 Cisco IOS 12.0(26)S on Cisco 12000 - Logo ID 01-000159

53. Presentation_ID 53 CRS-1 IOS XR IPv6 Roadmap Feature set on 3.2 (Core Focus) IPv6 Hardware Forwarding up to OC-768 IPv6 IPv6 address architecture ICMPv6, ND, Stateless Auto- Configuration OSPFv3, IS-IS including Multi- Topology MP-BGP4 dCEFv6 including Layer 3 load balancing via CEF uRPF Support Loose mode MTU Path Discovery IPv6 ACL Support Pingv6, Traceroutev6, Rlogin support Telnet, FTP Client IPv6 Multicast PIM-SSM, MBGP, PIM-SM, Static RP, MLDv2, Embedded RP IPv6 QoS IPv6 Multicast QoS RPL for OSPFv3 IPv6 MIBs v4/v6 separate counter MIBs at interface level OSPFv3 IPSec IPv6 unicast over bundles IPv6 NSF CY06

54. Presentation_ID 54 Cisco 12000 series router IPv6 Roadmap Feature set on 12.0(28)S IPv6 Basics ICMPv6 ND – including static entries Stateless Auto- config. ACL MIBs, SSH, Telnet DNS, TFTP Routing protocols RIPng, IS-IS for IPv6, OSPFv3, MP- BGP4 IPv6 Tunnels distributed on Line cards or Tunnel Card Switching Switching dCEFv6 6PE (IPv6 over MPLS) IPv6 Hardware Assistance Engine 3 Line Cards 4 x GE, ATM OC-12, POS OC-3, OC-12, OC-48 Standard & Extended ACL Including simultaneous IPv6 Option Headers & UDP/TCP port parsing IPv6 Provider Edge (6PE) over MPLS up to 3.8Mpps per LC Multicast on E3/E4+ MT IS-IS 26S 6PE fix on E4/E4+ IPv6 multicast on DPT SNMP over IPv6 - + on (30)S 27S IPv6 QoS BSR for IPv6 MCAST Radar 10GE/OC192POS support on E5 IPv6 MC QoS on E5 IPv6 uRPF (Strict) 28S 31S

55. Presentation_ID 55 Cisco 7600/Cat. 6500 series IPv6 Roadmap 12.2(18)SXE IPv6 Multicast IPv6 QoS DHCPv6 PD Feature set on 12.2SX CY05/06 12.2(17a)SX1 IPv6 Hardware Sup720 - IPv6 ~20Mpps dCEF720 (PFC3) modules, ie: 10GE - ~200Mpps IPv6 Basics ICMPv6, ND – including static entries, Stateless Auto-config. ACL MIBs, SSH, Telnet, DNS, TFTP Routing protocols RIPng, IS-IS for IPv6, OSPFv3, MP-BGP4 IPv6 Tunnels in HW ~10 Mpps Configured, automatic, GRE, 6to4, ISATAP 12.2(17b)SXA 6PE on Sup720 12.2(17d)SXB Sup2/MSFC2 IPv6 SW FW support 12.2(18)SXD MT IS-IS

56. Presentation_ID 56 Cisco Catalyst 3750/3560 Series IPv6 Roadmap Q1 CY05 12.2(25)SEA Release Forwarding IPv6 Hardware Forwarding ICMPv6, Neighbor Discovery including Static Entries Stateless Auto-configuration Path MTU discovery CEFv6/dCEFv6 (stack) Routing Protocols Static routes, RIPng, OSPFv3 Up to 16 equal-cost routes Services & Transitions Applications (Telnet, Ping, DNS traceroute, TFTP,…) SDM Templates Stack Management over IPv6 (HTTP) 12.2SE “Summer” Release Forwarding Limited ACL MLD Snooping Services & Transitions SSH over IPv6 CDP / IPv6 IPv6 MIBs Q3 CY05 CY06

57. Presentation_ID 57 Cisco Catalyst Switching – Industry’s Most Comprehensive IPv6 Portfolio Catalyst 6500 Catalyst 4500 Catalyst 3750 Catalyst 2950/2970 IPv6 Deployment Focus Core Distribution Datacenter Access/Core + Services High Performance Wiring Closets Core Distribution Datacenter Access/Core + Services High Performance Wiring Closets Medium Wiring Closets Small/Medium Distribution/Core Medium Datacenter Access/Core Large/Medium Branch Offices Medium Wiring Closets Small/Medium Distribution/Core Medium Datacenter Access/Core Large/Medium Branch Offices Small Wiring Closets Medium Branch Office Small Datacenter Access Small Network Aggregation Small Wiring Closets Medium Branch Office Small Datacenter Access Small Network Aggregation Small Wiring Closets Small Branch Offices Industrial environments Classroom Deployments Small Wiring Closets Small Branch Offices Industrial environments Classroom Deployments Mid-Range Modular Chassis Industry Leading Modular Chassis Advanced Stackable Entry Level Fixed Configuration IPv6 HW FW on Sup.720 10Gb/s interfaces Line rate IPv6 Services from Cisco IOS 12.2S IPv6 HW FW on Sup.720 10Gb/s interfaces Line rate IPv6 Services from Cisco IOS 12.2S IPv6 SW FW now, HW FW later IPv6 services from Cisco IOS 12.2S IPv6 HW FW associated to Cisco IOS 12.2S IPv6 services IPv6 across Cisco StackWise Technology IPv6 is fully transparent to L2 switches but for MLD snooping Native IPv6 network management Density ● Functionality ● Services ● Performance

58. Presentation_ID 58 CiscoWorks LMS 2.5 – IPv6 Support

59. Presentation_ID 59 Catalyst 6500 Series – NAM Introducing IPv6 Network Management capabilities IPv6 monitoring and decodes with NAM Can set up alarms with IPv6 addresses Can configure an “easy” IPv6 capture filter and IPv6-historical reports

60. Presentation_ID 60 IPv6 on Broadband Infrastructure Overview Data Link Layers PPPoA PPPoE RBE AAA Cisco VSA RFC 3162 1/ Framed-IPv6-Prefix, Framed- IPv6-Route, Framed-IPv6-Pool 2/ Framed-Interface-Id, Login-IPv6- Host IPv6 Prefix Pools DHCPv6 Prefix Delegation Stateless DHCPv6 Residential Telecommuter ENT/SOHO IPv4 Servers Radius, NMS,… IPv4/v6 Servers DNS, Web, E-mails, News,…

61. Presentation_ID 61 12.2T 12.0S/ST 12.2S OSPFv3 12.2(3 rd )S ISATAP 12.2(15)T 12.2(14)S N/A MT IS-IS 12.2(15)T 12.0(26)S IPv6 Multicast 12.2(3 rd )S 12.0(26)S IPv6 QoS 12.2(13)T TBD Cisco IOS IPv6 Phase III Target – as 04/2003 12.0(27)S 12.2(15)T 12.0(24)S 12.3(1st)T 12.2(3 rd )S

62. Presentation_ID 62 IPv6 @Cisco Systems Co-chair IETF IPv6 and NGTrans WG for several years Cisco IOS IPv6 is largely deployed over the 6Bone since 1996 Cisco IOS IPv6 is largely deployed over the 6Bone since 1996 Cisco as an IPv6 pioneer – 1996: 6Bone connection – 2000: IPv6 Forum founding member IPv6 Statement of Direction on CCO – May 2001: IPv6 fully supported on Cisco IOS 12.2T Cisco innovation Integration & Co-Existence strategy MP-BGP, NAT-PT, IPv6 over MPLS (6PE) DHCPv6 PD,… have been proposed by Cisco Engineers Cisco IT registered an IPv6 prefix to ARIN Solutions focusing on Production IPv6 e-Learning and IOS IPv6 class IPv6 Solution Deployment guides Partnering with Early Adopters, eg. 6NET

63. Presentation_ID 63 Agenda IPv6 Business Case IPv6 Protocols & Standards Integration and Transition Cisco IOS IPv6 Roadmap IPv6 Deployment scenariosIPv6 Deployment scenarios ReferencesReferences

64. Presentation_ID 64 IPv6 – Looking at the Crystal Ball 2007-2010 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2005 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2004 1996-2001 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2002 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2003 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2006 Enterprise adoption Enterprise adoption Early adopters Early adopters Application port Application port ISP adoption ISP adoption Hardware/software released Applications certified by IT department E-Europe, E-Japan, North-America IPv6 Task Force,… Cisco IOS IPv6 EFT Consumer adoption Consumer adoption

65. Presentation_ID 65 IPv6 – Working out the Timeline Q1Q1 Q2Q2 Q3Q3 Q4Q4 2005 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2004 2002 Q1Q1 Q2Q2 Q3Q3 Q4Q4 2003 Q1Q1 Q2Q2 Q3Q3 Q4Q4 20062007-2010 Registering for an IPv6 prefix Funding the project Deploying Training Production Testing Identifying the business case How long is needed for each phase of an IPv6 deployment project?

66. Presentation_ID 66 The Scope of IPv6 Deployment P r o v i s i o n i n g & M o n i t o r i n g Peer to Peer (ie: Instant Messenger) Peer to Peer (ie: Instant Messenger) Multimedia (Video Conf) Multimedia (Video Conf) Home Information Services Home Information Services Server to Client Home Area Networks Home Area Networks Provider Edge Provider Edge Enterprise WAN Enterprise WAN Campus Integration & Co-Existence IPv6 Forwarding & Routing protocols (RIPng, OSPFv3, IS-ISv6, MP-BGP4) IPv6 Forwarding & Routing protocols (RIPng, OSPFv3, IS-ISv6, MP-BGP4) Frame Relay PPP HDLC POSIPATM FE Gig.E Wireless xDSL Cable, FTTH Operations and Training IPv6 Services – The Cisco IOS Emphasis Provider Core Provider Core IPv4-IPv6 Translation IPv4-IPv6 Translation Security Multicast QoS Network Management Network Management IPv6 over MPLS (AToM, 6PE) IPv6 over MPLS (AToM, 6PE) IPv6 over IPv4 Tunnels (Configured, 6to4, ISATAP, GRE) IPv6 over IPv4 Tunnels (Configured, 6to4, ISATAP, GRE) Native IPv4 & IPv6 Cisco IOS is Multi-Protocol Since Day 1 Native IPv4 & IPv6 Cisco IOS is Multi-Protocol Since Day 1

67. Presentation_ID 67 Lessons from other migrations in the past IPv6 Integration and Co-Existence Business driven, no deadline Application’s transition must be the main focus Remember that other protocols failed their widespread adoption IPv6 is IP No opposition as “ATM versus IP” No real alternative to scale the Internet growth Telecommunication’s Industry already went through several Renumbering & Protocol’s changes Telephone systems X.25, DECnet, Appletalk, IPX, SNA

68. Presentation_ID 68 IPv6 Deployment Scenarios Many ways to deliver IPv6 services to End Users End-to-end IPv6 traffic forwarding is the Key feature Minimize operational upgrade costs IPv4 & IPv6 implementations must be scalable, reliable, secure and feature rich. Service Providers and Enterprises may have different deployment needs Incremental Upgrade/Deployment ISP’s differentiate Core and Edge infrastructures upgrade Enterprise Campus and WAN may have separate upgrade paths IPv6 over IPv4 tunnels Dedicated Data Link layers for native IPv6 Dual stack Networks IPv6 over MPLS or IPv4-IPv6 Dual Stack Routers

69. Presentation_ID 69 IPv6 Deployment Scenario for Enterprises EnvironmentScenario Cisco IOS support WANIPv6 services available from ISPDual StackYes Dedicated Data Link layers, eg. LL, ATM & FR PVC, dWDM Lambda Dual StackYes No IPv6 services from ISP or experimentation – few sites Configured TunnelsYes No IPv6 services from ISP or experimentation – many sites, any to any communication 6to4Yes CampusL3 infrastructure – IPv6 capableDual StackYes L3 infrastructure – not IPv6 capable, or sparse IPv6 hosts population ISATAPYes

70. Presentation_ID 70 IPv6 on a Campus – ISATAP Tunnels IPv4 + IPv6 ISATAP Network ISATAP router IPv6 Internet/Intranet IPv6 Data Center Dual-Stack Host Native IPv6 IPv6 in IPv4 ISATAP Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) – IETF Draft – Automatic Tunnels created dynamically based on embedded IPv4 addresses – IPv6 Unicast only Primarily intended for communication between [sparse] IPv6 hosts within a site with no native IPv6 infrastructure but an ISATAP router IPv6 hosts connect to virtual IPv6 link – that may spread several IPv4 subnets – to directly communicate between each others. IPv6 hosts reach the IPv6 Internet through an ISATAP router Interface ID IPv4 Addr. IPv6 Prefix ::/64 0000:5EFE: 32-bit Cisco IOS 12.3M/T 12.2S Cat.6500

71. Presentation_ID 71 IPv6 on a Campus – Dual-Stack IPv4-IPv6 10 GE core Data Center WAN & Internet Access Requires Switching / Routing Platforms to support hardware based forwarding for IPv4 & IPv6 IPv6 is transparent on L2 switches but for Multicast – MLD snooping Requires Robust Control Plane for both IPv4 & IPv6 Routing protocols IPv6 Multicast and other Advanced Services such a QoS Security through IPv6 Access Control Capabilities Including option headers IPv6 & IPv6 Control Planes & Data Planes must not impact each other

72. Presentation_ID 72 IPv6 on a Campus – Data Center Dual Stack Mainframe IPv4 Server NAT-PT L3 switches to connect Servers (up to 10GE) Including IPv6 Multicast support for streaming applications DNS Server(s) upgrade to support IPv6 (AAAA records & IPv6 Xport) Cisco IOS NAT-PT : to enable IPv6 clients to access an IPv4 server that can’t be upgraded to dual stack – DNS & FTP ALG only Dual Stack Server Ethernet 10Mb/s to 10GE connectivity Internet

73. Presentation_ID 73 IPv6 over WAN – 6to4 Tunnels IPv6 site (dual stack) IPv6 Internet 2001::/16 address space 6to4 Tunnels (RFC 3056) Automatic tunnel method – Tunnels created dynamically based upon embedded IPv4 addresses – NOT reliant upon a IPv6 ready Provider. Router tunnels IPv6 packets on 6to4 tunnel whenever the next-hop IPv6 address is non-local and its prefix is 2002::/16 Encapsulated packet gets its IPv4 destination address from the IPv4 address embedded in the next-hop IPv6 address 6to4 Relay to be configured as default route to reach the IPv6 Internet – Anycast (RFC 3068) to handle several relays IPv4 Internet IPv6 site (dual stack) 6to4 relay Anycast 2002 Public IPv4 address Interface ID SLA Cisco IOS 12.3M/T and 12.2S Cat.6500 12.0S on C12000

74. Presentation_ID 74 IPv6 over WAN – Securing IPv6 Tunnels Manual IPv6 over IPv4 Tunnels can be secured using IPv4 IPsec 6to4 tunnels between remote sites from an enterprise can be secured using IPv4 IPsec and could take benefits of key distribution mechanisms for sites from a corporate network Remote sites that only get an IPv4 dynamic address can still re-negotiate the tunnel end- point with a central site and secure the connection using IPv4 Dynamic IPsec on Cisco IOS Securing IPv6 over IPv4 tunnels with IPv4 IPsec over UDP on Cisco IOS enables NAT and Firewall traversal in a secure way IPv6 ACL must be applied to the tunnel end- points to secure the IPv6 traffic

75. Presentation_ID 75 IPv6 Deployment Scenario for ISP EnvironmentScenario Cisco IOS support CoreCore is IPv6 aware – Native IPDual StackYes Core is IPv6 unaware – MPLS6PE/6VPEYes Access Few customers, no native IPv6 service form the PoP or Data link is not (yet) native IPv6 capable, ie: Cable Docsis TunnelsYes Native IPv4-IPv6 services between aggregation and end-users Dual StackYes Dedicated circuits – IPv4 – IPv6Dual StackYes

76. Presentation_ID 76 IPv6 over WAN – Configured Tunnels IPv4 Internet IPv6 site (dual stack) Manually Configured tunnels – RFC 2893 or GRE IS-IS for IPv6 can only be configured over GRE tunnels Tunnel source and destination (IPv4) explicitly configured at end nodes Requires dual-stack router nodes or other end point (IPv4 and IPv6) As number of sites grows - manageability … IPv6 Header IPv4 Header IPv6 Header Transport Header Data Transport Header Cisco IOS 12.3M/T and 12.2S Cat.6500 & 12.0S on C12000

77. Presentation_ID 77 Dual Stack IPv4-IPv6 Infrastructure Early trials, eg. 6Bone were initially deployed using IPv6 over IPv4 tunnels. As IPv6 implementations mature,” Dual Stack network” is the normal evolution to deliver IPv6 services for native IP infrastructures Dual Stack may not necessarily apply to the entire infrastructure. One may begin on network’s portion such as Access or Core An alternative is to associate dedicated L2 circuits to each IP protocol, eg. Over ATM or FR PVC, dWDM Lambdas,… Network design requirements Selection of a routing protocol, ie: OSPFv3 or IS-IS Decision on topology alignment or not, eg. Configuring MT IS-IS Instrumentation and Management Services, ie: Multicast, QoS,…

78. Presentation_ID 78 Dual Stack IPv4-IPv6 Case Study 802.11 Hot-Spot Dual-Stack Core IPv6 Broadband Users IPv6 IX Peering DSL, Cable FTTH AggregationISP’s 6to4 Relay Courtesy Service Enterprise Dual-Stack or Dedicated L2 circuits IPv6 IX Peering IPv6 Transit services IPv6 enables on Core Routers IPv6 services to Enterprise customers IPv6 services to Home Users Additional Services 6to4 relay courtesy service IPv6 Multicast for streaming (Triple Play)

79. Presentation_ID 79 IPv6 over IPv4 Tunnels Several Tunnelling mechanisms defined by IETF Apply to ISP and Enterprise WAN networks GRE, Configured Tunnels, Automatic Tunnels using IPv4 compatible IPv6 Address, 6to4 Apply to Campus ISATAP All of the above are supported on Cisco IOS Leverages 6Bone experience No impact on Core infrastructure Either IPv4 or MPLS IPv6 Header IPv4 Header IPv6 Header Transport Header Data Transport Header

80. Presentation_ID 80 Native IPv6 over Dedicated Data Links Native IPv6 links over dedicated infrastructures ATM PVC, dWDM Lambda, Frame Relay PVC, Serial, Sonet/SDH, Ethernet All of the above are supported on Cisco IOS No impact on existing IPv4 infrastructures Only upgrade the appropriate network paths IPv4 traffic (and revenues) can be separated from IPv6 Network Management done through IPv4

81. Presentation_ID 81 IPv6 Tunnels & Native Case Study ISP scenario Configured Tunnels or Native IPv6 between IPv6 Core Routers Configured Tunnels or Native IPv6 to IPv6 Enterprise’s Customers Tunnels for specific access technologies, eg. Cable MP-BGP4 Peering with other 6Bone users Connection to an IPv6 IX 6to4 relay service Enterprise/Home scenario 6to4 tunnels between sites, use 6to4 Relay to connect to the IPv6 Internet Configured tunnels between sites or to 6Bone users ISATAP tunnels or Native IPv6 on a Campus Service Provider IPv4 backbone IPv6 over IPv4 Tunnels IPv6 Site A IPv6 Site B 6Bone IPv6 IX Use the most appropriate

82. Presentation_ID 82 Dual Stack IPv4-IPv6 Infrastructure It is generally the goal when IPv6 traffic and users will be rapidly increasing May not necessarily apply to the overall infrastructure. One may begin on network’s portion such as Campus or Access or core networks Network design must be well planned Memory size to handle the growth for both IPv4 & IPv6 routing tables IGP options & its management: Integrated versus “Ships in the Night” Full network upgrade impact IPv4 and IPv6 Control & Data planes should not impact each other

83. Presentation_ID 83 Dual Stack IPv4-IPv6 Case Study Campus scenario Upgrade all layer 3 devices to allow IPv6 hosts deployment anywhere, similar to IPX/IP environment ISP Access technologies may have IPv4 dependencies, eg. for User’s management Transparent IPv4-IPv6 access services Core may not go dual-stack before sometimes to avoid a full network upgrade Leased Line, DSL, FTTH Dial, DSL, FTTH, Cable Enterprise SOHO Residential ENT/SOHO Residential IPv4 Servers Radius, NMS,… IPv4/v6 Servers DNS, Web, News,…

84. Presentation_ID 84 Campus Deployment Scenario Full Layer 3 infrastructure upgrade to implement Dual Stack Software or Hardware/Software dependent of expected performances Native IPv6 Router(s) on a Stick VLANs are terminated on one or more IPv6 interfaces/routers Native IPv6 Routers on dedicated LANs interconnected using configured tunnels. ISATAP tunnels ISATAP router IPv6-capable L3 switches IPv6 router on a stick IPv6 over ISATAP tunnels

85. Presentation_ID 85 Automatic discovery of ISATAP routers DNS "isatap.domainname" A record lookup Automatic deprecation when end system receives native IPv6 router advertisements ISATAP Details Interface Identifier (64 bits) IPv4 Address 64-bit Unicast Prefix 0000:5EFE: 32-bit Use IANA‘s OUI 00-00-5E and encode IPv4 address as part of EUI-64 draft-ietf-ngtrans-isatap-11 draft-ietf-ngtrans-isatap-scenario-01

86. Presentation_ID 86 IPv6 Network IPv4 Network ISATAP-gw 192.168.99.1 E0 ISATAP-gw# ! interface Ethernet0 ip address 192.168.99.1 255.255.255.0 ! interface Tunnel0 ipv6 address 2001:0420:ACAC:3101::/64 eui-64 no ipv6 nd suppress-ra tunnel source Ethernet0 tunnel mode ipv6ip isatap 192.168.100.10 2001:0420:ACAC:3101: 0000:5EFE:C0A8:640A ISATAP Router Cisco IOS 12.2(15)T, 12.2(14)S Supported in Windows XP Pro SP1 The tunnel source command must point to an interface with an IPv4 address configured. Configure the ISATAP IPv6 address, and prefixes to be advertised just as you would with a native IPv6 interface. The IPv6 address has to be configured as an EUI-64 address since the last 32 bits in the interface identifier is used as the IPv4 destination address.

87. Presentation_ID 87 Evaluating an IPv6 Multicast environment Client/Server applications Server can be dual stack, serving IPv4 and IPv6 clients. Peer-to-Peer applications All hosts run IPv6 Both require an IPv6 Multicast aware infrastructure.

88. Presentation_ID 88 Enterprise Solutions and Deployments PIM-SM with RP, PIM-bidir with RP, PIM-SSM - scoped PIM domains MLDv1 or MLDv2 Campus deployment scenarios: Dual Stack Enterprise Non-native v6, host router ISATAP Enterprise Native IPv6 Multicast

89. Presentation_ID 89 Service Provider Solutions and Deployment Intra-AS With Access Customers Inter-AS: Among transit or peers Residential IPv6 over IPv4 tunnels or Dual stack IPv6 over IPv4 tunnels or Dual stack or Dual stack AS-ZAS-Y PIM-SSM with MLDv2 PIM-SM - embedded RP addressing - scoped for non-global groups - shared domains for global groups mBGP with v6 mcast SAFI support

90. Presentation_ID 90 IPv6 over MPLS Infrastructure Service Providers have already deployed MPLS in their IPv4 backbone for various reasons MPLS/VPN, MPLS/QoS, MPLS/TE, ATM + IP switching Several IPv6 over MPLS scenarios IPv6 Tunnels configured on CE (no impact on MPLS) IPv6 over Circuit_over_MPLS (no impact on IPv6) IPv6 Provider Edge Router (6PE) over MPLS (no impact on MPLS core) Native IPv6 MPLS (require full network upgrade) Upgrading software to IPv6 Provider Edge Router (6PE) Low cost and risk as only the required Edge routers are upgraded or installed Allows IPv6 Prefix delegation by ISP

91. Presentation_ID 91 Minimum Infrastructure Upgrade for 6PE GEGE GE IPv6 Server 6PE router Cisco 7600 Sup.720 as 6PE Data Center IPv6 Network MPLS/IPv4 MPLS Core up to OC-192 GE IPv4 Server NAT-PT Only IPv6 segment MPLS/IPv4 Core Infrastructure is IPv6-unaware PEs are updated to support Dual Stack/6PE IPv6 reachability exchanged among 6PEs via iBGP (MP-BGP) IPv6 packets transported from 6PE to 6PE inside MPLS FTTH MP-iBGP session 6PE router v6v4/v6 v4 CE POP DSL POP

92. Presentation_ID 92 P P P P Native IP or MPLS networks? MP-iBGP sessions VPN B VPN A VPN B VPN A V4 and v6 VPN VPN A Target 12.2S RLS7 Based on CEF/MFI enhancements EFT on 7200/7300/7500 For MPLS/VPN customers, IPv6 VPN service is the same as IPv4 VPN service, 6VPE is added only when and where the service is required draft-ietf-l3vpn-bgp-ipv6 – Cisco co-authored (flefauch) IPv6 VPN Provider Edge Router (6VPE) V6 only V4 and v6 VPN

93. Presentation_ID 93 IPv6 on Broadband Infrastructure Requirements CPE PE ISP Host ISP provisioning system How do we get the configuration information and prefixes from the ISP provisioning system, to the PE, from the PE to the user CPE, and from the CPE to the end user hosts? Routes for delegated prefixes/addresses also need to be injected into the ISP’s routing system. ??? Prefix Delegation Assignment of variable length prefixes Independent of end user topology Media independent Additional Informations (DNS, NTP,, SMTP, POP, etc)

94. Presentation_ID 94 Large Scale Deployment Suggested solution CPE PE ISP Host ISP provisioning system The PE can also send RA’s on the PE-CPE link, and the CPE can auto- configure an “uplink” address. Prefix should be different from the prefix assigned to the user. DHCPND/DHCPAAA (1) CPE sends DHCP solicit, with ORO = PD (2) PE sends RADIUS request for the user (3) RADIUS responds with user’s prefix(es) (4) PE sends DHCP REPLY, with Prefix Delegation options (5) CPE configures addresses from the prefix on its downstream interfaces, and sends an RA. O-bit is set to on. (6) Host configures addresses based on the prefixes received in the RA. As the O-bit is on, it send a DHCP INFORMATION-REQUEST message, with an ORO = DNS (7) CPE sends a DHCP REPLY containing request options. Note that the CPE is configured as a DHCP client upstream, and as a DHCP server downstream. The DHCP downstream server acts as a cache, and uses the options received on the upstream interface.

95. Presentation_ID 95 Cisco IOS IPv6 Broadband Access Solutions Video IPv6 Multicast Distributed Computing (GRID) Enterprise Internet ISP A PSTN Dial DSLAM DSL 802.11 Access Ethernet DOCSIS 3.0 proposal Cable Mobile RAN NAS BAS Head-end Layer 2 Encapsulation(s) ATM RFC 1483 Routed or Bridged (RBE) PPP, PPPoA, PPPoE, Tunnel (Cable) Dual-Stack or MPLS (6PE) Core IPv4/IPv6 Firewall PIX, IOS FW IPv6 Prefix Pools IPv6 Radius (Cisco VSA & RFC 3162) DHCPv6 Prefix Delegation Stateless DHCPv6 DHCPv6 Relay Generic Prefix

96. Presentation_ID 96 Cisco IPv6 Security Solutions IPv6 Firewall Stateful Packet Filtering IOS 12.3(7)T PIX 7.0 Secure connectivity – IPSec o IPv4 dynamic IPSec to protect IPv6 over IPv4 tunnels with dynamic IPv4 end point o IPv4 IPSec over UDP to offer protection when crossing a firewall or NAT o IPv6 IPSec to authenticate OSPFv3 – 12.3(4)T o IPv6 Site-to-Site – 12.4Tpi2 Threat protection – Packet filtering o Standard, reflexive, extended access control list o Enhanced extended ACL on 12.4Tpi1 o Hardware filtering (Cisco 12000 Series IP Service Engine, Catalyst 6500 Series Supervisor Engine 720) Integration and Coexistence Now

97. Presentation_ID 97 IPv6-in-IPv4 IPv4 IPSec VPN Remote Access – Cisco VPN Client & IPv6 Requirements Cisco IOS release with either Configured or ISATAP tunnels Cisco VPN Client 4.x Campus Internet IPv4/IPv6 VPN3000/PIX/IOSIPv4 Remote client IPv4/IPv6 IPv4/IPv6

98. Presentation_ID 98 Moving IPv6 to Production, running Cisco IOS Telecommuter Residential Dual Stack or MPLS & 6PE IPv6 over IPv4 tunnels or Dedicated data link layers Cable IPv6 over IPv4 Tunnels IPv6 IX IPv6 over IPv4 tunnels or Dedicated data link layers DSL, FTTH, Dial Aggregation IPv6 over IPv4 tunnels or Dual stack ISP’s 6Bone 6to4 Relay Dual Stack ISATAP Enterprise WAN: 6to4, IPv6 over IPv4, Dual Stack

99. Presentation_ID 99 Cisco Systems – Leading the Evolution 99 IETF IPv6 & NG Trans WG co-chair for several years DHCPv6, MIPv6 WG chair or co-chair Authored IPv6 Spec Cisco engineers originated many IETF proposals MP-BGP4, NAT-PT, 6PE/6VPE, DHCPv6 PD,… Cisco IOS IPv6 experimented on 6Bone since 1996 Cisco IOS IPv6 feature sets supported over + 24 platforms Founding member of the IPv6 Forum Founding partner of 6Net IPv6 Ready Logo Mobile Networking demo – IPv6 Promotion council “Jun Murai award”

100. Presentation_ID 100 Moving IPv6 to Production? IPv6—Conclusion Core IPv6 specifications are well-tested & stable Some of the advanced features of IPv6 still need specification, implementation, and deployment work Application, middleware and Scalable Deployment scenario are IPv6 Focus and Challenge. Plan for IPv6 integration and IPv4-IPv6 co-existence Training, applications inventory, and IPv6 deployment planning Cisco is committed to deliver advanced IPv6 capabilities to the Internet industry IPv6 Solutions, ABC of IPv6, e-Learning/Training, ISD,… See http://www.cisco.com/ipv6

101. Presentation_ID 101 Agenda IPv6 Business Case IPv6 Protocols & Standards Integration and TransitionIntegration and Transition Cisco IOS IPv6 Roadmap IPv6 Deployment scenarios ReferencesReferences

102. Presentation_ID 102 IPv6 Deployment References Regional and Countries IPv6 Task Force Europe - http://www.ipv6-taskforce.org/#http://www.ipv6-taskforce.org/# Belgium, France, Spain, Swiss, UK,… North- America - http://www.nav6tf.org/http://www.nav6tf.org/ Japan IPv6 Promotion Council - http://www.v6pc.jp/en/index.htmlhttp://www.v6pc.jp/en/index.html China, Korea, India,… Relationship Economic partnership between governments China-Japan, Europe-China,… Recommendations and project’s funding IPv6 2005 roadmap recommendations – Jan. 2002 European Commission IPv6 project funding: 6NET & EuroIX Tax Incentives Japan only – 2002-2003 program

103. Presentation_ID 103 IPv6 Deployment References China IPv6 activities European IPv6 Task Force North America IPv6 Task Force IPv6 and e-Europe 2000-JUN-14, Council and the European Commission for the Feira European Council IPv6 and e-Japan 6Bone The 6Bone is an IPv6 pilot network, to test the deployment and evolution of the IPv6 protocol around the world. Cisco is attached to the 6Bone.6Bone IPv6 experiments in many countries around the world

104. Presentation_ID 104 IPv6 Deployment References 6NET 6NET is a three-year European project to demonstrate that continued growth of the Internet can be met using new IPv6 technology. Cisco is acting as project leader.6NET 6REN The 6REN is an initiative from Research and Education Networks that provides production IPv6 transit services to facilitate high quality, high performance, and operationally robust IPv6 networks.6REN 6TAP The 6TAP is a joint project between Canarie and ESnet. Its purpose is to facilitate peering between multiple IPv6 networks at the Chicago Star Tap. It uses a Cisco router.6TAP CSELT (Italy) Research lab of Telecom Italia working on IPv6. They provide one of the Tunnel Broker implementations.CSELT (Italy) ESnet IPv6 Euro6IX Freenet6 (Canada) Provides a Tunnel Broker implementation for IPv6 standalone usersFreenet6 (Canada)

105. Presentation_ID 105 IPv6 Deployment References Internet-2 IP-v6 JOIN (DFN Germany) Kame (Japan) The KAME Project is a joint effort of seven companies in Japan to provide a free IPv6 and IPsec (for both IPv4 and IPv6) stack for BSD variants to the world. Information on IPv6 for NetBSD may also be found on NetBSD.Kame (Japan)NetBSD TAHI project (Japan) The TAHI Project is the joint effort formed by the three Japanese organisations with the objective of developing and providing the verification technology for IPv6.TAHI project (Japan) TF-TANT IPv6 (Europe) Sponsored by Ericsson/Telebit, this experiment is testing IPv6 between various NRN's in Europe. Many of them use Cisco routers.TF-TANT IPv6 (Europe) U.K. IPv6 Main U.K. IPv6 projects.U.K. IPv6 VBNS (U.S.)

106. Presentation_ID 106

107. Presentation_ID 107 China Next Generation Internet (CNGI) CNGI project led by China Government including 8 ministries: MII,… Announced end of November 2003 New National IPv6 backbone built independently by the participants and interconnect by at least 2 IPv6 IX. Total fund from government and the carriers will be 170M$. Includes 5 major carriers + NRN China Telecom, China Unicom, China Netcom/CSTNET, China Mobile, China RailCom and CERNET By 2005, the scale of CNGI network will reach 39 GigaPOPs + 300 CPNs, nationwide coverage

108. Presentation_ID 108 Renater3 (French NRN): Dual Stack IPv4- IPv6

109. 109 The 6net project An IPv6 testbed for the European Community

110. Presentation_ID 110 What it is A 3 year research project funded by the European Commission to prepare the Next Generation Internet.

111. Presentation_ID 111 Main goals To build and operate a dedicated international IPv6 network, and use this network to validate that the demands for the continuous growth of the global Internet can be met with the new IPv6 technology. To help European research and industry to play a leading role in defining the next generation of networking and application technologies that go beyond the current state of the art.

112. Presentation_ID 112 Operate an international pilot service such that geographically dispersed groups can interwork using native IPv6 facilities Validate the migration strategies for integrating IPv6 with the existing IPv4 infrastructure (core and access networks) Study and implement coexistence and migration techniques, and transition tools Introduce and intensively test state of the art IPv6 services Sub-objectives

113. Presentation_ID 113 Sub-objectives cont. Test state of the art IPv6 applications and access to legacy IPv4 applications and content Evaluate the deployment and manageability of a large IPv6 network including physical infrastructure, address allocation, registries, routing and DNS operation Exploit the synergy between European NRNs and major industrial partners Collaborate with other IPv6 projects; offering the testbed for the support of their activities

114. Presentation_ID 114 Description of Work WP 2 WP 3 WP 4 WP 5 WP 6 WP 1 WP 7 Build and operate the IPv6 network IPv4-IPv6 coexistence Basic network services Application and service support Middleware and user applications Network management Dissemination of information WP0 Project and technical management Machine Man

115. Presentation_ID 115 6NET Project Overview Cisco 12400 and 7200 series www.6net.org

116. Presentation_ID 116 Routing protocols IGP: I/ISIS with support for IPv6 - draft-ietf-isis-ipv6-02.txt L2 neighborships only ISIS Tuning: LSP pacing, SPF and PRC back-off tuning EGP: mBGP with support for IPv6 AS# 6680 iBGP full mesh between 6NET POP routers eBGP towards the NREN POP routers md5 neighborship authentication for iBGP and eBGP

117. Presentation_ID 117 Addressing 6NET available address space: 2001:0798::/40 Each 6NET pop will get a /48 Loopbacks get a prefix-length of /128 Point-to-points a /64

118. Presentation_ID 118 POP LocationIPv6 POP addressing: 2001:0798: ::/48 Core:2001:0798:0::/48 Sweden:2001:0798:25::/48 Netherlands:2001:0798:22::/48 Germany:2001:0798:14::/48 Austria:2001:0798:10::/48 Italy2001:0798:20::/48 Switserland2001:0798:12::/48 France:2001:0798:16::/48 UK2001:0798:28::/48 Greece:2001:0798:17::/48 Addressing

119. Presentation_ID 119 Equipment Hardware 6net PoP: 12404 NRN PoP: 12404 or 7206 Initial software Cisco 12404: IOS 12.0(21)ST Cisco 7206: IOS 12.2(8)T

120. Presentation_ID 120 Questions?

121. Presentation_ID 121 More Information CCO IPv6 - http://www.cisco.com/ipv6http://www.cisco.com/ipv6 The ABC of IPv6 http://www.cisco.com/en/US/products/sw/iosswrel/products_a bc_ios_overview.html IPv6 e-Learning [requires CCO username/password] http://www.cisco.com/warp/customer/732/Tech/ipv6/elearning/ IPv6 Access Services : http://www.cisco.com/warp/public/732/Tech/ipv6/docs/ipv6_ac cess_wp_v2.pdf ICMPv6 Packet Types and Codes TechNote: http://www.cisco.com/warp/customer/105/icmpv6codes.html Cisco IOS IPv6 Product Manager – pgrosset@cisco.compgrosset@cisco.com

122. Presentation_ID 122 Presentation_ID © 1999, Cisco Systems, Inc. www.cisco.com

123. Presentation_ID 123 © 2001, Cisco Systems, Inc.