Ethern M., LinAcademia Sinica Computing Centre

6, July, 2007

IPv6/IPv4 Transition

8th IP Open Policy MeetingTWNIC

The experience sharing of

Tunnel Broker deployment

Outline Introduction The roadmap of IPv6 transition The role of Tunnel Broker The O&M of ASCC IPv6 applications

Introduction

Introduction Just experience sharing, not advertisement! Solving the access problems in end-user side. Combine with RADIUS, provide SSO. Minimize the cost in operation and

management for IPv6/IPv4 Transition. Easy to use for end-users.

The roadmap of IPv6 transition

Transition stages(1) Stage 1

IPv4 backbone + IPv4 customers Get IPv6 Address; IPv6 Connectivity to

Upstream or peers; IPv6 transit; IPv6 IX

Stage 2 Backbone support IPv6/IPv4

Software/hardware upgrade; Tunnel could help customer to connect to IPv6

Customers support IPv6/IPv4 Tunnel; IPv6 overlay network(6PE)

Transition stages(2) Stage 3

IPv6/IPv4 backbone + IPv6/IPv4 customers

Import IPv6 features for yourself Routine or scheduled evolution Get IPv6 features in all new equipments.

Transition actions(1) Backbone

IPv6 connectivity to upstream or peers Enable IPv6 function to IPv6 network

components Upgrade regular network management and

monitoring applications Connect dual-stack customers through IPv4

backbone Backbone from IPv4 to dual-stack

Transition actions(2) Customers connection

IPv6 customers <-> IPv4 network <-> IPv6 backbone

IPv4 customer link -> dual stack

Network and service operation Extend customer management(e.g., RADIUS) to

enable IPv6 Accounting, billing etc., Implement security

Backbone transition steps Backbone transition

Transition path: IPv4 Only -> Tunnel + dedicated IPv6 Link -> Dual-Stack

IPv6-over-MPLS

Backbone gears’ configuration Routing Issues

Performance, cost, upgradable

Customers connection transition steps(1) Tunneling, prefix is

the key Configured/automated

Tunneling ISATAP [RFC 4214] 6to4 [RFC 3056] Teredo [RFC 4380]

Small sites Dual stack ->

configured tunneling -> automated tunneling

Large sites Dual stack ->

Configured tunneling Customer premise equipment

Too much to manual configured DHCPv6 or stateless mechanism

Customers connection transition steps(2)

Issues Firewall, NAT, dynamic IP assigned User authentication/access control Traceability Ingress filtering, uRPF Multi-homing

developing; multi-connection Quality of Service

Network and service operation action

IPv6 network device configuration IPv6 network management IPv6 monitoring IPv6 customers management IPv6 network and service operation security

How does ASCC proceed? At the outset -> Tunneling

IPv6/IPv4 Tunnel w/ BGP4+

Where is the Dual-Stack exist? Campus, WAN

Native and pure IPv6 Link IPv6 IX, dedicated IPv6 Link with other networks

Transition mechanism 6to4, Tunnel broker

The role of Tunnel Broker

Where is Tunnel Broker?

Implementation case (1)

Implementation case (1)

Implementation case (2)

Implementation case (3)

Implementation case (3)

The operation and managementof ASCC

What are we doing in IPv6? Cooperate with VoIPv6 Task Force

http://www.ipv6.artdio.com.tw/

Multimedia service(trial) IPv6 streaming for conference

ADSLv6 service DHCPv6, Tunnel Broker.

IPv6 Multicasting

VoIPv6連線使用方式

** Reference from VoIPv6 Task Force

They are glories of Taiwan

The pros and cons of Tunnel Broker (1)

pros To solve the network that can’t get IPv6 access

for the time being, and minimize the cost for IPv6 upgrade.

Easy for end-user; avoiding the single point of failure.

One account, many services. Dynamic DNS Update. Work for both end-user and organization. Configured and automated tunneling.

The pros and cons of Tunnel Broker (2)

cons Realm can’t be supported yet. IPv6 Multicast don’t work yet. Allow IPv6-over-IPv4 Tunnel(protocol number

41) & TCP/UDP port 3653 in Firewall device. Local database sync. problem. IPv6 network performance issue.

IPv4 traffic statistics

IPv6 traffic statistics

IPv6 users statistics

IPv6 applications

Other IPv6 stuff IPv6 Applications

http://www.deepspace6.net/docs/ipv6_status_pag

http://anf.ne.kr/~ipv6/application_list.htm e_apps.html

IPv6 Services http://www.ipv6style.jp/en/statistics/services/inde

x.shtml http://www.ipv6day.org/action.php?

n=En.Services

IPv6 Application Listshttp://www.deepspace6.net/docs/ipv6_status_pagIPv6 Application Listshttp://www.deepspace6.net/docs/ipv6_status_pagIPv6 Serviceshttp://www.ipv6day.org/action.php?n=En.ServicesIPv6 Serviceshttp://www.ipv6day.org/action.php?n=En.Services

Tunnel Broker List SixXS

http://www.sixxs.net/

XS26 http://www.xs26.net/Project/

AARNet http://broker.aarnet.net.au/

Mytbs http://tbroker.mybsd.org.my/

BT exact https://tb.ipv6.btexact.com/

Thank youFor

Your participation ! !