getting started with ipv6 on linux
play

Getting started with IPv6 on Linux Jake Edge LWN.net jake@lwn.net - PowerPoint PPT Presentation

Aug 11, 2023 •259 likes •466 views

Getting started with IPv6 on Linux Jake Edge LWN.net jake@lwn.net LinuxCon North America 19 August 2011 History and Motivation IPng project July 1994 IPv6 - RFC 2460 December 1998 IPv5 - Internet Stream Protocol used

  1. Getting started with IPv6 on Linux Jake Edge LWN.net jake@lwn.net LinuxCon North America 19 August 2011

  2. History and Motivation ● IPng project – July 1994 ● IPv6 - RFC 2460 – December 1998 ● “IPv5” - Internet Stream Protocol used version 5 in packet header – v4 uses 4, v6 uses 6 ● Recognized IPv4 address exhaustion, but also wanted to solve other network issues 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  3. Advantages of IPv6 ● 2 128 addresses (plenty) ● Easier routing ● QoS support using Flow Label ● IPsec required ● Mobility support ● Minimum MTU increase (1280 vs. 576) 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  4. Addresses ● 128 bits (4x IPv4 32 bit addresses) ● Represented as 8 groups of 4 hex digits: 2001:0DB8:AC10:FE01:0000:0000:0000:0001 Normally written: 2001:DB8:AC10:FE01::1 (leading zeros, consecutive zeros eliminated) ● 64-bit network prefix, 64-bit host address ● Usually 48-bit routing prefix, 16-bit subnet ● 2001:470:bac3::/48 represents a routed network 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  5. Special Addresses ● Loopback ::1 (127.0.0.1 for IPv4) ● Unspecified :: (0.0.0.0 for IPv4 INADDR_ANY) ● Link local FE80:: - host address based on MAC MAC: 00:1D:BA:06:37:64 becomes FE80::021D:BAFF:FE06:3764 (FFFE inserted in middle and bit 1 in first byte turned on – Modified EUI-64) ● Privacy concerns 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  6. Ipv6 Packet Format ● Much simpler than Ipv4 ● Fixed 40-byte length (IPv4 20-60 bytes) ● Moved options into additional headers (Graphic shamelessly poached from Wikipedia: http://en.wikipedia.org/wiki/IPv6 ) 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  7. Ipv6 Headers ● Next Header is type of any following header ● 6 for TCP, 17 for UDP, 59 for no next header ● Other options (fragmentation, routing, ...) ● No header checksum (eliminates recalculation), uses lower (CRC on ethernet) and higher (checksum for UDP and TCP headers) layers ● Flags (SYN, ACK, etc. in TCP header) ● Network layer devices only need to see the mandatory header information 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  8. Stateless Autoconfiguration (SAC) ● One way to get an initial address ● Host sends router solicitation using link local address (FE80::modified-EUI) to FF02::2 ● Routers reply with router advertisement to FF02::1 ● Advertisements contain network prefix information and router lifetime ● Multiple routers may reply with different subnets ● Duplicate address detection is used 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  9. DHCPv6 ● SAC doesn't provide DNS hostnames ● Either have to run IPv4 DNS, statically define, or use DHCPv6 ● DHCPv6 can also assign addresses (or those can also be statically configured) ● “Managed” flag in router advertisement notes the presence of DHCPv6 server in subnet ● “Stateless” does DNS, while “stateful” does address assignment 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  10. Routing ● Many IPv6 hosts will have multiple addresses one for each router they can talk to (at least) ● IPv6 is supposed to easily enable renumbering networks by just changing network prefix ● Mobile routing is done by having a “home” address, and a “care-of” address, that is routed by the home agent via tunneling ● When devices roam to a new network (e.g. WiFi to cell data) it informs the home agent of care-of addr ● Keeps old IPv6 address to maintain connections 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  11. DNS ● Uses the same basic DNS structure as IPv4 ● Instead of A records, uses AAAA records $ dig aaaa ipv6.google.com ... ;; ANSWER SECTION: ipv6.google.com. 604800 IN CNAME ipv6.l.google.com. ipv6.l.google.com. 300 IN AAAA 2001:4860:b006::68 ● MX and CNAME records use hostnames 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  12. Firewall ● Many IPv4 hosts live behind NAT so they can't be connected to from the internet ● That is not true with IPv6, by default all hosts will be reachable from the internet ● Stateful firewalling will be required 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  13. Ipv6 Commands ● Some standard commands have a 6 added: ● ping6: $ ping6 ::1 $ ping6 -I eth0 ff02::1 ● traceroute6: $ traceroute6 -i wlan0 fe80... ● iptables6 ● ifconfig and ip used to configure IPv6 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  14. Applications ● Some still need changes to handle IPv6: http://www.deepspace6.net/docs/ipv6_status_page_apps.html ● Some changes to user interfaces is required: https://[2001:db8:85a3:8d3:1319:8a2e:370:7348]:443/ ● Without routing set up, the interface is needed: ssh user@FE80::021D:BAFF:FE06:3764%eth0 ● Router uses radvd – configuration file: /etc/radvd.conf ● responds to solicitations with router advertisements 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  15. IPv6 and IPv4 coexistence ● Hard to predict when (or if) IPv6 completely replaces IPv4 ● Currently the vast majority of the internet is IPv4-only ● IPv6 hosts can talk to IPv4 via tunneling ● Encapsulate IPv6 packets inside IPv4 packet data ● Tunnel endpoints pack/unpack IPv6 packets ● Several tunnel types: 6to4, Teredo, 6in4, ... ● Teredo can work behind NAT (IPv4) 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  16. Tunnel brokers ● Various free (beer) services exist ● Hurricane Electric - http://tunnelbroker.net/ ● SixXS - http://www.sixxs.net/ ● Freenet6 - http://gogonet.gogo6.com/ ● Other regional brokers exist ● Set up router to send IPv6 traffic via the tunnel 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  17. World IPv6 Day ● Was held on June 8 ● Tested the readiness of IPv6 world-wide ● Major websites, including the top four, offered content over IPv6 ● Went pretty smoothly, no major issues reported ● IPv6 traffic increased – still a blip against IPv4 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  18. More Information ● Can test your readiness and what needs to be done locally and at ISP, etc.: ● http://test-ipv6.com/ ● Books – no real recent ones focused on Linux ● IPv6 in Practice – Benedikt Stockebrand – Debian sarge (2.6.8 kernel – a bit outdated) ● Running IPv6 – Iljitsch van Beijnum – RH 9 and RHEL 4 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

  19. Web Sites ● http://ipv6.com - lots of IPv6 information ● http://tldp.org/HOWTO/Linux+IPv6-HOWTO/ ● has some holes, blank topics, but lots of good info ● http://www.deepspace6.net/docs/ipv6_status_page_apps.html ● status of application support for IPv6 ● Two Linux.com IPv6 “crash course” articles ● lots of good information in those ● Wikipedia ● Lots more 19 August 2011 LinuxCon NA 2011 Jake Edge, LWN.net

Recommend

IPv6 & Linux About Me Work at Jumping Bean Developer & Trainer Contact Info:

IPv6 & Linux About Me Work at Jumping Bean Developer & Trainer Contact Info:

IPv6 & Linux About Me Work at Jumping Bean Developer & Trainer Contact Info: Twitter @mxc4 Twitter @jumpingbeansa mark@jumpingbean.co.za Goals & Motivation Why? What? Understanding of IPv6 Why IPv6?

676 views • 45 slides
IPv6 on Linux servers Dan Pri(s 16 August 2013 Why

IPv6 on Linux servers Dan Pri(s 16 August 2013 Why

IPv6 on Linux servers Dan Pri(s 16 August 2013 Why IPv6? 7 Billion people 4 Billion IPv4 addresses (2 32 )

607 views • 42 slides
Survey of inconsistencies in Linux kernel IPv4/IPv6 UAPI Roopa Prabhu Proceedings of netdev

Survey of inconsistencies in Linux kernel IPv4/IPv6 UAPI Roopa Prabhu Proceedings of netdev

Survey of inconsistencies in Linux kernel IPv4/IPv6 UAPI Roopa Prabhu Proceedings of netdev 0.1, Feb 14-17, 2015, Ottawa, On, Canada Agenda Goals Introduction to Kernel Netlink UAPI for IPv4/IPv6 Introduction to userspace apps

411 views • 27 slides
IPv6 Practices on China Mobile IP Bearer Network

IPv6 Practices on China Mobile IP Bearer Network

IPv6 Practices on China Mobile IP Bearer Network draft-chen-v6ops-ipv6-bearer-network-trials-00.txt IETF 81-Quebec, July 2011 G. Chen, T. Yang, L. Li and H. Deng Background China Mobile IPv6 trial program started over 3 years ago This

399 views • 8 slides
Getting Started With Perl Jonathan Worthington Scarborough Linux User Group Getting Started

Getting Started With Perl Jonathan Worthington Scarborough Linux User Group Getting Started

Getting Started With Perl Jonathan Worthington Scarborough Linux User Group Getting Started With Perl What is Perl? A programming language Created by Larry Wall Perl 1 released in 1987 Current version is Perl 5.8.x Perl 6

874 views • 62 slides
IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

Outline IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer Science and IPv6 Autoconfiguration Institute of Communications Engineering National Tsing Hua University jcchen@cs.nthu.edu.tw

783 views • 11 slides
What is GNU/Linux? GNU/Linux is a free operating system Other operating systems:

What is GNU/Linux? GNU/Linux is a free operating system Other operating systems:

What is GNU/Linux? GNU/Linux is a free operating system Other operating systems: Microsoft windows Apple Mac OS X Sun Solaris FreeBSD/OpenBSD AIX And many more..... GNU/Linux history GNU project started by

330 views • 9 slides
Secure Enhanced Linux Julian Richen SELinux? Started as a research project from the National

Secure Enhanced Linux Julian Richen SELinux? Started as a research project from the National

Secure Enhanced Linux Julian Richen SELinux? Started as a research project from the National Security Agency (NSA) A set of patches using the Linux Security Modules (LSM) Hardening GNU/Linux systems with extra security policies and

349 views • 15 slides
BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR) Linux Debugging Challenges: Default debugger is intimidating to new users Tough to get symbols and source to show up Many tricks needed

544 views • 40 slides
IPv6 IP Version 6 to the Rescue Effort started by the IETF in 1994 Much larger addresses

IPv6 IP Version 6 to the Rescue Effort started by the IETF in 1994 Much larger addresses

IPv6 IP Version 6 to the Rescue Effort started by the IETF in 1994 Much larger addresses (128 bits) Many sundry improvements Became an IETF standard in 1998 Nothing much happened for a decade Hampered by deployment issues,

504 views • 39 slides
Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6 Global allocations by RIR APNIC 337 21% RIPENCC 737 45% ARIN 438 LACNIC AFRINIC 27% 87 37 5% 2% Unit: IPv6 pref i x 3 IPv6

603 views • 24 slides
IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6 Ready Logo Goal 2001-Present: Conformance and Interoperability test program intended to increase user confidence and promote IPv6 deployment.

403 views • 11 slides
SO YOUR IPV6 IS PUBLICNOW WHAT? BY JOE SULLIVAN JOLIET JUNIOR COLLEGE, PROFESSOR APRIL 27 TH

SO YOUR IPV6 IS PUBLICNOW WHAT? BY JOE SULLIVAN JOLIET JUNIOR COLLEGE, PROFESSOR APRIL 27 TH

SO YOUR IPV6 IS PUBLICNOW WHAT? BY JOE SULLIVAN JOLIET JUNIOR COLLEGE, PROFESSOR APRIL 27 TH 2017 CCNP, Palo Alto ACE, CCNA Video, CCNA Voice, CVNS, CVNR, CCNA Collaboratjon, H.E. IPv6 Sage, Linux Essentjals, ECSVRv1, ECSERv2, CCNA

837 views • 27 slides
Cross-compiling Linux Kernels on x86_64: A tutorial on How to Get Started Shuah Khan Senior

Cross-compiling Linux Kernels on x86_64: A tutorial on How to Get Started Shuah Khan Senior

Cross-compiling Linux Kernels on x86_64: A tutorial on How to Get Started Shuah Khan Senior Linux Kernel Developer Open Source Group Samsung Research America (Silicon Valley) shuah.kh@samsung.com Agenda Cross-compile value proposition

821 views • 34 slides
Master Thesis Supporting IPv6 host-based multihoming (shim6) in Linux Firewalls Christoph Paasch

Master Thesis Supporting IPv6 host-based multihoming (shim6) in Linux Firewalls Christoph Paasch

Theoretic overview Shim6 and Firewalls: Problem statement Implementation Performance evaluation Configuring a shim6-firewall Conclusion Master Thesis Supporting IPv6 host-based multihoming (shim6) in Linux Firewalls Christoph Paasch

422 views • 31 slides
IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already Here Monash IPv6 Progress Addressing End Systems Monitoring Network Address Usage Traffic Monitoring Problems IPv6 is Coming

779 views • 41 slides
Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA <keiichi@iijlab.net> IIJ Research Laboratory / WIDE project Contents IPv6 service in Japan How I live Example of IPv6 configuration Some news of IPv6

653 views • 16 slides
Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system distributions that use the Linux

562 views • 53 slides
The future of X.Org on non-GNU/Linux systems Matthieu Herrb OpenBSD/X.Org February 2, 2013

The future of X.Org on non-GNU/Linux systems Matthieu Herrb OpenBSD/X.Org February 2, 2013

The future of X.Org on non-GNU/Linux systems Matthieu Herrb OpenBSD/X.Org February 2, 2013 Introduction X has always been multi-platform XFree86 was started on SVr4 and FreeBSD, ported on Linux later. GNU/Linux/Freedesktop is now dominating

319 views • 18 slides
Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6

Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6

Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6 addresses 128 bits long Written as eight 16-bit integers separated with colons E.g. 1080:0000:0000:0000:0000:0008:200C:417A =

617 views • 20 slides
IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6 Deployment WG Chair Takashi Arano (Intec NetCore, Inc.) IPv6 Deployment Guideline solves barriers for deployment I cant see IPv6s

319 views • 7 slides
ELI Engineering's Linux Management Environment Timeline The Surge Started Jan 2014,

ELI Engineering's Linux Management Environment Timeline The Surge Started Jan 2014,

ELI Engineering's Linux Management Environment Timeline The Surge Started Jan 2014, Targeted End: Jan 2015 Real End: Summer 2015 (1.5 years) Standardized on CFEngine, Cobbler, SL6 TheLinux 2.0 What we called ELI

613 views • 49 slides
Back to the Linux Framebuffer! Linux Framebuffer support in free software Nicolas Caramelli

Back to the Linux Framebuffer! Linux Framebuffer support in free software Nicolas Caramelli

Back to the Linux Framebuffer! Linux Framebuffer support in free software Nicolas Caramelli Contents 1. Getting started /dev/fb0 and mmap fb-test-app, fbmark 2. Some tools Fbpad terminal emulator Fbi, FIM image viewers

747 views • 72 slides
Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6

Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6

Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6 addresses 128 bits long Written as eight 16-bit integers separated with colons E.g. 1080:0000:0000:0000:0000:0008:200C:417A =

556 views • 20 slides

More recommend