workshop: ipv6 with packet tracer josé esquivel ([email protected]), technical manager- latin...

Workshop: IPv6 with Packet Tracer

José Esquivel ([email protected]),

Technical Manager- Latin America & the Caribbean

[email protected]

© 2010 Cisco and/or its affiliates. All rights reserved. 2Win7 in ITE – March 2011

Learning Objectives

• Myths and Truths of IPv6 – Basic Concepts

• Understand the IPv6 addressing

• Apply the most comon techniques used for IPv6 host address assignment using Packet Tracer.

• Configure static and default routes on IPv6

• Basic RIPng configuration on Packet Tracer

• Understand transition mechanisms from IPv4 to IPv6

• Do an example of IPv4 to IPv6 transition


Internet does not need IPv6


Internet does not need IPv6 - Myth

• This is perhaps one of the biggest myths around IPv6 by the fact that most people can still connect to the Internet without IPv6 – at the moment.

• But IPv6 is obviously an option when an organization is running out of IPv4 address space.

• But more important IPv6 is a generator of opportunity and a platform for innovation.


Some IP Registry organizations already assign the last IPv4 address block


Some IP Registry organizations already assign the last IPv4 address block - Truth

• Most of the registry organizations still have IP blocks available for the next few years but the APNIC ran out of blocks since last year

IPv4 Address ReportThis report generated at 31-Aug-2011 07:59 UTC.

Source: http://www.potaroo.net/tools/ipv4/index.html


The main problem the IPv6 solved is the address pool exhaustion



The main problem the IPv6 solved is the address pool exhaustion - False

• Address exhaustion is the most important reason for changing from a 32 bit to a 128 bit address.

• We need to also take into consideration the exponential growth of the routing table entries on the backbone Internet routers



There is a transition to IPv6 because IPv5 did not solve all IPv4 problems


There is a transition to IPv6 because IPv5 did not solve the IPv4 problems - FALSE

• There is not such protocol named IPv5.

• IETF assign numbers to all the protocols that are being develop for the Internet

• Regular IP is the protocol ID number 4

• When a group of engineers and researchers start thinking in a alternative protocol for IP, this new protocol was assign the ID 6 because ID 5 was already assign to other protocol.


QoS mechanisms of IPv4 and IPv6 are very similar


QoS mechanisms of IPv4 and IPv6 are very similar- Truth

• IPv4 has similar header elements to IPv6, intended to be used in similar ways

• The claim that IPv6 QoS is better than that in IPv4 is a myth.


IPv6 is more secure than IPv4


IPv6 is more secure than IPv4 - Myth

• The main security mechanism built into IPv6 is IPsec. IPsec is not new - it can be used with IPv4 as well, and this has been possible for years now.

• It is truth that IPsec is mandatory in some cases, but it is not automatically configured.

• IPsec in IPv6 needs a careful implementation and well educated network staff


NAT brings problems to the networks


NAT brings problems to the networks - Truth

• NAT is not a problem-free solution.

• NAT introduces performance loss on networks

• NAT leads to complex solutions which are complex solely because of the requirement to work with NAT

• The flat address space that IPv6 offers will allow us to develop new options that will drive innovation.


The lack of NAT in IPv6 reduces security


The lack of NAT in IPv6 reduces security - Myth

• This is a myth based on a myth - the real myth is that NAT increases security.

• NAT does not offer any meaningful security to networks.

• NAT exists to overcome a shortage of IPv4 address but do not provide real security to the hosts behind NAT.


In IPv6 there is no broadcast addresses


In IPv6 there is no broadcast addresses - Truth

• In IPv6 there are only Unicast, Link local and Multicast address

• Multicast replaces the need of broadcasts as we use to have in IPv4.


IPv6 is much more complicated than IPv4


IPv6 is much more complicated than IPv4 - Myth

• It is truth that is different, but is not more complicated

• IPv6 is far more similar to IPv4 than it is different.

• There are some areas where IPv6 is greatly simpler:

• Autoconfiguration of IP address

• Multicast

• Subdivide IPv6 address block for address planning in a network


IPv6 and IPv6 addressing


IPv6 addressing

• Format• x:x:x:x:x:x:x:x, where each x represents a 16 bit blocks represented in hexadecimal format

• Zeros on the left of this blocks can be deleted

• Successive zeros can be represented with a pair of colons (::) once in the address

• Examples• 2031:0000:130F:0000:0000:09C0:876A:130B

• Can be represented as 2031:0:130F::9C0:876A:130B

• But is not correct to do this: 2031::130F::9C0:876A:130B


IPv6 Address Abbreviation Example2031:0000:130F:0000:0000:09C0:876A:130B

2031: 0:130F: 0: 0: 9C0:876A:130B

2031:0:130F:0:0:9C0:876A:130B2031:0:130F:0:0:9C0:876A:130B

2031:0:130F::9C0:876A:130B


IPv6 Address TypesAddress Type Description Topology

Unicast“One to One” • An address destined for a single interface. • A packet sent to a unicast address is delivered

to the interface identified by that address.

Multicast

“One to Many” • An address for a set of interfaces (typically

belonging to different nodes). • A packet sent to a multicast address will be

delivered to all interfaces identified by that address.

Anycast

“One to Nearest” (Allocated from Unicast)• An address for a set of interfaces. • In most cases these interfaces belong to

different nodes.• created “automatically” when a single unicast

address is assigned to more than one interface.• A packet sent to an anycast address is delivered

to the closest interface as determined by the IGP.


IPv6 Address Components• An IPv6 address consists of two parts:

A subnet prefix

An interface ID

IPv6 = 128 bits

11111111.11111111.11111111.11111111 11111111.11111111.11111111.11111111 11111111.11111111.11111111.11111111 11111111.11111111.11111111.11111111

Subnet prefix Interface ID


IPv6 Address Space OverviewPrefix Hex Value Use

0000 to 00FF •Unspecified•Loopback•IPv4-compatible

0100 to 01FF Unassigned (0.38 % of IPv6 space)

0200 to 03FF NSAP Network Service AP)

0400 to 1FFF Unassigned (~11% of IPv6 space)

2000 to 3FFF Aggregatable global unicast (12.5%)

4000 to FE7F (Huge) Unassigned (~75% of IPv6 space)

FE80 to FEBF Link-local

FC00 to FCFF Unique-local

FF00 to FFFF MulticastNote: IPv6 Internet uses 2001::/3 which is < 2% of IPv6

address space

IPv6 Intro – Part 229© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public

IPv6 Global Unicast Address The global unicast address consists of:

• A 48-bit global routing prefix

• A 16-bit subnet ID

• A 64-bit interface ID

Global Routing PrefixSubnet

ID Interface ID

20010010

0008 21B:D5FF:FE5B:A408

/24

Registry

/32

ISP Prefix

/48

Site Prefix

/64

Subnet Prefix


Hierarchical scheme of IPv6 simplify router summarization


Special IPv6 Addresses

IPv6 Address Description

::/0• All networks and used when specifying a default

static route.• It is equivalent to the IPv4 quad-zero (0.0.0.0)

::/128• Unspecified address and is initially assigned to a

host when it first resolves its local link address

::1/128• Loopback address of local host• Equivalent to 127.0.0.1 in IPv4

FE80::/10• Link-local unicast address• Similar to the Windows autoconfiguration IP

address of 169.254.x.x

FF00::/8 • Multicast addresses

All other addresses

• Global unicast address


Link local address

• Link local addresses have a limited scope to the local network segment.

• Usually dynamic assigned using the prefix FF80::/10

• It is used for automatic addressing, neighbor discovery and routing updates

• Could be used to communicate several devices that do not need a global address. Example: telemetry

• Local link addresses are not routable


IPv6 Address Assignment IPv6 Unicast

Address Assignment

Link-local (FE80::/10) Address Assignment

Static

IPv6 Address

Dynamic

Automatically created (EUI-64

format) if a global unicast IPv6 address is configured

Global Routable Address Assignment

Static

IPv6 Address

Dynamic

Stateless Autoconfiguratio

n

DHCPv6


EUI-64 format for the host portion of the address

• This format extends the MAC address from 48 to 64 bits by inserting “FFFE” at the middle of the MAC address.

48-bit MAC Address

64-bit IPv6 EUI-64 Interface ID


Configuración de IPv6 en el router


IPv6 Packet Tracer files

• URL

http://cisco.webex.com/meet/joesquiv

Select Files (Archivos) and download the PT files on the folder IPv6 Workshop



Routing protocols in IPv6

• The command ipv6 unicast-routing is required to enable IPv6 on the router.


RIPng Configuration

39© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public

IPv6 Co-existence Solutions

Tunneling Services

Connect Islands of IPv6 or IPv4

IPv4 over IPv6 IPv6 over IPv4

Dual-Stack

Enterprise Co-existence strategy

TranslationServices

Connect to the IPv6 community

IPv4

IPv6

Internet consumers

Remote Workers

International SitesGovernment Agencies

IPv6IPv4


Dual stack example

R2

10.10.10.1

R1

R1(config)# interface fa0/0 R1(config-if)# ip address 10.10.10.1 255.255.255.0 R1(config-if)# ipv6 address 2001:12::1/64 R1(config-if)# ^Z R1#

10.10.10.2

2001:12::1/64 2001:12::2/64


Tunel example• IPv4 is the transport protocol

• IPv6 is encapsulated in a IPv4 packet

• Is used whenever there is a IPv4 native network that is not transitioning to IPv6.


NAT-PT

• Translation of protocols

• This should be used as the last option


IPv6 Packet Tracer files

• URL


Select Files (Archivos) and download the PT files on the folder IPv6 Workshop


Thank you

workshop: ipv6 with packet tracer josé esquivel ([email protected]), technical manager- latin...

Documents

cisco andor

ipv6 transition

important ipv6

ipv6 addressingapply

ipv6 myththis

ipv6 host address assignment

ipv4 address space

example of ipv4