Upload
reagan-tate
View
284
Download
1
Tags:
Embed Size (px)
Citation preview
Alan Waywww.spirent.comYouTube = “alantalkstech”Wiki = http://alantestwiki.pbworks.com/E-mail = [email protected]
IP Transition Fix or a Band-Aid?
2PROPRIETARY AND CONFIDENTIAL
SPIRENT Is… Putting Innovation to the Test
MOBILITY APPLICATIO
NS
NETWORKS Positioning
Mobile packet core and
backhaul testing
LTE, UMTS & CDMA device and
air interface testing
GPS, GLONASS, Galileo, Multi-
GNSS and Wi-Fi location testing
Ethernet services, video
and IPTV,voice and IMS
testing
10/40/100G Ethernet,
data centers, cloud computing
and security testing
For IPv4
IPv4
IPv6
4
¹ "Gantz, John. "The Embedded Internet: Methodology and Findings." IDC. January 2009."
Now the Internet is evolving again, to the embedded space. How big will it become? Intel Vice President Doug Davis cites the IDC prediction of 15 billion intelligent, connected devices by the year 2015.¹
Why we need IPv6
5
A customer just asked me to help him construct a configuration that would send a single ping request to every IPv6 address in the entire IPv6 address space using a 10 Gig interface.
How long would it take to perform this test using a single 10 GigE port?
BTW, it would take around 5 minutes for IPv4.
Total addresses (2^128) = 340,282,366,920,938,000,000,000,000,000,000,000,000Maximum packet rate for 10GigE = 14,470,000 Number of seconds required = 23,516,404,071,937,700,000,000,000,000,000
...that's 745,700,281,327,299,000,000,000 years! To put that into perspective, the universe is roughly 15 billion years old (15,000,000,000).
15
6
7
LSNCGNNAT444
NAT444
RFC 1918192.168.1.2
RFC 1918172.16.0.1
Public Internet203.0.113.24
NAT444
IPv4
Carrier Grade NATLarge Scale NAT
8
LSN
NAT444
RFC 1918192.168.1.2
RFC 1918172.16.0.1
Public Internet203.0.113.24
IPv4
ISP Address & CPE Must be managed
Performance IssuesGamingVoIPVideo Streaming
RFC 1918172.16.0.6
http://tools.ietf.org/id/draft-donley-nat444-impacts-01.html
Legal Intercept
Loss of Geolocation
Where are the bad guys?
9
10
Dual Stack Lite (DS-Lite)
IPv4
10.0.0.1IPv6
10.0.0.2
2001:DB8:0:1::1
2001:DB8:0:2::1
198.51.100.1
192.0.2.1
172.16.0.2
172.16.0.1
(IPv4 Access over IPv6)
11
10.0.0.22001:DB8:0:1::1
172.16.0.2
Basic Bridging Broad Band element (B4)
12
192.0.2.1172.16.0.1
2001:DB8:0:2::1 NAT+
DHCP172.16.0.2
CPE
2001:DB8:0:1::1
Address Family Transition Router element (AFTR)
AFTR
192.0.2.1172.16.0.1
2001:DB8:0:2::1 NAT+
DHCP172.16.0.3
CPE
2001:DB8:0:1::2
172.16.0.1
2001:DB8:0:2::1 NAT+
DHCP172.16.0.4
CPE
2001:DB8:0:1::3
NAT+
DHCP
2001:DB8:0:2::1
192.0.2.1
172.16.0.1
13
Datagram Mapping (NAT)
IPv4
10.0.0.1IPv6
10.0.0.2
2001:DB8:0:1::12001:DB8:0:2::1
198.51.100.1
192.0.2.1
172.16.0.1
Datagram Header Contents
IPv4 Datagram 1 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src10.0.0.1 TCP Src Port 10000IPv6 Datagram 2 IPv6 Dst 2001:DB8:0:2::1 IPv6 Src 2001:DB8:0:1::1 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src 172.16.0.2 TCP Src Port 10000IPv4 Datagram 3 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src 192 .0.2.1 TCP Src Port 5000
Outbound
172.16.0.2
14
Datagram Mapping (NAT)
IPv4
10.0.0.1IPv6
10.0.0.2
2001:DB8:0:1::12001:DB8:0:2::1
198.51.100.1
192.0.2.1
172.16.0.1
Datagram Header Contents IPv4 Datagram 1 IPv4 Dst 192.0.2.1 TCP Dst Port 5000 IPv4 Src198.51.100.1 TCP Src Port 80IPv6 Datagram 2 IPv6 Dst 2001:DB8:0:1::1 IPv6 Src 2001:DB8:0:2::1 IPv4 Dst 172.16.0.2 TCP Dst Port 10000 IPv4 Src 198.51.100.1 TCP Src Port 80IPv4 Datagram 3 IPv4 Dst 10.0.0.1 TCP Dst Port 10000 IPv4 Src 198 .51.100.1 TCP Src Port 80
Inbound
172.16.0.2
15
16
Case study for IPv6 Rapid Deployment
Founded in 1999 One of the Worlds largest IPv6 residential providers Provides VoIP, IPTV, Internet, MobileFour Million Customers (10/2010) 27% of Market
Nov 7, 2007 6rd presented Nov 9, 2007 Prefix from RIPE Nov 9, 2007 Beta Code on Freebox running Dec 11, 2007 Service available to 2M customers 250K users signed up in first month. 500K users enabled today (~4M ready for IPv6)
IPv6 Deployment Timeline
17
IPv6 Rapid Deployment (6rd) RFC-5969
6rd specifies a protocol to deploy IPv6 to sites via a service provider's IPv4 network.
It builds on 6to4 with the key differentiator that it utilizes an SP's own IPv6 address prefix rather than a well-known prefix (2002::/16)
6rd views the IPv4 network as a link layer for IPv6
IPv4 IPv6IPv6
18
6rd Example ( Customer Edge Example)
IPv6BR IPv4
Address
The CE IPv4 address can be configured or from DHCPThe CE IPv4 address can be global or private (RFC 1918)
CE IPv4
address
6rd Prefix/n bitsSubnet ID0-16 bits Interface ID 64 bitsCE IPv4 add
0-32 bits 10.100.100.12001:DB80::/322001:DB80: 64 64:0100:
BR IPv4/IPv6
IPv6
10.100.100.1
19
6rd DHCPv4 Option
Option_6rd Option-Length IPv4 Mask len 6rd PrefixLen
6rd Prefix (16 Octets)
6rdBRIPv4Address(es)
Option_6rd Value (212). Option-Length Length of DHCP Option (22 with one BR IPv4 Address). IPv4MaskLen Number of high order bits that are identical across all CE. 6rdPrefixLen Length of SP’s 6rd IPv6 Prefix in number of bits. 6rdBRIPv4Address One or more IPv4 Address of 6rd Border Relay.
20
NAT64 & DNS64
Enables IPv6 Clients to access IPv4 only hostsNew/Existing ISPs can provide IPv6 access only
21
ClientIPv6 Only
DNS AAAA QueryFor alan.com
DNS64Server
alan.comIPv4: 112.1.2.3
DNS AAAA Response IPv664:FF:9B::112.1.2.3
NAT64
IPv4Only
ApplicationServer
NAT64 & DNS64
NAT64Stress Testing
IPv6
Excellent article: http://www.networkworld.com/community/blog/testing-nat64-and-dns64
Uses a special prefix, called Pref64::/nWell-known prefix: 64:ff9b::/96
22
Measure performance of Border Gateways Testing up to 100Gbps Measure overall server performance Application/Security/VoIP/Video IPSec Testing Measure performance of IPv6, IPv4 & Dual Stack Routers Measure performance IPv6/IPv4 Tunnel Transition Devices
IPv6 Protocol conformance testing. Professional Services
How can Spirent help?
23
Will Your IPv6 Network Pass the Test?
24
www.spirent.comYouTube = “alantalkstech”Wiki = http://alantestwiki.pbworks.com/E-mail = [email protected]