Alan Waywww.spirent.comYouTube = “alantalkstech”Wiki = http://alantestwiki.pbworks.com/E-mail = alan.way@spirent.com

IP Transition Fix or a Band-Aid?

2PROPRIETARY AND CONFIDENTIAL

SPIRENT Is… Putting Innovation to the Test

MOBILITY APPLICATIO

NS

NETWORKS Positioning

Mobile packet core and

backhaul testing

LTE, UMTS & CDMA device and

air interface testing

GPS, GLONASS, Galileo, Multi-

GNSS and Wi-Fi location testing

Ethernet services, video

and IPTV,voice and IMS

testing

10/40/100G Ethernet,

data centers, cloud computing

and security testing

For IPv4

IPv4

IPv6

4

¹ "Gantz, John. "The Embedded Internet: Methodology and Findings." IDC. January 2009."

Now the Internet is evolving again, to the embedded space. How big will it become? Intel Vice President Doug Davis cites the IDC prediction of 15 billion intelligent, connected devices by the year 2015.¹

Why we need IPv6

5

A customer just asked me to help him construct a configuration that would send a single ping request to every IPv6 address in the entire IPv6 address space using a 10 Gig interface.

How long would it take to perform this test using a single 10 GigE port?

BTW, it would take around 5 minutes for IPv4.

Total addresses (2^128) = 340,282,366,920,938,000,000,000,000,000,000,000,000Maximum packet rate for 10GigE = 14,470,000 Number of seconds required = 23,516,404,071,937,700,000,000,000,000,000

...that's 745,700,281,327,299,000,000,000 years! To put that into perspective, the universe is roughly 15 billion years old (15,000,000,000).

15

6

7

LSNCGNNAT444

NAT444

RFC 1918192.168.1.2

RFC 1918172.16.0.1

Public Internet203.0.113.24

NAT444

IPv4

Carrier Grade NATLarge Scale NAT

8

LSN

NAT444

RFC 1918192.168.1.2

RFC 1918172.16.0.1

Public Internet203.0.113.24

IPv4

ISP Address & CPE Must be managed

Performance IssuesGamingVoIPVideo Streaming

RFC 1918172.16.0.6

http://tools.ietf.org/id/draft-donley-nat444-impacts-01.html

Legal Intercept

Loss of Geolocation

Where are the bad guys?

9

10

Dual Stack Lite (DS-Lite)

IPv4

10.0.0.1IPv6

10.0.0.2

2001:DB8:0:1::1

2001:DB8:0:2::1

198.51.100.1

192.0.2.1

172.16.0.2

172.16.0.1

(IPv4 Access over IPv6)

11

10.0.0.22001:DB8:0:1::1

172.16.0.2

Basic Bridging Broad Band element (B4)

12

192.0.2.1172.16.0.1

2001:DB8:0:2::1 NAT+

DHCP172.16.0.2

CPE

2001:DB8:0:1::1

Address Family Transition Router element (AFTR)

AFTR

192.0.2.1172.16.0.1

2001:DB8:0:2::1 NAT+

DHCP172.16.0.3

CPE

2001:DB8:0:1::2

172.16.0.1

2001:DB8:0:2::1 NAT+

DHCP172.16.0.4

CPE

2001:DB8:0:1::3

NAT+

DHCP

2001:DB8:0:2::1

192.0.2.1

172.16.0.1

13

Datagram Mapping (NAT)

IPv4

10.0.0.1IPv6

10.0.0.2

2001:DB8:0:1::12001:DB8:0:2::1

198.51.100.1

192.0.2.1

172.16.0.1

Datagram Header Contents

IPv4 Datagram 1 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src10.0.0.1 TCP Src Port 10000IPv6 Datagram 2 IPv6 Dst 2001:DB8:0:2::1 IPv6 Src 2001:DB8:0:1::1 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src 172.16.0.2 TCP Src Port 10000IPv4 Datagram 3 IPv4 Dst 198.51.100.1 TCP Dst Port 80 IPv4 Src 192 .0.2.1 TCP Src Port 5000

Outbound

172.16.0.2

14

Datagram Mapping (NAT)

IPv4

10.0.0.1IPv6

10.0.0.2

2001:DB8:0:1::12001:DB8:0:2::1

198.51.100.1

192.0.2.1

172.16.0.1

Datagram Header Contents IPv4 Datagram 1 IPv4 Dst 192.0.2.1 TCP Dst Port 5000 IPv4 Src198.51.100.1 TCP Src Port 80IPv6 Datagram 2 IPv6 Dst 2001:DB8:0:1::1 IPv6 Src 2001:DB8:0:2::1 IPv4 Dst 172.16.0.2 TCP Dst Port 10000 IPv4 Src 198.51.100.1 TCP Src Port 80IPv4 Datagram 3 IPv4 Dst 10.0.0.1 TCP Dst Port 10000 IPv4 Src 198 .51.100.1 TCP Src Port 80

Inbound

172.16.0.2

15

16

Case study for IPv6 Rapid Deployment

Founded in 1999 One of the Worlds largest IPv6 residential providers Provides VoIP, IPTV, Internet, MobileFour Million Customers (10/2010) 27% of Market

Nov 7, 2007 6rd presented Nov 9, 2007 Prefix from RIPE Nov 9, 2007 Beta Code on Freebox running Dec 11, 2007 Service available to 2M customers 250K users signed up in first month. 500K users enabled today (~4M ready for IPv6)

IPv6 Deployment Timeline

17

IPv6 Rapid Deployment (6rd) RFC-5969

6rd specifies a protocol to deploy IPv6 to sites via a service provider's IPv4 network.

It builds on 6to4 with the key differentiator that it utilizes an SP's own IPv6 address prefix rather than a well-known prefix (2002::/16)

6rd views the IPv4 network as a link layer for IPv6

IPv4 IPv6IPv6

18

6rd Example ( Customer Edge Example)

IPv6BR IPv4

Address

The CE IPv4 address can be configured or from DHCPThe CE IPv4 address can be global or private (RFC 1918)

CE IPv4

address

6rd Prefix/n bitsSubnet ID0-16 bits Interface ID 64 bitsCE IPv4 add

0-32 bits 10.100.100.12001:DB80::/322001:DB80: 64 64:0100:

BR IPv4/IPv6

IPv6

10.100.100.1

19

6rd DHCPv4 Option

Option_6rd Option-Length IPv4 Mask len 6rd PrefixLen

6rd Prefix (16 Octets)

6rdBRIPv4Address(es)

Option_6rd Value (212). Option-Length Length of DHCP Option (22 with one BR IPv4 Address). IPv4MaskLen Number of high order bits that are identical across all CE. 6rdPrefixLen Length of SP’s 6rd IPv6 Prefix in number of bits. 6rdBRIPv4Address One or more IPv4 Address of 6rd Border Relay.

20

NAT64 & DNS64

Enables IPv6 Clients to access IPv4 only hostsNew/Existing ISPs can provide IPv6 access only

21

ClientIPv6 Only

DNS AAAA QueryFor alan.com

DNS64Server

alan.comIPv4: 112.1.2.3

DNS AAAA Response IPv664:FF:9B::112.1.2.3

NAT64

IPv4Only

ApplicationServer

NAT64 & DNS64

NAT64Stress Testing

IPv6

Excellent article: http://www.networkworld.com/community/blog/testing-nat64-and-dns64

Uses a special prefix, called Pref64::/nWell-known prefix: 64:ff9b::/96

22

Measure performance of Border Gateways Testing up to 100Gbps Measure overall server performance Application/Security/VoIP/Video IPSec Testing Measure performance of IPv6, IPv4 & Dual Stack Routers Measure performance IPv6/IPv4 Tunnel Transition Devices

IPv6 Protocol conformance testing. Professional Services

How can Spirent help?

23

Will Your IPv6 Network Pass the Test?

24

www.spirent.comYouTube = “alantalkstech”Wiki = http://alantestwiki.pbworks.com/E-mail = alan.way@spirent.com