Stay Connected - world IPv6 Launch

1,138 views
1,090 views

Published on

About the IPv6 migration - delivered for Microsoft Swedish Partner Network, February 14th 2012. The first half is mostly strategical, the second is a bit more technical.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,138
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Stay Connected - world IPv6 Launch

  1. 1. Stay connected! Olle E. Johansson * oej@edvina.net * Twitter oej Copyright Edvina AB, Sollentuna, Sweden 2012. All rights reserved.tisdag 14 februari 12
  2. 2. tisdag 14 februari 12
  3. 3. Why IPv6 is important • The Internet grows... a lot more than during the dot.com days • IPv6 is the only solution for growth • Continued IPv4 use will lead to walled gardens, separate Internet islands with little or no connectivity • IPv6 enables global realtime communication between all connected devicestisdag 14 februari 12
  4. 4. The Internet grows... • Internet growth is bigger now than during the worst growth during the dot.com explosion • We have more Internet-enabled smart phones than IPv4 addresses • An explosion of Internet-connected things is already happening.tisdag 14 februari 12
  5. 5. We are global • The Internet is growing personal and global. • The only solution for global realtime communication is IPv6 • The current solution costs too much and is not global any moretisdag 14 februari 12
  6. 6. No D-Day • The change will go gradually • IPv4 NAT will keep us alive • Don’t count with more public IP addresses for servers and services. • Don’t panic, but start acting.tisdag 14 februari 12
  7. 7. First notice • Your contacts/customers in Asia will complain that they can’t e-mail you, or reach your web • You buy a cool gadget in the Duty-Free electronic store, and it just won’t connect • Your ISP or hosting center says they will have to charge 1.000 Euro for the new IP address - per year.tisdag 14 februari 12
  8. 8. IPv6 is the only solution • There is no other magic solution to Internet growth and scalability with IPv4tisdag 14 februari 12
  9. 9. 10 steps forwardtisdag 14 februari 12
  10. 10. 1. Learn IPv6 • You need to upgrade your network engineers • It’s not hard, but remember, it’s a new protocol • A new protocol means new security issuestisdag 14 februari 12
  11. 11. 2. Get addresses • Your ISP (or your next ISP) will give you a / 48 network • You will have more addresses than the current Internet and all of IPv4 - yourself!tisdag 14 februari 12
  12. 12. 3. Require IPv6 • Don’t buy any network services, equipment or computers that does not support IPv6 • Wake up, it’s 2010 • If no IPv6 support, take the cost this year, because you will soon have to replace it.tisdag 14 februari 12
  13. 13. 4. Convert public services • Convert e-mail, DNS,VoIP and web to IPv6 • Make sure the world can reach youtisdag 14 februari 12
  14. 14. 5. Check vendors • Does your bank, consultants, outsourcing partners, vendors support IPv6? • What’s the status of your business neighbourhood?tisdag 14 februari 12
  15. 15. 6. Dual stack on PCs • When buying new PCs or upgrading, implement dual stack • Supported by Linux, Mac, Windows • Very simple to enabletisdag 14 februari 12
  16. 16. 7. Use IPv6 - only • If all clients have dual stack, don’t be afraid to use ONLY ipv6 on new servers • Old servers are harder to move away from IPv4 • Use NAT64 for IPv4 reachabilitytisdag 14 februari 12
  17. 17. 8. Move the IT department • Let the IT department PCs be IPv6 onlytisdag 14 februari 12
  18. 18. 9. Benefit from IPv6 • VPNs are much easier • You have a large address space - use it • Mobility is built in • IPv6 over IPv6, IPv6 over IPv4 • No more NAT traversal issuestisdag 14 februari 12
  19. 19. 10. Don’t panic. • There is urgency, but your business won’t collapse if this doesn’t work today • Make IPv6 part of every IT project • Don’t make it a special project • Start now.tisdag 14 februari 12
  20. 20. Stay connected! • The beauty of the Internet is global reachability, global connectivity • Without IPv6, the Internet will be fragmented into separate islands and walled gardens • We don’t want that. No one wants that. Stay connected. Go IPv6 today!tisdag 14 februari 12
  21. 21. Help your customers • Wake them up • Train them on all levels • Introduce IPv6 in all current projects • Help them test • Get their public services connected to IPv6 • Require IPv6 from all your vendorstisdag 14 februari 12
  22. 22. tisdag 14 februari 12
  23. 23. Technical overviewtisdag 14 februari 12
  24. 24. IPv6 basics 128 bit 128 bit address address • Larger IP packet headers - IP address 128 bits instead of 32 • All TCP/UDP protocols behave like before • Protocols that embedd IP address will have to support the new formats • Subnetting like before with CIDR prefixestisdag 14 februari 12
  25. 25. A common enterprise model 48 bit 16 bit 64 bit prefix subnet device 65536 networks! ISP get /32 Enterprise /48 or /54tisdag 14 februari 12
  26. 26. Dual stack IPv4 IPv6 The IPv4 The IPv6 Internet Internettisdag 14 februari 12
  27. 27. TWO highways to the same destination IPv4 IPv4 IPv6 IPv6tisdag 14 februari 12
  28. 28. Happy eyeballs IPv4 IPv4 IPv6 IPv6tisdag 14 februari 12
  29. 29. Migration 1 2 3 IPv4 IPv4 IPv6 IPv6tisdag 14 februari 12
  30. 30. Testing IPv6 3 IPv6tisdag 14 februari 12
  31. 31. Multiple addresses per interface Link local address based on MAC (FE80::) Site local address - ULA FDxx Global address based on network prefix and MAC Global address based on network prefix and random data Link local multicast addresses Service specific multicast address Loopback address (only for loopback interface)tisdag 14 februari 12
  32. 32. Different views in OS/X Network configuration shows only IPv4 Advanced shows ONE IPv6 address ifconfigtisdag 14 februari 12
  33. 33. Distributing IPv6 addresses Local Link (FE80::) - automatically Global based on RA prefix - automatic (SLAAC) Based on MAC address Based on random data for privacy (temporary address) Global based on DHCP - automatic (SLAAC) Static - manual configurationtisdag 14 februari 12
  34. 34. DHCPv6 INFORMATION DNS, SIP gateway, NTP server etc OBJECTS DYNAMIC Random address from a range IP ADDRESS PRIVACY ENHANCED Managed temporary privacy-enhanced IP ADDRESS Address STATIC Static address based on device identifier IP ADDRESStisdag 14 februari 12
  35. 35. DHCPv6 for ISP’s NETWORK Network prefix, subnet mask PROVISIONING routertisdag 14 februari 12
  36. 36. DUID = Device Identifier SYSTEM DUID - Device Unique Identifier IF IF IAID - Interface Adapter Identifier IF In IPv4 DHCP the MAC is the system!tisdag 14 februari 12
  37. 37. Where are they? DUID IAID Only shown in Microsoft ETH0 Windows 7. I can’t find it easily in any other system. IAID Required to set up static WLAN0 DHCPv6 address management.tisdag 14 februari 12
  38. 38. Privacy enhanced • ”Welcome back. You’re using a MacBook Pro 10th generation from Sollentuna, Sweden.” • Why should I let everyone see my MAC address? And that I use multiple devices? • All systems support this. Windows enable it by default. No other system has it in the UI.tisdag 14 februari 12
  39. 39. Various options RA + SLAAC RA SLAAC + DHCPv6 + DHCPv6 • Announce a prefix and a • RA tells device to use • RA tells device to get IP and router with SLAAC and fetch more more options in DHCPv6 RADVD or RTSOL support options in DHCPv6 • Device sends DUID+IAID • MAC or temporary • DNS address, NTP server • Better management - log in • Simple, but not much control • Better management, but still DHCP server not much control • Where is the DUID?tisdag 14 februari 12
  40. 40. The end ...or is it the beginning? Join the movement now!tisdag 14 februari 12

×