IPv6 Advantages. Yanick Pouffary.

(1)

IPv6 Advantages

Yanick Pouffary

(2)

2 All IP Workshop, IPv6 Advantages, Feb. 2000

www.compaq.com

IPv6 FORUM

u

A world-wide consortium of leading Internet vendors and

Research and Education Networks

u

The IPv6 FORUM mission

l

l To promote IPv6 in order to create a higher quality and moreTo promote IPv6 in order to create a higher quality and more secure Next Generation Internet.

secure Next Generation Internet.

u

The FORUM works closely with the Internet Engineering

Task Force (IETF) which is responsible for the IPv6

technical specifications

u

66 ‘Founding Members’

(3)

IPv6 FORUM

u " IPv6 is here and now, so take the Internet where no other network

has gone before! ” comments Dr. Vint Cerf, Chairman of the Internet Society and known as the father of the Internet.

u " We've known for some years that IP version 4 was heading towards

its limits, and the IETF has been working on IPv6 since 1994. Now, the basic standards are agreed and implemented, and it is time to move forward," adds Dr. Brian E. Carpenter, Chair of the IETF's

Internet Architecture Board, and a Program Director in IBM's Internet Division.

u " The IPv6 FORUM's core objectives will be to promote this new

(4)

www.compaq.com

IPv4 - Limiting factors

(5)

IPv4 issues (1)

u

u OutOut of Internet addresses of Internet addresses

l

l Address ShortagesAddress Shortages l

l Limits Internet growth for existing usersLimits Internet growth for existing users l

l Hinders use of the Internet for new usersHinders use of the Internet for new users l

l Internet Routing today is inefficientInternet Routing today is inefficient l

l Forces users to use NATForces users to use NAT

u

u System Management CostsSystem Management Costs

l

l Managing addresses manually is costlyManaging addresses manually is costly

–

– and error-proneand error-prone

l

l Inconsistent level of DHCP support in clientsInconsistent level of DHCP support in clients

–

– Lowest common denominator winsLowest common denominator wins

l

l Networks are having to RenumberNetworks are having to Renumber

–

– Caused by address space shortageCaused by address space shortage

–

– When choosing a more competitive ISPWhen choosing a more competitive ISP Mobile IP

(6)

www.compaq.com

IPv4 issues (2)

u

Optional Security

l

l IPv4 was never designed to be secureIPv4 was never designed to be secure

–

– Originally designed for an isolated military networkOriginally designed for an isolated military network –

– Then adapted for a public educational & research networkThen adapted for a public educational & research network

l

l IPv4 security is retrofitted and many solutions definedIPv4 security is retrofitted and many solutions defined

–

– SSL, SHTTP, IPSEC v4SSL, SHTTP, IPSEC v4 –

– No ONE standardNo ONE standard

l

l Security features are optionalSecurity features are optional

–

– CANNOT count on their availabilityCANNOT count on their availability

u

Support for 21st century applications

l

l New applications are more demanding, they will requireNew applications are more demanding, they will require

Guaranteed on-time delivery ; Guaranteed availability of Guaranteed on-time delivery ; Guaranteed availability of

bandwidth; Guaranteed security bandwidth; Guaranteed security

l

l Difficult to add to the base IPv4 technology; adding it on isDifficult to add to the base IPv4 technology; adding it on is very high overhead

(7)

Will IPv4 last forever?

u

How long can we ignore these problems?

l

l IPv4 address space will run outIPv4 address space will run out

l

l There is an engineering limit to the amount of retrofitting thatThere is an engineering limit to the amount of retrofitting that can be applied to IPv4

can be applied to IPv4

u

A natural evolution from IPv4 is required

l

(8)

www.compaq.com

IPv6 Base Technology

Wins

(9)

0 bits 31

Ver IHL Total Length

Identifier Flags Fragment Offset

32 bit Source Address 32 bit Destination Address

4 8 16 24

Service Type

Options and Padding

Time to Live Protocol Header Checksum Removed

Changed

IPv4 Header

20 octets + options : 13 fields, including 3 flag bits

(10)

www.compaq.com

0 31

Version Class Flow Label

Payload Length Next Header Hop Limit

128 bit Source Address

128 bit Destination Address

4 12 16 24

IPv6 Header

40 Octets, 8 fields

(11)

IPv6 Header Next = TCP TCP Header IPv6 Header Next = Routing TCP Header Routing Hdr Next = TCP IPv6 Header Next = Security TCP Header Security Hdr Next = Frag Application Data Application Data Fragment Hdr Next = TCP Data Frag

IPv6 Extension Headers

u

u IP options have been moved to a set of optional ExtensionIP options have been moved to a set of optional Extension

Headers Headers u

(12)

www.compaq.com

Performance Wins

u

Fixed Size IPv6 Header

l

l Unlike IPv4 - Options not limited at 40 bytesUnlike IPv4 - Options not limited at 40 bytes

u

Fewer fields in basic header

l

l faster processing of basic packetsfaster processing of basic packets

l

l no checksumno checksum

u

64 Bit Alignment Header/Options

u

Efficient option processing

l

l option fields processed only when the option presentoption fields processed only when the option present

l

l Processing of most options limited performed only atProcessing of most options limited performed only at destination

destination

u

No Fragmentation in the network

l

l More router cycles available for forwarding packetsMore router cycles available for forwarding packets

l

(13)

The power of IPv6

Addressing

Ease of renumbering

(14)

www.compaq.com

IPv6 - Addressing Model

u

Addresses are assigned to interfaces

l

l No change from IPv4 ModelNo change from IPv4 Model

u

Interface can have multiple addresses

u

Addresses have scope

l

l Link LocalLink Local

l

l Site LocalSite Local

l

l GlobalGlobal

u

Addresses have lifetime

l

l Valid and Preferred lifetimeValid and Preferred lifetime

Link-Local

(15)

3FFE:0301:DEC1::

Prefix

0A00:2BFF:FE36:701E

Interface ID

Prefix Representation 3FFE:0301:DEC1::/64

IPv6 Address Structure

u

u Formed from a combination of the:Formed from a combination of the:

u

u Separation of “who you are” from “where you areSeparation of “who you are” from “where you are

connected to” connected to”

l

l Routing PrefixRouting Prefix

–

– Routing TopologyRouting Topology

l

l Node IdentificationNode Identification

–

(16)

www.compaq.com

The power of IPv6

Management

(17)

Network Management

u

Auto configuration

l

l Plug-and-Play.Plug-and-Play.

l

l Automate network address renumberingAutomate network address renumbering

l

l DHCP support is mandatedDHCP support is mandated

–

– Every host can download their network configurations from aEvery host can download their network configurations from a server at startup time

server at startup time

l

l Address changes are automatedAddress changes are automated

–

– Stateless ; Routers advertise prefixes that identify the subnet(s)Stateless ; associated with a link ; Hosts generate an "interface token" that uniquely identifies an interface on a subnet ; An address is

formed by combining the two. –

(18)

www.compaq.com

Automatic Renumbering

u

Renumbering IPv6 Hosts is easy

l

l Add a new Prefix to the RouterAdd a new Prefix to the Router

l

l Reduce the Lifetime of the old prefixReduce the Lifetime of the old prefix

l

l As nodes depreciate the old prefix the new Prefix will start toAs nodes depreciate the old prefix the new Prefix will start to be used for new connections

be used for new connections

u

Renumbering in IPv6 is designed to happen!

u

An end of ISP “lock in”!

l

(19)

Putting the IT Director

back in control

u

IPv6 Address Scope

l

l Some addresses are GLOBAL Some addresses are GLOBAL

l

l Others are Link or Site LOCAL Others are Link or Site LOCAL

l

l Addressing Plan also controls network access Addressing Plan also controls network access

u

Configuration Policy Control

l

l Stateless Stateless

l

l Stateful (DHCPv6)Stateful (DHCPv6)

u

Routers Dictate the Configuration Policy

l

l Router Managers are “in control” of the network Router Managers are “in control” of the network

l

(20)

www.compaq.com

Mobile IPv6

u

IPv6 Mobility is based on core features of IPv6

l

l The base IPv6 was designed to support MobilityThe base IPv6 was designed to support Mobility

l

l Mobility is not an “Add-on” featuresMobility is not an “Add-on” features

–

– All IPv6 Networks are IPv6-Mobile ReadyAll IPv6 Networks are IPv6-Mobile Ready –

– All IPv6 nodes are IPv6-Mobile ReadyAll IPv6 nodes are IPv6-Mobile Ready –

– All IPv6 LANs / Subnets are IPv6 Mobile ReadyAll IPv6 LANs / Subnets are IPv6 Mobile Ready

u

IPv6 Neighbor Discovery and Address

Autoconfiguration

allow hosts to operate in any

location without any special support

u

No single point of failure (Home Agent)

u

More Scalable : Better Performance

l

l Less traffic through Home LinkLess traffic through Home Link

l

(21)

The power of IPv6

(22)

www.compaq.com

IPv6 - Mandates Security

u

Security features are standardized and

mandated

l

l All implementations must offer themAll implementations must offer them

l

l No Change to applicationsNo Change to applications

u

Authentication (Packet signing)

u

Encryption (Data Confidentiality)

u

End-to-End security Model

l

l Protects DHCP Protects DHCP

l

l Protects DNS Protects DNS

l

l Protects IPv6 Mobility Protects IPv6 Mobility

l

(23)

(24)

www.compaq.com

Enables Next Generation

Applications

u

IPv6 Flow Labels provide Support for Data Flows

l

l Allows Packet PrioritizingAllows Packet Prioritizing

l

l Ensures that high priority traffic (voice, data, real-timeEnsures that high priority traffic (voice, data, real-time manufacturing,

manufacturing, etc etc.) is not interrupted by less critical data.) is not interrupted by less critical data

u

IPv6 Multicast & Anycast

l

l Multicast delivers data simultaneously to all hosts that signMulticast delivers data simultaneously to all hosts that sign up to receive it

up to receive it

–

– Makes conferencing more efficientMakes conferencing more efficient

l

l AnycastAnycast delivers data to one host in the group delivers data to one host in the group

–

– Could be used to implement fault tolerant client/serverCould be used to implement fault tolerant client/server applications more efficiently

(25)

Summary

What the future hold?

(26)

www.compaq.com

IPv6 Features and Advantages

u

u Larger Address SpaceLarger Address Space

u

u Efficient and Extensible IP datagramEfficient and Extensible IP datagram

u

u Efficient Route Computation and AggregationEfficient Route Computation and Aggregation

u

u Improved Host andImproved Host and Router Router Discovery Discovery

u

u Mandated New Stateless and StatefulMandated New Stateless and Stateful Address Address

Autoconfiguration Autoconfiguration u

u Easy renumberingEasy renumbering

u

u Mobility supportMobility support

u

(27)

Is IPv6 part of the future?

u

IPv6 Solves many of the problems caused by the IPv4

success

l

l and more... and more...

u

Will the whole Internet get upgraded any time soon?

l

l No way!No way!

u

Will bits of IPv6 appear in production use soon?

l

l YesYes and

and

l

(28)

www.compaq.com

Questions?

(29)