View
232
Download
0
Category
Preview:
Citation preview
網路建置與應用服務提供
Speaker: Wei-wen Chen
c00cyw00@nchc.gov.tw
Delivered at the 2rd NBEN project meeting March 2002, NCHC
OUTLINE IPv6 Status
IPv4/IPv6 Transition Mechanism
IPv6 Essential Services
Future work
IPv6 Status - Standardization IETF IPng WG
Launched the standardization of IPv6 related core specification since 1994
Basic Specs are done, well defined and stableOther important specs are further worked
Flow label, IPv6 operation, IPv6 address allocation
IETF NGtrans WG 6bone (IPv6 Backbone) - 1996
Now, about 900 networks, more than 60 countries IPv4/IPv6 transition mechanism SIIT, NAT-PT, BIS, DSTM, Tunnel Broker etc.
Other WGs IETF Zeroconf WG, Mobile IP WG, DNS WG, DHCP WG
….
Research & Development
6REN / 6TAP6Bone
vBNS IPv6
WIDE
KAME
TAHI
Usagi
KRv6
6TALK
6NEAT
6ANTS
6INIT
6WINIT
6NET
Euro6-IX …
IPv6 Projects in Korea 6TALK6TALK – IPv6 TrAnsLator of Krv6 – since 2000
Development of IPv4/IPv6 Transition Technologies NAT-PT, BIA, DSTM Based on Linux OS www.6talk.net
6ANTS6ANTS – since 2001 Development of Auto-Configuration Networking Technologies www.6ants.net
6NEAT6NEAT – IPv6 NEtwork and Application Testbed – since 2001 Development of Native IPv6 network and application technolo
gies Participating 6WINIT project www.6neat.net
IPv6 Projects in China INTERNET6INTERNET6 – NOKIA-CHINA Next Generation Internet Cooperation
Continue to promote IPv6 as an enabling technology Focus on mobility and related key technologies such as mobil
e IPv6, IPv6 networking, QoS, etc.
Deployment Experimental infrastructure: the 6bone6bone
For testing and debugging IPv6 protocols and operations www.6bone.net
Production infrastructure in support of education and research: the 6REN6REN CAIRN, Canarie, CERNET, Chunahwa Telecom, Dante, Esnet,
Internet 2, IPFNET, NTT, Renater, Singren, Sprint, SURFnet, vBNS, WIDE ……
www.6ren.net, www.6tap.net Commercial infrastructure
A few ISPs (IIJ, NTT, SURFnet, Trumpet,……) have announced commercial IPv6 service or service trials
Deployment (cont.) IPv6 address allocation
6Bone procedure for test address space Regional IP address registries (APNIC, ARIN, RIPE-NCC)
for production address space
Milestones for IPv6 over the world IPv6 core specs researched draft standard before X-mas 1998
IPv6 Forum started March 1999
6Bone has been operational since June 1996
IANA issues IPv6 addresses since July 1999
Cisco will have full IPv6 support
Microsoft will include IPv6 in the next major release of Windows 2000
Nokia and Ericsson are building their 3rdG products to run over IPv6
3GPP mandated IPv6 for release of GPRS The 33rd GGeneration PPartnership PProject (3GPP), the standardization
forum for 3G mobile system
MWIF mandated IPv6 in May 2000 MMobile WWireless IInternet FForum brings the core network standards
of 3GPP and 3GPP2 closer together
IPv4 Network mixed by IPv6 Network
IPv4/IPv6 Transition Mechanism
3 Approaches to Transmission Mechanism :
Host/Router – IPv4/IPv6 Dual Stack
Networks – Tunneling
Gateway – IPv4/IPv6 Translation
IPv4/IPv6 Transitional Solutions四種不同組合狀況需要加以考慮及提出解決方案:
Connecting IPv4 sources and destinations over IPv6 networks (v4 to v4) DSTM (Dual Stack Transition Mechanism)
Connecting IPv6 sources and destinations over IPv4 networks (v6 to v6) TB (Tunnel Broker) 6to4 6over4
Communication between IPv4 source and IPv6 destination (v4 to v6) SOCKS NAT-PT (Network Access Translation – Protocol Translation) BIS (Bump In the Stack) or BIA (Bump In the API)
Communication between IPv6 source and IPv4 destination (v6 to v4) 同 v4 to v6
IPv4/IPv6 Translation
IETF Standards
Category Target to Translation IETF Standards
Protocol
(Layer aspect)
IP header-level Translation SIIT
Application-level
TranslationSocks Gateway
System
Gateway Translation NAT-PT
Host Translation BIS, (BIA)
Tunneling
(IP Encapsulation)DSTM, 6to4, 6over4
IPv6 ESSENTIAL SERVICES已完成並可提供的服務:
SSH/TELNET
WWW
Mail (SMTP & POP3)
FTP
PROXY
尚未提供的服務: NEWS
DNS
DHCP6
ROUTER
Future Work收集國際 IPv6 標準發展趨勢及相關產業發展現況訂定 IPv6 位址分配與管理政策建設國內 IPv6 新骨幹進行 HiNet, TANet, NBEN 等 IPv6 骨幹網路互連提供 ADSL 用戶 IPv6 連接於十個網接中心 (GigaPoP) 建立 IPv6 示範教室及 Tunnel Brok
er
建置 IPv4/IPv6 互通機制提供 IPv6-based Multimedia service
與國外 6REN(IPv6 Research and Education Networks) 發展連線合作
擴大與國外 ISP IPv6 網路互連
Future Work (cont.)完成與國際 IPv6 網路交換中心 6TAP 之連線參與國內 IPv6 Form Taiwan, 與國內各個 IPv6 發展組織進行
交流 GPRS internetworking with IPv6
OSPFv6, Mobile IPv6, IPv6 Multicast, IPv6 state configuration
Voice over IPv6/Video Streaming over IPv6
Killer applications
IPv6 Security
IPv6 QoS
預定進度預定進度今年度預定優先工作項目 IPv6 Multicast Project
IPv6 On-line Game Project
Integrated Services
Developing IPv6 SNMP Network Management System
工作細則( 91年度) 計劃名稱 工作期間 工作天數 工作內容 IPv6 Multicast Project
4 / 1 ~ 4/19 14 日 a) IPv6 多重播送 (multicast) 文件收集與相關資料找尋研讀
4/22 ~ 5/31 29 日 a) 工作平台架設b) 網路拓撲結構及 IPv6 multicast routing protocol
安裝、設定及測試c) Troubleshooting
6 / 3 ~ 7/12 30 日 a) 連接到 IPv6 multicast network 與其他 sites connected
b) Implementing Digital Video Stream over IPv6 multicast
7/15 ~ 7/26 10 日 a) IPv6 multicast 文件撰寫IPv6 On-line Games Project
7/29 ~ 8 / 9 10 日 a) IPv6 線上遊戲軟體收集及文件閱讀8/12 ~ 9/20 30 日 a) IPv6 線上遊戲軟體架設及測試
b) Troubleshooting
9/23 ~ 10/4 10 日 a) IPv6 線上遊戲文件撰寫
預定進度 預定進度 (cont.)
計劃名稱 工作期間 工作天數 工作內容 Integrated Service & Developing IPv6 SNMP Network Management System
10 月以後 ?日 a) 結合多媒體應用和多重播送以及 mobile IPv6等服務
b) 開發 IPv6 SNMP 網管程式透過 IPv6 位址做溝通存取控制
預定進度 預定進度 (cont.)
Basic ConceptsWhen dual stack nodes in IPv6 network need to communicate with e
xisting IPv4 nodes
DSTM node which want to communicate IPv4 node get temporary IPv4 address and use IPv4 in IPv6 tunneling
DSTM = Assignment mechanism of global IPv4 address to IPv4/IPv6 nodes + Tunnel mechanism using Dynamic Tunneling Interface (DTI)
How does it work? DSTM host has dual stack, but IPv4 is configured when it is needed
.
Dual Stack Transition Mechanism
How does it work? - continued Major Components of DSTM
DHCPv6 Server
- allocate global IPv4 address and TEP address
DSTM daemon
- get IPv4 address and TEP address from DHCPv6 server
DTI (Dynamic Tunneling Interface)
- an interface encapsulating IPv4 packets into IPv6 packets
TEP (Tunneling End Point)
- destination of IPv6 packet that contain IPv4 packet
- generally this will be a dual stack border router
DSTM (cont.)
DSTM (cont.)
Tunnel Broker (TB) Basic Concepts
To make tunneling management more easier
How does it work? Tunnel Broker
The place where the user connects to register and activate tunnels.
Inform user of Tunnel End point.
Generally use Web interface.
Tunnel Server The Dual-stack router connected to global Internet.
By TB’s config information, it creates/modify/delete server side of each tunnel.
Tunnel Server is Tunnel End Point.
Tunnel Broker (cont.)
提供 web-based 申請及管理介面
6to4 Basic Concepts
To Interconnect isolated IPv6 domains in an IPv4 world
IPv4 endpoints of the tunnel are identified in the prefix of the IPv6 domain
How does it work? 6to4 Prefix
6to4 address
6to4 (cont.) How does it work? - continued
6to4 router router between wide-area IPv4 network and IPv6 site
encapsulation and decapsulation occur in 6to4 router
6to4 host a host which has 6to4 address
Relay router a 6to4 router which support transit routing between 6to4 addr
ess and native IPv6 address
relay router has at least 1 logical 6to4 pseudo interface and at least 1 IPv6 interface
it advertises 6to4 prefix and native IPv6 prefix
6to4 (cont.) Sending & Encapsulation Rule
6to4 (cont.) Relay Scenario
SOCKS-based IPv6/IPv4 Translator Basic Concepts
Communication between IPv6 host and IPv4 hostSOCKS gateway is based on mechanism that relays two terminated-
IPv4, IPv6 connections at the “application layer” (The SOCKS server)
How does it work? Two new function block
Socks Lib
- located between application layer and socket layer, and can replace applications socket APIs and DNS name resolving APIs.
Gateway
- installed o the dual stack node
- Enhanced SOCKS server that enables any types of protocol combination relays between Source C (IPv4) and Destination D (IPv6)
How does it work? - continued Fake IP
It is used as a virtual destination IP address for a socksified application (means that the SOCKSv5 installs a Socks library in this host)
A mapping table which manage mappings between “fake IP” and “FQDN” is in the “Socks Lib”
The “FQDN” is Full Qualified Domain Name
A “fake IP” address is used as a key to look up corresponding “FQDN” information
SOCKS gateway (cont.)
Bump In the Stack (BIS) Basic Concepts
Allow existing IPv4 application on dual stack hosts to communicate with other IPv6 hosts.
BIS hosts has..
Translator
Extension name resolver
Address mapper
How does it work? Extension name server
snoop DNS query, and create another query both ‘A’ and ‘AAAA’ record for the host name.
Bump In the Stack (cont.)How does it work? - continued
Address mapper It maintain IPv4 address pool and IPv4/IPv6 address mapping
table
If new query’s response is ‘AAAA’, extension name resolver require address mapper to assign IPv4 address for ‘AAAA’ record.
Translator It translates IPv4 into IPv6 and vice versa using SIIT conversi
on mechanism.
Bump In the API (BIA) Basic Concepts
Use of the Socket API level translation rather than the IP level translation.
BIA hosts has..
Translator
Extension name resolver
Function mapper
How does it work? Similar Concept with BIS
Extension name server
Translator
Function Mapper
Bump In the API (cont.)
ETRI和 i2Soft在 2001 年 3 月於 IETF Ngtrans WG 有發表這套機制 經過測試可以看 v6 的網頁和收 news
GPRS internetworking with IPv6 2000 年十月 Ericsson 發表了第一個在 GPRS 網路下使用 IPv
6 機制。由香港的數碼通( Smartone )公司和英國電信公司( British
Telecom )合作完成的。 2001 年 2 月在法國的 GSM Cannes 會議上, Ericsson Radio 也
首先發表了針對在無線傳輸網路中支援 IPv4/IPv6 的 AXI 820 mobile real time router 。
IPv6 environment testing
TELNET/SSH Service
WWW Service
E-Mail Service
FTP Service
PROXY Service
Recommended