In this presentation I briefly describe the first version of IPv6 private or local network addressing - site-locals - and the issues that caused the IETF to replace them back in the early 2000s.
I then describe their replacement, Unique Local Unicast Addresses.
Finally, I provide an overview of how they are intended to be used in parallel with public IPv6 Internet addresses, without needing to use NAT.
This is a shortened version of the same topic I presented on at AusNOG 2019.
AusNOG 2019 - Getting IPv6 Private Addressing RightMark Smith
In my AusNOG 2011 presentation, "Residential IPv6 CPE - What Not to Do and Other Observations", a couple of my examples of mistakes in some IPv6 CPE implementations were the incorrect use and understanding of IPv6 private addressing.
Since then, I've come across other examples of IPv6 private addressing misunderstandings.
In this presentation, I want to help people better understand IPv6 private addressing; when to use it, and if you're using it, how to get it right.
Discussion of IPv6 private addressing naturally leads to the
discussion of one of the most significant features of IPv6 other than the much larger address space; the formal support of nodes (or rather interfaces) having multiple addresses. In the second part of the presentation I'll talk about multi-addressing, including how it works and why it allows a network to have IPv6 private addressing without also having to use any form of NAT to reach the Internet. I'll also talk about some of its other emergent benefits.
Our presentation to UKNOF in September 2020
In two very long nights of maintenance we acheived:
- Full table BGP on VyOS converge time in seconds
- Routing on MikroTiks converges near-instantly
- BCP38 (customers cannot spoof source address)
- IRR filtering* (only accept where route/route6 object)
- RPKI (will not accept invalid routes from P/T)
- Templated configuration (repeatable, automated) Single source of truth (the docs become the config)
Brief tour about the features of Asterisk 10, Asterisk 11 and Asterisk 12, as well as features that convert one application considered as PBX like a Framework of developer of voice applications, and a tool so powerful as flexible.
AusNOG 2019 - Getting IPv6 Private Addressing RightMark Smith
In my AusNOG 2011 presentation, "Residential IPv6 CPE - What Not to Do and Other Observations", a couple of my examples of mistakes in some IPv6 CPE implementations were the incorrect use and understanding of IPv6 private addressing.
Since then, I've come across other examples of IPv6 private addressing misunderstandings.
In this presentation, I want to help people better understand IPv6 private addressing; when to use it, and if you're using it, how to get it right.
Discussion of IPv6 private addressing naturally leads to the
discussion of one of the most significant features of IPv6 other than the much larger address space; the formal support of nodes (or rather interfaces) having multiple addresses. In the second part of the presentation I'll talk about multi-addressing, including how it works and why it allows a network to have IPv6 private addressing without also having to use any form of NAT to reach the Internet. I'll also talk about some of its other emergent benefits.
Our presentation to UKNOF in September 2020
In two very long nights of maintenance we acheived:
- Full table BGP on VyOS converge time in seconds
- Routing on MikroTiks converges near-instantly
- BCP38 (customers cannot spoof source address)
- IRR filtering* (only accept where route/route6 object)
- RPKI (will not accept invalid routes from P/T)
- Templated configuration (repeatable, automated) Single source of truth (the docs become the config)
Brief tour about the features of Asterisk 10, Asterisk 11 and Asterisk 12, as well as features that convert one application considered as PBX like a Framework of developer of voice applications, and a tool so powerful as flexible.
Getting started with SIP Express Media Server SIP app server and SBC - workshopstefansayer
How to configure a SEMS instance for offering common media services such as announcements, voicemail, audio conferencing and IVR menus, and how to use the powerful and flexible SBC application, the "Swiss Army Knife of call stateful SIP processing".
SIP and DNS - federation, failover, load balancing and moreOlle E Johansson
SIP use DNS to find a server for a specific URI, like sip:alice@example.com. With DNS a SIP service can provide failover, load balancing and much more. SIP without DNS is a broken solution. SIP and DNS rocks!
Die monatlichen Anlässe in Zusammenarbeit mit dem Swiss IPv6 Council behandeln verschiedene technische Themenbereiche von IPv6.
Das Referat vom 29. April 2015 widmete sich dem wiedersprüchlichen Verhalten von Betriebssystemen im SLAAC/DHCPv6-Umfeld. In einer IPv6-Umgebung können Knoten ihre IP-Konfiguration entweder stateless (SLAAC) oder stateful (DHPCv6) erhalten. Dafür gibt es in Router Advertisements (RA) drei Flags: das A-, M- und O-Flag. Die Spezifikation definiert jedoch kein klares Verhalten bei widersprüchlicher Konfiguration. Ein kürzliches IETF-Draft zeigt, dass verschiedene Betriebssysteme unterschiedlich auf diese Flags reagieren. Referent Enno Rey zeigte Resultate eines weiterführenden Tests dazu.
You may have hoped to retire before IPv6 became a reality, but unfortunately the IPv4 address exhaustion came too fast. For the rest of us, we’re going to bite off a small piece of the 15-year old IPv6 pie and talk about how to get started!
• Address format refresher
• IPv4 and IPv6 protocol comparison
• IPv6 neighbor discovery and auto-configuration
• Current migration and coexistence strategies
• ICMPv6, DHCPv6, and DNSv6
• How to get started at home
Using a set of Network Critical Success Factors (NCSFs) - things network operators need to get right to run a good network - I then use them to evaluate IPv4 Network Address Translation.
I then look at the fundamental nature of IPv6 (and IPv4), and how it can better suite the two different application communications architectures - client-server and peer-to-peer.
Finally, I describe how some of the perceived benefits of NAT can be achieved with IPv6 without performing address translation.
This is an updated version of my AusNOG 2016 presentation on the same topic.
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...Louis Göhl
Take a sprinkling of Windows 7, add Windows Server 2008 R2, IPv6 and IPsec and you have a solution that will allow direct access to your corporate network without the need for VPNs. Come to these demo-rich sessions and learn how to integrate DirectAccess into your environment. In Part 1 learn about IPv6 addressing, host configuration and transitioning technologies including 6to4, ISATAP, Teredo and IPHTTPS. Through a series of demos learn how to build an IPv6 Network and interoperate with IPv4 networks and hosts. In Part 2 we add the details of IPSec, and components that are only available with Windows 7 and Windows Server 2008 R2 to build the DirectAccess infrastructure. Learn how to control access to corporate resources and manage Internet connected PCs through group policy. Part 1 is highly recommended as a prerequisite for Part 2.
Getting started with SIP Express Media Server SIP app server and SBC - workshopstefansayer
How to configure a SEMS instance for offering common media services such as announcements, voicemail, audio conferencing and IVR menus, and how to use the powerful and flexible SBC application, the "Swiss Army Knife of call stateful SIP processing".
SIP and DNS - federation, failover, load balancing and moreOlle E Johansson
SIP use DNS to find a server for a specific URI, like sip:alice@example.com. With DNS a SIP service can provide failover, load balancing and much more. SIP without DNS is a broken solution. SIP and DNS rocks!
Die monatlichen Anlässe in Zusammenarbeit mit dem Swiss IPv6 Council behandeln verschiedene technische Themenbereiche von IPv6.
Das Referat vom 29. April 2015 widmete sich dem wiedersprüchlichen Verhalten von Betriebssystemen im SLAAC/DHCPv6-Umfeld. In einer IPv6-Umgebung können Knoten ihre IP-Konfiguration entweder stateless (SLAAC) oder stateful (DHPCv6) erhalten. Dafür gibt es in Router Advertisements (RA) drei Flags: das A-, M- und O-Flag. Die Spezifikation definiert jedoch kein klares Verhalten bei widersprüchlicher Konfiguration. Ein kürzliches IETF-Draft zeigt, dass verschiedene Betriebssysteme unterschiedlich auf diese Flags reagieren. Referent Enno Rey zeigte Resultate eines weiterführenden Tests dazu.
You may have hoped to retire before IPv6 became a reality, but unfortunately the IPv4 address exhaustion came too fast. For the rest of us, we’re going to bite off a small piece of the 15-year old IPv6 pie and talk about how to get started!
• Address format refresher
• IPv4 and IPv6 protocol comparison
• IPv6 neighbor discovery and auto-configuration
• Current migration and coexistence strategies
• ICMPv6, DHCPv6, and DNSv6
• How to get started at home
Using a set of Network Critical Success Factors (NCSFs) - things network operators need to get right to run a good network - I then use them to evaluate IPv4 Network Address Translation.
I then look at the fundamental nature of IPv6 (and IPv4), and how it can better suite the two different application communications architectures - client-server and peer-to-peer.
Finally, I describe how some of the perceived benefits of NAT can be achieved with IPv6 without performing address translation.
This is an updated version of my AusNOG 2016 presentation on the same topic.
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...Louis Göhl
Take a sprinkling of Windows 7, add Windows Server 2008 R2, IPv6 and IPsec and you have a solution that will allow direct access to your corporate network without the need for VPNs. Come to these demo-rich sessions and learn how to integrate DirectAccess into your environment. In Part 1 learn about IPv6 addressing, host configuration and transitioning technologies including 6to4, ISATAP, Teredo and IPHTTPS. Through a series of demos learn how to build an IPv6 Network and interoperate with IPv4 networks and hosts. In Part 2 we add the details of IPSec, and components that are only available with Windows 7 and Windows Server 2008 R2 to build the DirectAccess infrastructure. Learn how to control access to corporate resources and manage Internet connected PCs through group policy. Part 1 is highly recommended as a prerequisite for Part 2.
How to set up an IPv6 LAN with Linux. Using IPv6 requires two steps, firstly setting up the local LAN to support IPv6 and secondly connecting to the internet. The exact mechanism to connect to the Internet depends on your ISP. If you have an IPv4 address of IPv6 and whether you trying to access an IPv4 or IPv6 host.
Jumping Bean offers IPv6 training for businesses (http://www.jumpingbean.co.za/ipv6-training)
Deploying IPv6 in Cisco's Labs by Robert Beckett at gogoNET LIVE! 3 IPv6 Conf...gogo6
gogo6 IPv6 Video Series. Event, presentation and speaker details below:
EVENT
gogoNET LIVE! 3: Enterprise wide Migration. http://gogonetlive.com
November 12 – 14, 2012 at San Jose State University, California
Agenda: http://gogonetlive.com/4105/gogonetlive3-agenda.asp
PRESENTATION
Deploying IPv6 in Cisco's Labs
Presentation video: http://www.gogo6.com/video/deploying-ipv6-in-cisco-s-labs-by-robert-beckett-at-gogonet-live
Interview video: http://www.gogo6.com/video/interview-with-robert-beckett-at-gogonet-live-3-ipv6-conference
SPEAKER
Robert Beckett - Services Technical Leader, Cisco Systems
Bio/Profile: http://www.gogo6.com/profile/RobertBeckett
MORE
Learn more about IPv6 on the gogoNET social network
http://www.gogo6.com
Get free IPv6 connectivity with Freenet6
http://www.gogo6.com/Freenet6
Subscribe to the gogo6 IPv6 Channel on YouTube
http://www.youtube.com/subscription_center?add_user=gogo6videos
Follow gogo6 on Twitter
http://twitter.com/gogo6inc
Like gogo6 on Facebook
http://www.facebook.com/pages/IPv6-products-community-and-services-gogo6/161626696777
This slide is presented in Dec., 2013 as part of Triangle OpenStack meet up sponsored by Cisco System in Raleigh-Durham area, North Carolina.
We did proof of concept back in June, 2013 to evaluate IPv6 readiness of OpenStack as the initial step to make IPv6 and Cloud work together seamlessly.
After 6-week of intensive efforts, we enabled OpenStack Grizzly release over IPv6. Later on, we also successfully launched dual-stack VM in Havana release. This slide summarized what problems we tried to tackle and how we resolved them. The presentation is based on the whitepaper we published at:
http://www.nephos6.com/pdf/OpenStack-Havana-on-IPv6.pdf.
The ideas captured in this slide will be leveraged by OpenStack Neutron IPv6 sub team to fulfill mid-term goals suggested by Neutron IPv6 roadmap. The target release is IceHouse in April, 2014.
We will publish more white papers and slides when we reach next milestone. Stay tuned!
Full table BGP on VyOS converge time in seconds
Routing on MikroTiks converges near-instantly
BCP38 (customers cannot spoof source address)
IRR filtering (only accept where route/route6 object)
RPKI (will not accept invalid routes from P/T)
Templated configuration (repeatable, automated)
Single source of truth (the docs become the config)
VyOS SaltStack YAML Netbox BGP OSPF FRR RPKI IRR XDP
bgpq3 UTRS RTBH NetFlow
RIPE NCC Update 2019-10-02
Similar to NZNOG 2020 - Getting IPv6 Private Addressing Right (20)
NZNOG 2020 - IETF Highlights for OperatorsMark Smith
A brief overview of IETF RFCs published in the last 6 months that are likely to be of interest to network operators, as well as some current Internet Drafts that may also be of network operator interest.
IETF 106 - IPv6 Formal Anycast Addresses and Functional Anycast AddressesMark Smith
Currently, IPv6 anycast addresses are chosen from within the existing IPv6 unicast address space, with the addresses nominated as anycast addresses through configuration. An alternative scheme would be to have a special class of addresses for use as anycast addresses. This memo proposes a distinct general anycast addressing class for IPv6, and a more specific scheme for functional anycast addresses.
IETF 106 - Default IPv6 Local Only Addressing for Non-Internet DevicesMark Smith
For certain types or models of devices it should be clear and obvious that, by default, they should not be reachable from the global IPv6 Internet, or able to reach the global IPv6 Internet, even though the network they are attached to provides global IPv6 Internet connectivity. This memo proposes that these types of devices refuse to configure and use global IPv6 Internet addresses by default.
IETF 106 - In-flight IPv6 Extension Header Insertion Considered HarmfulMark Smith
In the past few years, as well as currently, there have and are a number of proposals to insert IPv6 Extension Headers into existing IPv6 packets while in flight. This contradicts explicit prohibition of this type of IPv6 packet proccessing in the IPv6 standard. This memo describes the possible failures that can occur with EH insertion, the harm they can cause, and the existing model that is and should continue to be used to add new information to an existing IPv6 and other packets.
At a number of past AusNOG conferences we've seen Google and Facebook make a number of presentations about how they've automated the operatonal deployment, monitoring and troubleshooting in their networks.
They've been really interesting presentations. However, I've wondered how applicable their level of automation really is to the rest of us with much smaller networks. We don't and most of us will never have the scale problems they do.
I've changed my mind. I think Google's and Facebook's level of operational automation is inevitable for all networks. If automation is performed by robots, then I think robots are coming to networks everywhere.
In this presentation, I'll talk about why I've changed my mind. More practically, I'll introduce some of the basic building block tools of "robot building" that can be used to build some trivial yet still quite useful operational automation. These tools can then be used as a basis to build more advanced automation. Finally, I'll talk a bit about the possible "post automation" future in networks.
Multi-cluster Kubernetes Networking- Patterns, Projects and GuidelinesSanjeev Rampal
Talk presented at Kubernetes Community Day, New York, May 2024.
Technical summary of Multi-Cluster Kubernetes Networking architectures with focus on 4 key topics.
1) Key patterns for Multi-cluster architectures
2) Architectural comparison of several OSS/ CNCF projects to address these patterns
3) Evolution trends for the APIs of these projects
4) Some design recommendations & guidelines for adopting/ deploying these solutions.
ER(Entity Relationship) Diagram for online shopping - TAEHimani415946
https://bit.ly/3KACoyV
The ER diagram for the project is the foundation for the building of the database of the project. The properties, datatypes, and attributes are defined by the ER diagram.
This 7-second Brain Wave Ritual Attracts Money To You.!nirahealhty
Discover the power of a simple 7-second brain wave ritual that can attract wealth and abundance into your life. By tapping into specific brain frequencies, this technique helps you manifest financial success effortlessly. Ready to transform your financial future? Try this powerful ritual and start attracting money today!
1.Wireless Communication System_Wireless communication is a broad term that i...JeyaPerumal1
Wireless communication involves the transmission of information over a distance without the help of wires, cables or any other forms of electrical conductors.
Wireless communication is a broad term that incorporates all procedures and forms of connecting and communicating between two or more devices using a wireless signal through wireless communication technologies and devices.
Features of Wireless Communication
The evolution of wireless technology has brought many advancements with its effective features.
The transmitted distance can be anywhere between a few meters (for example, a television's remote control) and thousands of kilometers (for example, radio communication).
Wireless communication can be used for cellular telephony, wireless access to the internet, wireless home networking, and so on.
4. IETF IPv6 WG Circa 2002
What is a “site”?
Merge sites with no NAT or
renumbering?
5. “Site”?
site
”1. The place where anything is fixed;
situation; local position”
”2. A place fitted or chosen for any certain
permanent use or occupation”
https://en.wiktionary.org/wiki/site
26. Locally Assigned (L) Bit
Type Purpose L Bit Prefix Status
ULA-C
Central ULA
Prefix
Registry
L=0 fc00::/8 Never took off
ULA-L
Local
Network
Generated
L=1 fd00::/8 All current ULAs
All currently valid ULAs start with fd.
34. ULA-L Global ID Algorithm
1. Get current time of day
2. Get a likely unique system identifier e.g. serial number
3. Combine and hash with SHA-1
4. Use lower 40 bits of hash as Global ID
5. Append to 0xfd to produce ULA /48 (0xfd = ULA-L)
Brief summary:
41. Not really
GUA ULA
Globally Unique
(Assured or
Likely)
✓ ✓
Designed for
Internet
connectivity/reach
ability
✓ ✗
Assigned by RIR/LIR/ISP Local
administrator
or local CPE
$$$ Per
Month/Annum
$0 forever
49. Address Space IANA Prefix Communication
Scope
Link Local fe80::/10 Local Link
Unique Local
Unicast Addresses
fc00::/7 Local Network
Global Unicast
Addresses
2000::/3 Global Internet