modul 2 aplikasi berbasis ipv6
TRANSCRIPT
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 1/30
IPv6 Lanjut
1
, . .
Lab. Komunikasi Digital
e ung 4 . 1EEPIS-ITS
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 2/30
Deployment scenarios
Many ways to deliver IPv6 services to End Users
2
Most important is End to End IPv6 traffic forwarding Service Providers and Enterprises may have different
ep oyment nee s
IPv6 over IPv4 tunnels e ca e a a n ayers or na ve v
no impact on IPv4 traffic & revenues
IPv6 over MPLS or IPv4-IPv6 Dual Stack Routers
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 3/30
Media - Interface Identifier
IEEE interfaces - EUI-64
3
MAC-address: 0050.a218.0c38 Interface ID: 250:A2FF:FE18:C38
P2P n s HDLC, PPP
Interface ID: 50:A218:C00:D interface index.
IPv4 tunnels
Interface ID: ::a.b.c.d
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 4/30
ICMP Informational Messages
Echo request & reply (same as IPv4)
4
Multicast listener discovery messages:query, report, done (like IGMP for IPv4):
Type Code Checksum
Multicast Address
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 5/30
Neighbor Discovery
ICMP message types:
5
rou er so c a on router advertisement neighbor solicitation neighbor advertisement redirect
Functions performed: router discovery
pre x scovery autoconfiguration of address & other parameters duplicate address detection (DAD) neighbor unreachability detection (NUD) link-layer address resolution first-hop redirect
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 6/30
Neighbor Discovery Messages Router advertisements
6
-
scope) Router solicitations
- , .
sent to all-routers multicast address (link scope)
Neighbor solicitations or a ress reso u on: sen o so c e no e mu cas a r.
for unreachability detection: sent to neighbor’s unicast addr.
Neighbor advertisements
or a ress reso ut on: sent to un cast a ress o so c tor for link-layer address change: sent to all-nodes multicast addr.
usable for proxy responses (detectable)
nc u es router ost ag
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 7/30
Serverless Autoconfiguration
“Plu -n-Pla ”
Hosts generally will construct addresses from RA:
7
su net pre x es earne rom per o c mu t cast a vert sements
from neighboring router(s) interface IDs generated locally
-
Other IP-layer parameters also learned from router
adverts (e.g., router addresses, recommended hop limit, etc.) g er- ayer n o (e.g., DNS server and NTP server addresses)
discovered by multicast / anycast-based service-locationprotocol [details being worked out]
DHCP is avai a e or t ose w o want exp icit contro
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 8/30
IPv6 autoconfiguration8
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 9/30
IPv6 autoconfiguration9
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 10/30
IPv4-IPv6 Transition / Co-Existence
wide ran e of techni ues have been identified and
10
implemented, basically falling into three categories:(1) Dual-stack techniques, to allow IPv4 and IPv6 to
co-ex st n t e same ev ces an networ s
(2)Tunneling techniques, to avoid order dependencies when
upgrading hosts, routers, or regions
(3)Translation techniques, to allow IPv6-only devices tocommunicate with IPv4-only devices
xpec a o ese o e use , n com na on
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 11/30
Transition environments
Enterprise
WAN: 6to4, IPv6
11
Cable6to4 Relay
Dual Stack
,
Residential
Dedicated data link layersDedicated data link layers
IPv6 over IPv4 TunnelsIPv6 over IPv4 Tunnels
ggrega on
Dual Stack or MPLS & 6PEDual Stack or MPLS & 6PEDSL,FTTH,
IPv6 over IPv4 tunnels
6Bone
IPv6 over IPv4 tunnels orDedicated data link layers
Dial
ISP’sISATAP
IPv6 IX
Enterprise
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 12/30
I. Dual-Stack A roach
When addin IPv6 to a s stem do not delete IPv
12
this multi-protocol approach is familiar and well-understood (e.g., for AppleTalk, IPX, etc.)
,new OS releases, not an extra-cost add-on
Applications (or libraries) choose IP version to use
,
Prefer scope match first, when equal IPv6 over IPv4
when responding, based on version of initiating packet
- ,app-by-app upgrades to IPv6 usage
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 13/30
Dual Stack Approach13
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 14/30
Dual Stack & DNS14
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 15/30
Sample Dual Stack Configuration15
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 16/30
II. Using Tunnels for IPv6 Deployment16
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 17/30
Configured tunnels (Manual)17
3ffe:c00:1::/48 3ffe:c00:2::/48
IPv4
IPv6IPv6
130.67.0.1 148.122.0.1
--------------------------------------
--------------------------------------
IPv4 protocol type = 41
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 18/30
Manually Configured Tunnel (RFC4213)
18
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 19/30
Tunnel Broker19
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 20/30
Automatic tunnels
IPv4 Address 32bits)
ISP assi nedDefined
0
20
148.122.0.1
. . .
::130.67.0.1::148.122.0.1
IPv4IPv6 IPv6
Connects dual stacked nodes
Quite obsoleteIPv6 Internet
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 21/30
6to4 tunnels
FP 3bits) TLA 13bits) IPv4 Address 32bits) SLA ID 16bits) Interface ID 64bits)
21
IPv4 IPv6
: : ::
2002:947A:1::/48
130.67.0.1 148.122.0.1
6to4 prefix is 2002::/16 + IPv4 address.
2002:a.b.c.d::/48 IPv6 Internet6to4 relay
11.0.0.1
: : ::
Announces 2002::/16 to the IPv6 Internet
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 22/30
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 23/30
6to4 Relay 23
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 24/30
6to4 in the Internet24
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 25/30
III. NAT-PT for IPv6
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 26/30
NAT-PT Concept
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 27/30
DNS Application Layer Gateway
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 28/30
Linux Webserver28
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 29/30
Linux Nameserver29
8/10/2019 Modul 2 Aplikasi Berbasis IPv6
http://slidepdf.com/reader/full/modul-2-aplikasi-berbasis-ipv6 30/30
30