Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Remote Desktop Services wikipedia , lookup
Network tap wikipedia , lookup
Computer network wikipedia , lookup
Deep packet inspection wikipedia , lookup
Wake-on-LAN wikipedia , lookup
Airborne Networking wikipedia , lookup
Piggybacking (Internet access) wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Games for Windows – Live wikipedia , lookup
Distributed firewall wikipedia , lookup
IPv6: Making The Dream Real Jawad Khaki Vice-President Windows Networking & Communications Microsoft Corporation Agenda Trends The Opportunity Key Problems The Promise of IPv6 What is Microsoft doing Call to Action ©1985-2001 Microsoft Corporation Evolution Of The Web Presence Transactions Business Publish Info Process Transactions Digital Economy Web sites Web-enable Pages Transactions Business Islands Islands Constellations Eyeballs Revenue Profits existing systems Business transformation processes ©1985-2001 Microsoft Corporation Trends Public Network Data traffic exceeds Voice traffic • Carriers shifting to network designs that favor packets High broadband adoption in geographies where available • Carriers responding to demand Wireless deployments everywhere • Rush to serve data over Cellular networks: 2.5-3G • WiFi usage growing rapidly ©1985-2001 Microsoft Corporation Trends Computing Moore’s Law still going strong • Miniaturization continues • • 100Gb per square inch hard disk density 128MB memory on a single chip Dramatic innovation towards longer battery time • • Smaller, more computing devices every 18 months Low power CPUs from Intel, Transmeta, AMD Fuel Cell battery (1 month cell phone usage) in the horizon Smaller, lighter PC, PDA, phone designs enabling new networking scenarios • TVs on Cell phones, Wearable computers, digital cash, eBooks ©1985-2001 Microsoft Corporation Trends Applications XML revolution leading to web services Peer-to-Peer enables compelling scenarios “Presence” a paradigm shift in Real Time Communications and Collaboration Net attached Consumer Electronics and Gaming appliances emerging Applications assuming always on connectivity, anywhere ©1985-2001 Microsoft Corporation The Opportunity ©1985-2001 Microsoft Corporation Key Problems Address Shortage • Not enough IPv4 addresses available • Disproportionate allocation • Increasing number of devices and Always On experience exacerbate the problem Lack of Mobility • Applications and network protocols break in mobile scenarios Network Security • Always On == Always attacked! ©1985-2001 Microsoft Corporation Key Problems Address Shortage 10000 1000 100 10 1 S- S- S- S- S- S- S- S- S- S- S- S- S96 97 98 99 00 01 02 03 04 05 06 07 08 Extrapolating the number of DNS registered addresses shows total exhaustion in 2009. But the practical maximum is about 200 M addresses, in 2002-2003. ©1985-2001 Microsoft Corporation Key Problems Address Shortage Peer to Peer applications require • Addressability of each end point • Unconstrained inbound and outbound traffic • Direct communication between end points using multiple concurrent protocols NATs are a band-aid to address shortage • Block inbound traffic on listening ports • Constrain traffic to “understood” protocols • Create huge barrier to deployment of P2P applications ©1985-2001 Microsoft Corporation Key Problems Lack of Mobility Existing applications and networking protocols do not work with changing IP addresses Applications do not “reconnect” when a new IP address appears • TCP drops session when IP address changes • IPSEC hashes across IP addresses, changing address breaks the Security Association • Mobile IPv4 solution is not deployable • Foreign agent reliance not realistic • NATs and Mobile IPv4? Just say NO ©1985-2001 Microsoft Corporation Key Problems Network Security Always On == Always attacked! • • NATs and Network Firewalls break end-to-end semantics • • • Barrier to deploying Peer to Peer applications Barrier to deploying new protocols Block end-to-end, authorized, tamper-proof, private communication No mechanisms for privacy at the network layer • Consumers deploying NATs and Personal Firewalls Enterprises deploying Network Firewalls IP addresses expose information about the user No transparent way to restrict communication within network boundaries ©1985-2001 Microsoft Corporation The Promise of IPv6 Enough addresses • • 64+64 format: 1.8E+19 networks, units assuming IPv4 efficiency: 1E+16 networks, 1 million networks per human • 20 networks per m2 of Earth (2 per sqft ) • Removes need to stretch addresses with NATs True mobility • No reliance on Foreign Agents Better network layer security • • • IPSec delivers end-to-end security Link/Site Local addresses allow partitioning Anonymous addresses provide privacy ©1985-2001 Microsoft Corporation The Promise of IPv6 Example: Multiparty Conference, using IPv6 P1 P2 Home LAN P3 Home Gateway Internet Home Gateway Home LAN With a NAT: • Brittle “workaround”. With IPv6: • Just use IPv6 addresses ©1985-2001 Microsoft Corporation The Promise of IPv6 If IPv6 is so great, how come it is not there yet? Applications networks • • Need upfront investment, stacks, etc. Similar to Y2K, 32 bit vs. “clean address type” Network • applications • Need to ramp-up investment No “push-button” transition ©1985-2001 Microsoft Corporation What is Microsoft doing Building a complete IPv6 stack in Windows • Technology Preview stack in Win2000 • Developer stack in Windows XP • Deployable stack in .NET Server & update for Windows XP • Windows CE planned Supporting IPv6 with key applications protocols • File sharing, Web (IIS, IE), Games (DPlay), Peer to Peer platform, UPnP Building v4->v6 transition strategies • Scenario focused tool-box ©1985-2001 Microsoft Corporation What is Microsoft doing IPv6 deployment tool-box IPv6 stateless address auto-configuration • Router announces a prefix, client configures an address 6to4: Automatic tunneling of IPv6 over IPv4 • Derives IPv6 /48 network prefix from IPv4 global address Automatic tunneling of IPv6 over UDP/IPv4 • Works through NAT, may be blocked by firewalls ISATAP: Automatic tunneling of IPv6 over IPv4 • For use behind a firewall. ©1985-2001 Microsoft Corporation What is Microsoft doing Recommended Strategies In the home • Use IPv6 if available, • Or use 6to4 if global IPv4 address, • Or use IPv6 over UDP In the enterprise • Use IPv6 ISP or 6to4 for external access, • Use ISATAP while upgrading the network ©1985-2001 Microsoft Corporation What is Microsoft doing Addressing hard problems Domain Names and IPv6 have issues • Peer to Peer applications require dynamic registration of IPv6 address • DDNS is hard to deploy securely on the internet • Workarounds require building alternate namespaces or avoiding names altogether Ease of use is a must • Need an easy way to get Mobile IPv6 addresses • Need an easy way to resolve names in a IPv6 Adhoc network (DNS Server not reachable) ©1985-2001 Microsoft Corporation In Summary … We Build Together Microsoft is moving quickly to enable Windows platforms for IPv6 • Up to date information on: http://www.microsoft.com/ipv6/ • Send us feedback and requirements mailto:[email protected] We need your help to move the world to a simple ubiquitous network based on IPv6 ©1985-2001 Microsoft Corporation Call to Action Network Providers: Build it and they will come • Do not settle for NATs for new designs • Demand IPv6 support on all equipment • Offer native IPv6 services Device Vendors: Design for the simpler, ubiquitous IPv6 internet Application Writers: Don’t wait on the above • Use Windows XP and Windows .NET Server NOW! ©1985-2001 Microsoft Corporation Microsoft Vision Empower people through great software anytime, anyplace, and on any device Background Material ©1985-2001 Microsoft Corporation 6to4: tunnel IPv6 over IPv4 2002:102:304::b… A 1.2.3.4 6to4-A 6to4-B 5.6.7.8 3001:2:3:4:c… Relay C Native IPv6 IPv4 Internet 2002:506:708::b… B 192.88.99.1 Relay 192.88.99.1 6to4 router derive IPv6 prefix from IPv4 address, 6to4 relays advertise reachability of prefix 2002::/16 Automatic tunneling from 6to4 routers or relays Single address (192.88.99.1) for all relays ©1985-2001 Microsoft Corporation ISATAP: IPv6 behind firewall ISATAP router provides IPv6 prefix Host complements prefix with IPv4 address Direct tunneling between ISATAP hosts Relay through ISATAP router to IPv6 local or global D IPv4 Internet IPv6 Internet IPv4 FW IPv6 FW ISATAP B A Firewalled IPv4 network Local “native” IPv6 network C ©1985-2001 Microsoft Corporation IPv6 over UDP through NAT C IPv6 Internet • IPv6 prefix: IP address Relay IPv4 Internet IPv6 / UDP & UDP port Servers • Address discovery Server • Default “route” NAT NAT • Enable “shortcut” (A- B) Relays A B • Send IPv6 packets directly to nodes Works for all NAT ©1985-2001 Microsoft Corporation