Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download IPv6 - LINK@KoreaTech
Document related concepts
Dynamic Host Configuration Protocol wikipedia , lookup
Net neutrality law wikipedia , lookup
Wake-on-LAN wikipedia , lookup
Piggybacking (Internet access) wikipedia , lookup
Deep packet inspection wikipedia , lookup
Internet protocol suite wikipedia , lookup
SIP extensions for the IP Multimedia Subsystem wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Cracking of wireless networks wikipedia , lookup
UniPro protocol stack wikipedia , lookup
Transcript
IPv6 Laboratory of Intelligent Networks (LINK)@KUT http://link.kut.ac.kr Youn-Hee Han 한국기술교육대학교 IPv6 (Internet Protocol version 6) What is IPv6? A next-generation version of IP (Internet Protocol), a basic Internet protocol, in which the number of IP addresses (numbers to identify terminals) is greatly increased. The current version of IP is version 4. 232 IP addresses (=approximately 4.3 billion) Number corresponding to one bucket full of sand. The next-generation of IP is version 6 2128 IP addresses Number corresponding to a mass of sand covering the whole world. 665,570,793,348,866,943,898,599 (or 6.65 x 1023) addresses for each square meter of the Earth's surface. 2 한국기술교육대학교 Who manage IPv6 address? ICANN/IANA (Internet Assigned Numbers Authority) 인터넷 할당 번호 관리기관 RIR (Regional Internet Registry) 대륙별 인터넷 레지스트리 APNIC (Asia Pacific Network Information Center) 아시아· 태평양 지역 RIPE-NCC (Réseaux IP Européens Network Co-ordination Centre) 유럽 ARIN (American Registry for Internet Number) 북남미 외 기타 지역 국가별 NIC (Network Information Center) 3 한국은 KISA(한국인터넷진흥원) 안에 KRNIC(한국인터넷정보센터)에서 담당 https://ip.kisa.or.kr/main.html 한국기술교육대학교 4 한국기술교육대학교 Recent Status of IPv4 Address Space http://www.potaroo.net/tools/ipv4/index.html 국내 https://www.kisa.or.kr 2010.03 2011.03 5 한국기술교육대학교 Recent Status of IPv4 Address Space http://www.krnic.or.kr/jsp/ipas/situation/nationIpv4.jsp 6 국내 한국기술교육대학교 Recent Status of IPv4 Address Space http://www.krnic.or.kr/jsp/ipas/situation/nationIpv6.jsp 7 국내 한국기술교육대학교 Recent Status of IPv4 Address Space 8 한국기술교육대학교 Recent Status of IPv4 Address Space (/32) 9 한국기술교육대학교 IPv4 Issues (1/3) Demerits of Current Internet Addresses Address Shortages Limits Internet growth for existing users Hinders use of the Internet for new users Internet routing today is inefficient Forces users to use NAT System Management Costs Managing addresses manually is costly and error-prone Networks Renumbering Caused by address space shortage When choosing a more competitive ISP Mobile IPv4 Complicated to manage 10 한국기술교육대학교 IPv4 Issues (2/3) Optional Security IPv4 was never designed to be secure adapted for a public educational & research network Many solutions for IPv4 security have been defined SSL, HTTPS, IPSECv4 No ONE standard Security features are optional CANNOT count on their availability Support for 21st century applications New applications are more demanding, they will require Guaranteed on-time delivery Guaranteed availability of bandwidth Guaranteed security Difficult to add the functions to the base IPv4 technology adding them is very high overhead 11 한국기술교육대학교 IPv4 Issues (3/3) Overcoming Insufficiency of IPv4 Address PPP address sharing CIDR (Classless Inter-domain Routing) “망 주소/ 넷마스크 사이즈”로 라우팅 테이블 엔트리 표현 E.g.] 128.156.20.0/22 호스트식별자가 0인 인터넷망 주소 12 NAT (Network Address Translation) 한국기술교육대학교 Use of NAT Is NAT Good Solution? 13 한국기술교육대학교 NAT example (1/2) Host Mapping [192.168.0.10:TCP 1025] ↔ [131.107.47.119: TCP 5000] 192.168.0.10 NAT Internet Web server 131.107.47.119 157.60.13.9 Destination Address: 157.60.13.9 Destination Address: 157.60.13.9 Source Address: 192.168.0.10 Source Address: 131.107.47.119 Destination TCP Port: 80 Destination TCP Port: 80 Source TCP Port: 1025 Source TCP Port: 5000 14 한국기술교육대학교 NAT example (2/2) Host Mapping [192.168.0.10:TCP 1025] ↔ [131.107.47.119: TCP 5000] 192.168.0.10 NAT Web server Internet 131.107.47.119 157.60.13.9 Destination Address: 192.168.0.10 Destination Address: 131.107.47.119 Source Address: 157.60.13.9 Source Address: 157.60.13.9 Destination TCP Port: 1025 Destination TCP Port: 5000 Source TCP Port: 80 Source TCP Port: 80 15 한국기술교육대학교 Is NAT Good Solution? IPSec packets Address and port translation (NAT function) invalidates the packet’s integrity Peer-to-peer(P2P) Communication NAT prohibits P2P communication, or makes it complicated Battery Problem at Mobile Devices 16 IPv4 mobile devices are usually behind IPv4 NATs Application that want to be reachable need to send periodic Keep-Alives to keep NAT state active Current NATs requires Keep-Alive from 40 sec. to 5 minutes It reduces battery life of mobile devices 한국기술교육대학교 Is NAT Good Solution? IPSec packets Address and port translation (NAT function) invalidates the packet’s integrity Peer-to-peer(P2P) Communication 17 NAT prohibits P2P communication, or makes it complicated 한국기술교육대학교 Is NAT Good Solution? 18 한국기술교육대학교 Carrier-Grade NAT (CGN) What is CGN? Internet Internet Global v4 address Global v4 address Access Concentrator With NAT Access Concentrator FTTH ADSL Global v4 address CPE With NAT Private v4 address End Host Private IPv4 address CPE With NAT Private v4 address End Host Source: 72th IETF (July 2008) 19 한국기술교육대학교 CGN’s Limitation CGN looks v6 is not needed? No. CGN has serious restrictions. IPv6 is needed ! Each customer can have only some “limited” numbers of sessions simultaneously. “port number” is just 2bytes which means 64K For example, if 2000 customer shares same Global IPv4 address (please note that this is just for example), only 25 or 30 so sessi ons can be used by each customer at the worst case. Which means that: 20 한국기술교육대학교 CGN’s Limitation - Web 2.0 and IPv6 21 Max 30 Connections Max 20 Connections Max 15 Connections Max 10 Connections Source: 72th IETF (July 2008) 한국기술교육대학교 Web 2.0 Application’s Operation “Ajax” web application concurrent sessions Browser UI: Ajax: time server-side server processing UI 22 HTML rendering engine browser XMLHttpRequest() JavaScript Engine HTML / CSS data Other data (e.g. images) XML data JavaScript Code – the Ajax Engine Desktop UI “session” management request html + css + xml data mgmt server-side systems web server data stores backend etc. 한국기술교육대학교 Web 2.0 and IPv6 Examples of # of concurrent sessions of web 2.0 sites Webpage No operation Yahoo top page Google image search Nico Nico Douga OCN photo friend iTunes iGoogle Rakuten Amazon HMV YouTube # of sessions 5~10 10~20 30~60 50~80 170~200+ 230~270 80~100 50~60 90 100 90 Source: 72th IETF (July 2008) AJAX applications of Web 2.0 break behind NAT Too many connections exhaust public IP port space 23 한국기술교육대학교 What is IPv6 Application? (1) The world of IPv6 Data-compatible home appliances Mobile telephone Settlement ¥ ¥ Broadcasting Data car IPv6 Map information Vending machines Image Server DRINK Music 24 ¥ ¥ 한국기술교육대학교 What is IPv6 Application? (2) IPv6: Keep unique identification Expand networking area from Server-client to peer-to-peer communication Server Server-client Communication Local net NAT Client Introduce IPv6 Peer to Peer communication Local net Internet × Client NAT IPv6 applied Server Local net New Application emerges VoIP、TV conference, chat, multiplayer game over Internet, etc. 25 Internet Local net Client Clinet 한국기술교육대학교 IPv6 Devices (1) for example….. The Sony IP digital camera & Camcorder IPv6 digital camera system, IPv6 TV system, Home gateway 파나소닉의 IPv6 네트워크 카메라 모델 26 한국기술교육대학교 IPv6 Devices (2) IPv6 Microwave Oven IPv6 Refrigerator 27 한국기술교육대학교 IPv6 for the Ubiquitous Internet Connect Everything to the Internet Simply (Plug & Play) and Safety Enjoy Internet Everywhere & Anytime Play, Learn, and Live on the Internet for Everyone Peer to Peer (P2P) Global Reachability Home Information System We need One Internet 28 Global Communications enhances business, trade, research 한국기술교육대학교 Next generation network (society) by IPv6 “Everything over IP” ★Always on Internet ★Security (privacy) Pet ★nearly infinite address (identification) ★1 to N, N to M (broadcast application) Animal Servers Storages PCs Track PDA Contents distribution (Cinema, Music, etc.) Network Computing IPv6 Internet mobile phone (IMT-2000) Mobile Computing Remote operation, monitoring ( Freight management, Facility management, etc.) Light Home Computing Information Appliance Home Network (BlueTooth, Zigbee) Air conditioner Car (ITS) 29 한국기술교육대학교 New Header Format New Header Format 30 Minimize header overhead (streamline IPv6 header) Note: IPv6 header is not a superset of (not compatible with) IPv4 header 한국기술교육대학교 New Header Format IPv4 Header Format 20 Octets + options : 13 fields, including 3 flag bits Changed 0 bits Ver 4 8 IHL 16 Time to Live 24 Flags Protocol 31 Total Length Type of Service Identifier Removed Fragment Offset Header Checksum 32 bit Source Address 32 bit Destination Address Options and Padding 31 한국기술교육대학교 New Header Format IPv4 Header Format Internet Header Length (IHL) Unit: 4 bytes, Min: 5 (54=20 bytes), Max: 15 (154=60 bytes) Type of Service (ToS) RFC 2474 provides a definition of this field in terms of DS (Different Service) Total Length Unit: 1 bytes, Min: 20 bytes, Max: 65,535(=2^16) bytes Identifier If an IPv4 packet is fragmented, all of the fragments retain the same Identification values, so the destination can group them for reassembly Flags 0, 3: Reserved 1: Don’t fragment 2: More fragment Time to Live (TTL) When TTL becomes 0, ICMPv4 Error message is sent to the source 32 한국기술교육대학교 New Header Format IPv6 Header Format 40 Octets, 8 fields 0 Changed 4 Version 12 Traffic Class 16 24 31 Flow Label Payload Length Next Header Hop Limit 128 bit Source Address 128 bit Destination Address 33 한국기술교육대학교 New Header Format IPv6 Header Format Traffic Class Flow Label Indicates either the type of the first extension header or the upperlayer protocol (such as TCP, UDP, or ICMPv6). Hop Limit 34 Indicates the length of IPv6 payload unit: 1 byte, Max: 65,535(=2^16) bytes For payload of which length greater than 65,535 bytes, this field is set to 0 and the Jumbo Payload option is used in Hop-by-Hop option extension header Next Header Indicates that this packet belongs to a specific sequence of packets between a source and a destination Payload Length indicates IPv6 packet’s class or priority The maximum number of links over which IPv6 packet can travel 한국기술교육대학교 New Header Format IPv6 Extension Header 35 한국기술교육대학교 Features of IPv6 Internet Header Length (IHL) is removed The number of fields Fragmentation information is contained in a Fragment extension header Header Checksum field is removed 36 IPv4: 12 IPv6: 8 Seldom-used fields (e.g., Identification, Flags, Fragment Offset) are removed IPv6 Header is always a fixed length of 40 bytes The size of header IPv4: minimum 20 bytes IPv6: fixed 40 bytes Link-layer performs bit-level error detection 한국기술교육대학교 Features of IPv6 Efficient and Hierarchical Addressing and Routing Infra. International and planned address allocation Backbone routers will have much smaller routing table entries Address Autoconfiguration Stateless and Stateful address configuration Built-in Security Support of IPSec is an IPv6 protocol suite requirement Better Support for QoS 37 New QoS fields in the IPv6 header 한국기술교육대학교 Why IPv6? IPv6의 장점 38 한국기술교육대학교 Transition from IPv4 to IPv6 not all routers can be upgraded simultaneously no “flag days” how will network operate with mixed IPv4 and IPv6 routers? tunneling: IPv6 datagram carried as payload in IPv4 datagram among IPv4 routers IPv4 header fields IPv4 source, dest addr IPv6 header fields IPv6 source dest addr IPv4 payload UDP/TCP payload IPv6 datagram IPv4 datagram 39 한국기술교육대학교 Tunneling logical view: physical view: 40 A B IPv6 IPv6 A B IPv6 IPv6 IPv4 tunnel connecting IPv6 routers E F IPv6 IPv6 C D E F IPv4 IPv4 IPv6 IPv6 한국기술교육대학교 Tunneling IPv4 tunnel connecting IPv6 routers A B IPv6 IPv6 A B IPv6 IPv6 logical view: physical view: flow: X src: A dest: F data A-to-B: IPv6 E F IPv6 IPv6 C D E F IPv4 IPv4 IPv6 IPv6 src:B dest: E src:B dest: E Flow: X Src: A Dest: F Flow: X Src: A Dest: F data data B-to-C: IPv6 inside IPv4 B-to-C: IPv6 inside IPv4 flow: X src: A dest: F data E-to-F: IPv6 Why IPv6 (Summary)? IPv6 solves the address depletion problem IPv6 solves the international address allocation problem IPv6 restores end-to-end communication IPv6 has more efficient forwarding IPv6 has built-in security and mobility IPv6 uses scoped addresses and address selection 42 한국기술교육대학교 IPv6 & Google http://www.google.com/intl/en/ipv6/ [추천동영상] http://www.youtube.com/watch?v=o5RbyK0m5OY 43 한국기술교육대학교 IPv6 Reference Homepage IETF Homepage : www.ietf.org IPv6 Forum : www.ipv6forum.com IPv6 Korea Forum : www.ipv6.or.kr IPv6 RFC 44 RFC2460 RFC2461 RFC2462 RFC2463 RFC2464 RFC2373 RFC2374 RFC2529 RFC1886 RFC2471 RFC2472 : : : : : : : : : : : Internet Protocol, Version 6 (IPv6) Specification Neighbor Discovery for IPv6 IPv6 Stateless Address Autoconfiguration Internet Control Message Protocol (ICMPv6) for the IPv6 Specification Transmission of IPv6 Packet over Ethernet Networks IPv6 Addressing Architecture An IPv6 Aggregatable Global Unicast Address Format Transmission of IPv6 over IPv4 Domains without Explicit Tunnels DNS Extensions to support IPv6 IPv6 Testing Address Allocation IPv6 over PPP 한국기술교육대학교 추천 사이트 및 동영상 http://www.vsix.net/ 한국 인터넷 진흥원 IPv6 포털 http://www.v6pc.jp/en/index.phtml 일본에서 만든 IPv6 홍보 사이트 http://www.youtube.com/watch?v=2wa7y3W2DI0&feature=related IPv6 Tutorial http://www.youtube.com/watch?v=o5RbyK0m5OY Google IPv6 Conference (Jan. 2008) Google IPv6 45 http://www.google.com/intl/en/ipv6 한국기술교육대학교
