Why do we even need IPv6? The internet services providers can just use NAT, right?
The late Senator Ted Stevens once said, the Internet is a series of tubes. Ted Stevens - http://en.wikipedia.org/wiki/File:Ted_Stevens.jpg
We care about these tubes quite a bit. In particular, we care about how those tubes are addressed. We care quite a bit, about when those tubes (and addresses) are shared.
This is an off the shelf NAT box. This is representative of what internet service providers are deploying, to handle the IPv4 address exhaustion. The internet service providers have no choice – they need to do this to stay in business, as there will be a need for IPv4 for quite some years yet. As a content provider, I have serious concerns over this; concerns that cause me to lose sleep at night.
First is capacity. How many of these boxes will the service providers deploy? These are expensive boxes. The service providers have incentives to not over provision; to get as much value as they can out of each box. We are worried that these will be bottlenecks for the end users; either due to CPU or network capacity being exceeded on these devices.
TCP port exhaustion is another concern. Too many users behind a single IP, visiting a high traffic site, may not be able to get adequate port space through the NAT. This could be a problem where there are several images on the page; such as map tiles, or a grid of images for a shopping site.
Geo location is another issue. In this picture you see users behind the NAT, from different locations. San Francisco, Oakland, Seattle, and so on. The public side has only a single IP – one that can ’ t be located. This affects our products. We can ’ t automatically show the local news, weather, or movie listings, without the end user telling us their location. Nor can we show advertisements specifically for the user ’ s location.
Abuse is a tough one. If you look carefully, you might see a connection labeled “ Bad Guy ” . This may be a malicious person; or more likely, an infected computer. If Yahoo! Is being grossly abused by someone behind NAT, so bad that we can ’ t just suffer with the attack, we may have only one choice.
Block the entire NAT. Block everyone behind the NAT, including the good users. We don ’ t particularly like this idea; this will be a support headache for both content providers and internet service providers.
We consider world adoption of IPv6 to be critical for the long term health of not just our business, but of the Internet.
400+ participants registered with ISOC 70,000+ domains
400+ participants registered with ISOC 70,000+ domains
Internet Society is organizing the World IPv6 Launch. I ’ d like to briefly share their slides with you.
303 domains total Yahoo Front Page, News, My Yahoo, Shine, and O M G Including most international markets.
Internal version of Apache Traffic Server
Number has dropped to about half, as a result of World IPv6 Day.
Firewalls unaware of IPv6, or IPv6 tunnels Path MTU black holes Bad 6to4 relays Economic disincentive for content providers to go first.
Jason Fesler - IPv6 at Yahoo!, Norway 2012
IPv6 @ YahooJason Fesler <email@example.com> Agenda: Motivation for IPv6 World IPv6 Day Recap, 2011 World IPv6 Launch, 2012 Yahoo! Presentation
Motivation for IPv6Why not just rely on Carrier Grade NAT (CGN)?
“The internet is a series of tubes.” - Senator Ted Stevens Photo by USG via Wikimedia Commons http://tinyurl.com/3whv8jl Public DomainYahoo! Presentation 3
“The internet is a series of tubes.” - Senator Ted Stevens Photo by USG via Wikimedia Commons http://tinyurl.com/3whv8jl Public DomainYahoo! Presentation 4 Photo by Horia Varlan - http://flic.kr/p/7vEzW1
Photo byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDoxg 5
• Capacity: CPU, NET NAT is expensive. Why buy more than you have to?Photo byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDoxg 6
• Capacity: CPU, NET • Port Exhaustion TCP source/destination IP+port reuse limited over timePhoto byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDoxg 7
• Capacity: CPU, NET • Port Exhaustion • Geo Location Local news, weather, movies, advertisementsPhoto byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDoxg 8
• Capacity: CPU, NET • Port Exhaustion • Geo Location • Abuse – Bad GuysPhoto byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDomR 9
This is how NAT abuse will be handled by content providers.Photo byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDoxg 10
NAT is reality. But it doesn’t have to be long-term.Photo byYahoo! Presentation Jason Fesler - http://flic.kr/p/bhDomR 11
World IPv6 Day – June 8th 2011 Our “Front Page” sites for most markets; included no.yahoo.com. 2.2 million unique users via IPv6 › Users: Peak: 0.229%; average .168% › Page views: .19% and .15% “Brokeness” went from 0.055% to 0.022%Yahoo! Presentation 12
Few support calls• ~10 support calls to Yahoo!• Similar story with ISPs we’ve talked to• Success on W6D broke down internal barriers; opened way for what’s next. Photo by Seattle Municipal Archives - http://flic.kr/p/57gjm3 Yahoo! Presentation 13
We need more than justa World IPv6 Day.Yahoo! Presentation 14 04/25/12
6/6/12: Turn it on, Leave it on.http://www.worldipv6launch.orgYahoo! Presentation 15 04/25/12
World IPv6 Launch www.worldipv6launch.orgTHIS TIME IT’S FOR REAL6 June 2012 is the kick-off dateRegular business operation with IPv6IPv6 “on by default” is the new normalCommercial IPv6 at scale by year-end
World IPv6 Launch www.worldipv6launch.orgWhen? 6 June 2012What? IPv6 is part of Regular Business, on by default, no special configuration necessary for anyone anywhereWho? Access networks, home router vendors, websites from around the world participating, please join – www.worldipv6launch.orgWhy? Acceleration: those already planning to roll-out IPv6 should accelerate their plans Adoption: those who don’t have plans yet, it’s safe now, please start Definition: industry leaders are establishing IPv6 as the new normal
World IPv6 Launch: Access NetworksWho? ATT, Comcast, Free, Internode, KDDI, Time Warner Cable, and XS4ALL initially Additional networks are welcome to join, see: www.worldipv6launch.orgIPv6 becomes part of Regular Business now New subscribers get IPv6 on by default after 6 June 2012 No user config required IPv6 usage will depend on home networks, home equipment, etc. But 1% of visits to big websites from participating networks needs to be done using IPv6 by 6 June This will be measured by the big participating websites and displayed on the World IPv6 Launch website
World IPv6 Launch: Home Router VendorsWho? Cisco and D-Link initially Additional home router vendors are welcome to join, see: www.worldipv6launch.orgIPv6 becomes part of Regular Business now Majority of products shipping with IPv6 on by default No user configuration is required to use IPv6 V6 interoperability verification by UNH-IOL (and others?)
World IPv6 Launch: WebsitesWho? Facebook, Google, Microsoft Bing, and Yahoo! initially Others are welcomed to join, see: www.worldipv6launch.orgIPv6 becomes part of Regular Business now IPv6 is enabled on the main website No IPv6 specific URLs (www.ipv6.example.com) or mirror sites IPv6 enabled users will use IPv6 without doing anything The World IPv6 Launch website will have a reachability dashboard similar to what was used in 2011 for World IPv6 Day
Committed IPv6 Proxy Locations – 6/6/12 Traffic Server (Proxy) HTML (launch properties) + Images, CSS, JSYahoo! Presentation 26
Some Risk involved.Photo by The Fayj - http://flic.kr/p/vsocr Yahoo! Presentation 27
The grandstand of the Camp NouPhoto by Jack Pollock; public domainhttp://en.wikipedia.org/wiki/File:Grandstandcampnou.jpg 28
Example Causes for Broken Users Incorrect Addresses Bad Routes Good Routes, Bad Performance Good Routes, Dumb Firewalls Walled Gardens, no public accessPhoto by hipster librarian - http://flic.kr/p/4R8AbpYahoo! Presentation 29