Upload
ethern-lin
View
158
Download
2
Tags:
Embed Size (px)
DESCRIPTION
IPv6/IPv4 Transition: The experience sharing of Tunnel Broker deployment
Citation preview
Ethern M., LinAcademia Sinica Computing Centre
6, July, 2007
IPv6/IPv4 Transition
8th IP Open Policy MeetingTWNIC
The experience sharing of
Tunnel Broker deployment
Outline Introduction The roadmap of IPv6 transition The role of Tunnel Broker The O&M of ASCC IPv6 applications
Introduction
Introduction Just experience sharing, not advertisement! Solving the access problems in end-user side. Combine with RADIUS, provide SSO. Minimize the cost in operation and
management for IPv6/IPv4 Transition. Easy to use for end-users.
The roadmap of IPv6 transition
Transition stages(1) Stage 1
IPv4 backbone + IPv4 customers Get IPv6 Address; IPv6 Connectivity to
Upstream or peers; IPv6 transit; IPv6 IX
Stage 2 Backbone support IPv6/IPv4
Software/hardware upgrade; Tunnel could help customer to connect to IPv6
Customers support IPv6/IPv4 Tunnel; IPv6 overlay network(6PE)
Transition stages(2) Stage 3
IPv6/IPv4 backbone + IPv6/IPv4 customers
Import IPv6 features for yourself Routine or scheduled evolution Get IPv6 features in all new equipments.
Transition actions(1) Backbone
IPv6 connectivity to upstream or peers Enable IPv6 function to IPv6 network
components Upgrade regular network management and
monitoring applications Connect dual-stack customers through IPv4
backbone Backbone from IPv4 to dual-stack
Transition actions(2) Customers connection
IPv6 customers <-> IPv4 network <-> IPv6 backbone
IPv4 customer link -> dual stack
Network and service operation Extend customer management(e.g., RADIUS) to
enable IPv6 Accounting, billing etc., Implement security
Backbone transition steps Backbone transition
Transition path: IPv4 Only -> Tunnel + dedicated IPv6 Link -> Dual-Stack
IPv6-over-MPLS
Backbone gears’ configuration Routing Issues
Performance, cost, upgradable
Customers connection transition steps(1) Tunneling, prefix is
the key Configured/automated
Tunneling ISATAP [RFC 4214] 6to4 [RFC 3056] Teredo [RFC 4380]
Small sites Dual stack ->
configured tunneling -> automated tunneling
Large sites Dual stack ->
Configured tunneling Customer premise equipment
Too much to manual configured DHCPv6 or stateless mechanism
Customers connection transition steps(2)
Issues Firewall, NAT, dynamic IP assigned User authentication/access control Traceability Ingress filtering, uRPF Multi-homing
developing; multi-connection Quality of Service
Network and service operation action
IPv6 network device configuration IPv6 network management IPv6 monitoring IPv6 customers management IPv6 network and service operation security
How does ASCC proceed? At the outset -> Tunneling
IPv6/IPv4 Tunnel w/ BGP4+
Where is the Dual-Stack exist? Campus, WAN
Native and pure IPv6 Link IPv6 IX, dedicated IPv6 Link with other networks
Transition mechanism 6to4, Tunnel broker
The role of Tunnel Broker
Where is Tunnel Broker?
Implementation case (1)
Implementation case (1)
Implementation case (2)
Implementation case (3)
Implementation case (3)
The operation and managementof ASCC
What are we doing in IPv6? Cooperate with VoIPv6 Task Force
http://www.ipv6.artdio.com.tw/
Multimedia service(trial) IPv6 streaming for conference
ADSLv6 service DHCPv6, Tunnel Broker.
IPv6 Multicasting
VoIPv6連線使用方式
** Reference from VoIPv6 Task Force
They are glories of Taiwan
The pros and cons of Tunnel Broker (1)
pros To solve the network that can’t get IPv6 access
for the time being, and minimize the cost for IPv6 upgrade.
Easy for end-user; avoiding the single point of failure.
One account, many services. Dynamic DNS Update. Work for both end-user and organization. Configured and automated tunneling.
The pros and cons of Tunnel Broker (2)
cons Realm can’t be supported yet. IPv6 Multicast don’t work yet. Allow IPv6-over-IPv4 Tunnel(protocol number
41) & TCP/UDP port 3653 in Firewall device. Local database sync. problem. IPv6 network performance issue.
IPv4 traffic statistics
IPv6 traffic statistics
IPv6 users statistics
IPv6 applications
Other IPv6 stuff IPv6 Applications
http://www.deepspace6.net/docs/ipv6_status_pag
http://anf.ne.kr/~ipv6/application_list.htm e_apps.html
IPv6 Services http://www.ipv6style.jp/en/statistics/services/inde
x.shtml http://www.ipv6day.org/action.php?
n=En.Services
IPv6 Application Listshttp://www.deepspace6.net/docs/ipv6_status_pagIPv6 Application Listshttp://www.deepspace6.net/docs/ipv6_status_pagIPv6 Serviceshttp://www.ipv6day.org/action.php?n=En.ServicesIPv6 Serviceshttp://www.ipv6day.org/action.php?n=En.Services
Tunnel Broker List SixXS
http://www.sixxs.net/
XS26 http://www.xs26.net/Project/
AARNet http://broker.aarnet.net.au/
Mytbs http://tbroker.mybsd.org.my/
BT exact https://tb.ipv6.btexact.com/
Thank youFor
Your participation ! !