Download IPv6

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
Document related concepts

Remote Desktop Services wikipedia , lookup

Net bias wikipedia , lookup

Network tap wikipedia , lookup

Computer network wikipedia , lookup

Deep packet inspection wikipedia , lookup

Wake-on-LAN wikipedia , lookup

Airborne Networking wikipedia , lookup

Piggybacking (Internet access) wikipedia , lookup

Recursive InterNetwork Architecture (RINA) wikipedia , lookup

Games for Windows – Live wikipedia , lookup

Distributed firewall wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

Zero-configuration networking wikipedia , lookup

Transcript 
IPv6:
Making The Dream Real
Jawad Khaki
Vice-President
Windows Networking & Communications
Microsoft Corporation
Agenda






Trends
The Opportunity
Key Problems
The Promise of IPv6
What is Microsoft doing
Call to Action
©1985-2001 Microsoft Corporation
Evolution Of The Web
Presence
Transactions
Business
Publish
Info
Process
Transactions
Digital
Economy
 Web sites
 Web-enable
 Pages
 Transactions
 Business
 Islands
 Islands
 Constellations
 Eyeballs
 Revenue
 Profits
existing systems
 Business
transformation
processes
©1985-2001 Microsoft Corporation
Trends
Public Network

Data traffic exceeds Voice traffic
• Carriers shifting to network designs that favor
packets

High broadband adoption in geographies
where available
• Carriers responding to demand

Wireless deployments everywhere
• Rush to serve data over Cellular networks: 2.5-3G
• WiFi usage growing rapidly
©1985-2001 Microsoft Corporation
Trends
Computing

Moore’s Law still going strong
•

Miniaturization continues
•
•

100Gb per square inch hard disk density
128MB memory on a single chip
Dramatic innovation towards longer battery time
•
•

Smaller, more computing devices every 18 months
Low power CPUs from Intel, Transmeta, AMD
Fuel Cell battery (1 month cell phone usage) in the horizon
Smaller, lighter PC, PDA, phone designs enabling
new networking scenarios
•
TVs on Cell phones, Wearable computers, digital cash,
eBooks
©1985-2001 Microsoft Corporation
Trends
Applications
 XML revolution leading to web services
 Peer-to-Peer enables compelling
scenarios
 “Presence” a paradigm shift in Real
Time Communications and Collaboration
 Net attached Consumer Electronics and
Gaming appliances emerging
 Applications assuming always on
connectivity, anywhere
©1985-2001 Microsoft Corporation
The Opportunity
©1985-2001 Microsoft Corporation
Key Problems
 Address Shortage
• Not enough IPv4 addresses available
• Disproportionate allocation
• Increasing number of devices and Always
On experience exacerbate the problem
 Lack of Mobility
• Applications and network protocols break
in mobile scenarios
 Network Security
• Always On == Always attacked!
©1985-2001 Microsoft Corporation
Key Problems
Address Shortage
10000
1000
100
10
1
S- S- S- S- S- S- S- S- S- S- S- S- S96 97 98 99 00 01 02 03 04 05 06 07 08
Extrapolating the number of DNS registered addresses
shows total exhaustion in 2009. But the practical
maximum is about 200 M addresses, in 2002-2003.
©1985-2001 Microsoft Corporation
Key Problems
Address Shortage
 Peer to Peer applications require
•
Addressability of each end point
• Unconstrained inbound and outbound traffic
• Direct communication between end points using
multiple concurrent protocols
 NATs are a band-aid to address shortage
•
Block inbound traffic on listening ports
• Constrain traffic to “understood” protocols
• Create huge barrier to deployment of P2P
applications
©1985-2001 Microsoft Corporation
Key Problems
Lack of Mobility
 Existing applications and networking
protocols do not work with changing IP
addresses
Applications do not “reconnect” when a new IP
address appears
• TCP drops session when IP address changes
• IPSEC hashes across IP addresses, changing
address breaks the Security Association
•
 Mobile IPv4 solution is not deployable
•
Foreign agent reliance not realistic
• NATs and Mobile IPv4? Just say NO
©1985-2001 Microsoft Corporation
Key Problems
Network Security

Always On == Always attacked!
•
•

NATs and Network Firewalls break end-to-end
semantics
•
•
•

Barrier to deploying Peer to Peer applications
Barrier to deploying new protocols
Block end-to-end, authorized, tamper-proof, private
communication
No mechanisms for privacy at the network layer
•

Consumers deploying NATs and Personal Firewalls
Enterprises deploying Network Firewalls
IP addresses expose information about the user
No transparent way to restrict communication within
network boundaries
©1985-2001 Microsoft Corporation
The Promise of IPv6
 Enough addresses
•
•
64+64 format: 1.8E+19 networks, units
assuming IPv4 efficiency: 1E+16 networks, 1
million networks per human
• 20 networks per m2 of Earth (2 per sqft )
• Removes need to stretch addresses with NATs
 True mobility
•
No reliance on Foreign Agents
 Better network layer security
•
•
•
IPSec delivers end-to-end security
Link/Site Local addresses allow partitioning
Anonymous addresses provide privacy
©1985-2001 Microsoft Corporation
The Promise of IPv6
Example:
Multiparty Conference, using IPv6
P1
P2
Home LAN
P3
Home
Gateway
Internet
Home
Gateway
Home LAN
 With a NAT:
•
Brittle “workaround”.
 With IPv6:
•
Just use IPv6 addresses
©1985-2001 Microsoft Corporation
The Promise of IPv6
If IPv6 is so great, how come it
is not there yet?
 Applications
networks
•
•
Need upfront
investment,
stacks, etc.
Similar to Y2K, 32
bit vs. “clean
address type”
 Network
•
applications
•
Need to ramp-up
investment
No “push-button”
transition
©1985-2001 Microsoft Corporation
What is Microsoft doing
 Building a complete IPv6 stack in Windows
•
Technology Preview stack in Win2000
• Developer stack in Windows XP
• Deployable stack in .NET Server & update for
Windows XP
• Windows CE planned
 Supporting IPv6 with key applications
protocols
•
File sharing, Web (IIS, IE), Games (DPlay), Peer to
Peer platform, UPnP
 Building v4->v6 transition strategies
•
Scenario focused tool-box
©1985-2001 Microsoft Corporation
What is Microsoft doing
IPv6 deployment tool-box
 IPv6 stateless address auto-configuration
• Router announces a prefix, client configures an
address
 6to4: Automatic tunneling of IPv6 over IPv4
• Derives IPv6 /48 network prefix from IPv4 global
address
 Automatic tunneling of IPv6 over UDP/IPv4
• Works through NAT, may be blocked by firewalls
 ISATAP: Automatic tunneling of IPv6 over IPv4
• For use behind a firewall.
©1985-2001 Microsoft Corporation
What is Microsoft doing
Recommended Strategies
 In the home
• Use IPv6 if available,
• Or use 6to4 if global IPv4 address,
• Or use IPv6 over UDP
 In the enterprise
• Use IPv6 ISP or 6to4 for external access,
• Use ISATAP while upgrading the network
©1985-2001 Microsoft Corporation
What is Microsoft doing
Addressing hard problems
 Domain Names and IPv6 have issues
•
Peer to Peer applications require dynamic
registration of IPv6 address
• DDNS is hard to deploy securely on the internet
• Workarounds require building alternate
namespaces or avoiding names altogether
 Ease of use is a must
•
Need an easy way to get Mobile IPv6 addresses
• Need an easy way to resolve names in a IPv6 Adhoc network (DNS Server not reachable)
©1985-2001 Microsoft Corporation
In Summary
… We Build Together
 Microsoft is moving quickly to enable
Windows platforms for IPv6
• Up to date information on:
http://www.microsoft.com/ipv6/
• Send us feedback and requirements
mailto:[email protected]
 We need your help to move the world to a
simple ubiquitous network based on IPv6
©1985-2001 Microsoft Corporation
Call to Action
 Network Providers: Build it and they will
come
• Do not settle for NATs for new designs
• Demand IPv6 support on all equipment
• Offer native IPv6 services
 Device Vendors: Design for the simpler,
ubiquitous IPv6 internet
 Application Writers: Don’t wait on the
above
• Use Windows XP and Windows .NET Server
NOW!
©1985-2001 Microsoft Corporation
Microsoft Vision
Empower people
through great software
anytime, anyplace,
and on any device
Background Material
©1985-2001 Microsoft Corporation
6to4: tunnel IPv6 over IPv4
2002:102:304::b…
A
1.2.3.4
6to4-A
6to4-B
5.6.7.8




3001:2:3:4:c…
Relay
C
Native IPv6
IPv4 Internet
2002:506:708::b…
B
192.88.99.1
Relay
192.88.99.1
6to4 router derive IPv6 prefix from IPv4 address,
6to4 relays advertise reachability of prefix 2002::/16
Automatic tunneling from 6to4 routers or relays
Single address (192.88.99.1) for all relays
©1985-2001 Microsoft Corporation
ISATAP: IPv6 behind
firewall




ISATAP router
provides IPv6 prefix
Host complements
prefix with IPv4
address
Direct tunneling
between ISATAP
hosts
Relay through
ISATAP router to
IPv6 local or global
D
IPv4
Internet
IPv6
Internet
IPv4 FW
IPv6 FW
ISATAP
B
A
Firewalled
IPv4
network
Local
“native”
IPv6
network
C
©1985-2001 Microsoft Corporation
IPv6 over UDP through NAT
C
IPv6 Internet
• IPv6 prefix: IP address
Relay
IPv4 Internet
 IPv6 / UDP
& UDP port
 Servers
• Address discovery
Server
• Default “route”
NAT
NAT
• Enable “shortcut” (A-
B)
 Relays
A
B
• Send IPv6 packets
directly to nodes
 Works for all NAT
©1985-2001 Microsoft Corporation
Related documents
Title: ISPs ignore IP timebomb
Title: ISPs ignore IP timebomb
IPv6 Site Renumbering Gap Analysis
IPv6 Site Renumbering Gap Analysis
IPv4 to IPv6 Migration strategies
IPv4 to IPv6 Migration strategies
Chapter 9b IPv6 Subnetting
Chapter 9b IPv6 Subnetting
IPv4-mapped addresses
IPv4-mapped addresses
fe80::208:74ff:fe39:90d2
fe80::208:74ff:fe39:90d2
Keynote Address - Microsoft Research Cambridge2.32 Mb
Keynote Address - Microsoft Research Cambridge2.32 Mb
Ch_22 - UCF EECS
Ch_22 - UCF EECS
here
here
18: VPN, IPV6, NAT, MobileIP
18: VPN, IPV6, NAT, MobileIP
slide 2 - Software
slide 2 - Software
Session 2B
Session 2B