Document ID: 45741. Introduction



Similar documents
Interconnecting IPv6 Domains Using Tunnels

Sample Configuration Using the ip nat outside source static

Configuring Static and Dynamic NAT Simultaneously

Domain Name System Server Round-Robin Functionality for the Cisco AS5800

Sample Configuration Using the ip nat outside source list C

Configuration Professional: Site to Site IPsec VPN Between Two IOS Routers Configuration Example

Configuring a Gateway of Last Resort Using IP Commands

IOS NAT Load Balancing with Optimized Edge Routing for Two Internet Connections

Table of Contents. Cisco Using the Cisco IOS Firewall to Allow Java Applets From Known Sites while Denying Others

IOS NAT Load Balancing for Two ISP Connections

ASA 8.3 and Later: Mail (SMTP) Server Access on Inside Network Configuration Example

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

LAB Configuring NAT. Objective. Background/Preparation

Table of Contents. Cisco Configuring IPSec Cisco Secure VPN Client to Central Router Controlling Access

Configuring EtherChannel and 802.1Q Trunking Between Catalyst L2 Fixed Configuration Switches and Catalyst Switches Running CatOS

BRI to PRI Connection Using Data Over Voice

Skills Assessment Student Training Exam

Lab Load Balancing Across Multiple Paths Instructor Version 2500

Configuring the Cisco Secure PIX Firewall with a Single Intern

PIX/ASA 7.x and above : Mail (SMTP) Server Access on Inside Network Configuration Example

Configuring Basic Settings

Chapter 1: Planning Maintenance for Complex Networks. TSHOOT v6 Chapter , Cisco Systems, Inc. All rights reserved.

Lab Load Balancing Across Multiple Paths

Planning Maintenance for Complex Networks

How To Configure A Cisco Router With A Cio Router

PIX/ASA 7.x and above: Mail (SMTP) Server Access on the DMZ Configuration Example

P and FTP Proxy caching Using a Cisco Cache Engine 550 an

Configuring DNS on Cisco Routers

Table of Contents. Cisco Configuring a Basic MPLS VPN

Table of Contents. Cisco How Does Load Balancing Work?

Network Simulator Lab Study Plan

Configuring a Leased Line

Lab Organizing CCENT Objectives by OSI Layer

The Cisco IOS Firewall feature set is supported on the following platforms: Cisco 2600 series Cisco 3600 series

Interconnecting Cisco Networking Devices Part 2

PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations

"Charting the Course...

ASA 8.3 and Later: Enable FTP/TFTP Services Configuration Example

3.1 Connecting to a Router and Basic Configuration

PIX/ASA: Allow Remote Desktop Protocol Connection through the Security Appliance Configuration Example

Lab Configuring Syslog and NTP (Instructor Version)

Domain Name System (DNS) Services

IPv6 Fundamentals: A Straightforward Approach

IPv6 Deployment Strategies

Configure ISDN Backup and VPN Connection

LAN-Cell to Cisco Tunneling

How To Configure InterVLAN Routing on Layer 3 Switches

CCT vs. CCENT Skill Set Comparison

Objectives. Router as a Computer. Router components and their functions. Router components and their functions

Welcome to Todd Lammle s CCNA Bootcamp

Basic Router Configuration Using Cisco Configuration Professional

Configuring Basic Settings

Packet Tracer 3 Lab VLSM 2 Solution

1 Data information is sent onto the network cable using which of the following? A Communication protocol B Data packet

Cisco 2621 Gateway-PBX Interoperability: Lucent/Avaya Definity G3si V7 PBX with Cisco CallManager Using T1 PRI NI-2 for an H.

ASA 8.X: Routing SSL VPN Traffic through Tunneled Default Gateway Configuration Example

How To Learn Cisco Cisco Ios And Cisco Vlan

Chapter 8 Lab B: Configuring a Remote Access VPN Server and Client

Configuring Fax Pass-Through

Interconnecting Cisco Network Devices 1 Course, Class Outline

L2F Case Study Overview

Brocade to Cisco Comparisons

Configuring DHCP. DHCP Server Overview

1 Basic Configuration of Cisco 2600 Router. Basic Configuration Cisco 2600 Router

Lab Configure Basic AP Security through IOS CLI

Device Interface IP Address Subnet Mask Default Gateway

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

Lab: Basic Router Configuration

Introduction to Routing and Packet Forwarding. Routing Protocols and Concepts Chapter 1

Cisco Configuring Basic MPLS Using OSPF

Cisco Configuring Commonly Used IP ACLs

Per-Packet Load Balancing

IP Addressing and Subnetting for New Users

Lab Creating a Network Map using CDP Instructor Version 2500

Cisco Secure PIX Firewall with Two Routers Configuration Example

Procedure: You can find the problem sheet on Drive D: of the lab PCs. Part 1: Router & Switch

Understanding Route Aggregation in BGP

Router and Routing Basics

Table of Contents. Cisco IP Addressing and Subnetting for New Users

ICS 351: Today's plan

Table of Contents. Configuring IP Access Lists

Network Scenarios Pagina 1 di 35

: Interconnecting Cisco Networking Devices Part 2 v1.1

Cisco Which VPN Solution is Right for You?

How To Configure A Vyatta As A Ds Internet Connection Router/Gateway With A Web Server On A Dspv.Net (Dspv) On A Network With A D

Configuring a Router

PIX/ASA 7.x with Syslog Configuration Example

JOB READY ASSESSMENT BLUEPRINT COMPUTER NETWORKING FUNDAMENTALS - PILOT. Test Code: 4514 Version: 01

- The PIX OS Command-Line Interface -

Course Overview: Learn the essential skills needed to set up, configure, support, and troubleshoot your TCP/IP-based network.

: Interconnecting Cisco Networking Devices Part 1 v2.0 (ICND1)

Lab Configure Syslog on AP

Fundamentals of UNIX Lab Networking Commands (Estimated time: 45 min.)

Using a Sierra Wireless AirLink Raven X or Raven-E with a Cisco Router Application Note

Lab Diagramming External Traffic Flows

Table of Contents. Cisco Configuring CET Encryption with a GRE Tunnel

Lab Introductory Lab 1 - Getting Started and Building Start.txt

IPv6 Fundamentals, Design, and Deployment

Reverse Proxy Caching

Firewall Stateful Inspection of ICMP

Transcription:

Products & Services 6bone Connection Using 6to4 Tunnels for IPv6 Document ID: 45741 Contents Introduction Prerequisites Requirements Components Used Conventions How 6to4 Tunnels Work Limitations of 6to4 Tunnels A Tunneling Scenario Configure Network Diagram Configurations Verify Troubleshoot Related Information Introduction This document describes how an enterprise campus customer (for example, an educational institution, a small software firm, or a small manufacturing company) can connect to the 6bone by using 6to4 tunnels The 6bone is an IP version 6 (IPv6) test network that was set up to assist in the evolution and deployment of IPv6 in the Internet This document is one of a set of documents that support and complement the IPv6 Deployment Strategies publication, which is available at IPv6 Design Guides You should read this document in conjunction with IPv6 Deployment Strategies to better understand IPv6 predeployment activities Prerequisites Requirements Before you implement a 6to4 tunnel to the 6bone, you must perform the following tasks: Identify the border router at your site that you will configure to run dual-stack This border router must have a static, globally routable IPv4 address A data license is required to enable all IPv6 features In order to verify which license is enabled on the router, use the show license command From the 6bone ISP, obtain the IPv4 address of the 6to4 relay router that you will use for 6bone access Note: When you configure tunnels for your enterprise border routers, you must use globally routable IPv4 addresses The IPv4 addresses used in the example configurations in this document are not globally routable and are provided for illustrative purposes only Ensure that your DNS is running (or has the equivalent capabilities of) Berkeley Internet Name Domain (BIND) version 9, which provides an implementation of the major components of the DNS for IPv6 DNS configuration is beyond the scope of this document Recognize that the current dual-stack implementation in Cisco IOS software permits an interim network management solution, which allows applications such as TFTP, ping, Telnet, and traceroute to be run over either an IPv4 or an IPv6 transport Select an IPv6 interior routing protocol, such as RIPng, that is appropriate to your network configuration For simplicity, the solution presented in this document uses a static route The relevant IPv4 exterior routing protocol handles exterior routing Configure all your dual-stack routers to use RIP Refer to Cisco IOS IPv6 Configuration Library for more information on configuring your network for IPv6 Components Used The information in this document is based on Cisco IOS images with IPv6 support The information in this document was created from the devices in a specific lab environment All of the devices used in this document started with a cleared (default) configuration If your network is live, make sure that you understand the potential impact of any command The following figure shows the initial IPv4 network topology for the enterprise campus customer This network uses several routers to provide IP connectivity among local users A permanent IPv4 connection to an Internet service provider (ISP) provides external connectivity The following table describes the devices used in this solution Device Enterprise Border Router 6bone ISP Router Host Name 6bone-gw ipv6-router Chassis Type Cisco 3660 router Cisco 7206 router Physical Interfaces Software Loaded 2 Ethernet 2 Fast Ethernet 4 Serial Cisco IOS Release 122(4)T 4 Ethernet 2 Fast Ethernet 4 Serial Cisco IOS Release 122(4)T Memory 64MV RAM; 16 MB Flash 128 MB RAM; 20 MB Flash

IP Addresses Ethernet0: IPv4 192168991 Tunnel2002: IPv6 2002:C0A8::1/128 Ethernet0/0: IPv4 192168331 Tunnel2002: IPv6 2002:C0A8:2102::1/128 Conventions Refer to Cisco Technical Tips Conventions for more information on document conventions How 6to4 Tunnels Work A 6to4 tunnel is configured on an enterprise dual-stack border router All the enterprise IPv6 traffic destined for the 6bone is routed over IPv4 through the tunnel to the 6bone ISP 6to4 relay router Traffic from the 6bone to an enterprise host is routed over IPv4 through the tunnel to the enterprise dual-stack border router, and then to the IPv6 destination host The benefits to the enterprise of using 6to4 tunnels are as follows: Cisco IOS software supports 6to4 tunnels The end-user host configuration is simple it requires minimal management overhead The tunnel is automatic; no enterprise-specific configuration is required at the 6to4 relay site 6to4 tunnels scale well This solution accommodates dynamic IP addresses at the enterprise The tunnel exists only for the duration of the session A 6to4 tunnel requires only a one-time configuration at the ISP, which makes the 6to4 relay service available simultaneously to many enterprises Limitations of 6to4 Tunnels 6to4 tunnel usage has the following limitations: Independently managed NAT is not allowed along the path of the tunnel You cannot easily implement multihoming The 6to4 tunnel mechanism provides a /48 address block; no more addresses are available Because 6to4 tunnels are configured many-to-one and tunnel traffic can originate from multiple endpoints, 6to4 tunnels can provide only overall traffic information to the ISP The underlying IPv4 address determines the enterprise 6to4 IPv6 address prefix, so the migration to native IPv6 requires renumbering the network This solution is limited to static or BGP4+ routing A Tunneling Scenario A small software company (considered to be a typical enterprise campus environment) with an IPv4 network is discussing a merger with another company that runs IPv6 on its network To assess the connectivity impact that the merger would have on the merged companies, the customer wants to expand its knowledge of IPv6 by connecting to the 6bone The business objectives of the enterprise campus customer discussed in this document are as follows: Gain IPv6 experience on an established IPv6 backbone using its existing IPv4 topology, with a minimal investment Test transitional and operational procedures in a real-world IPv6 environment before deploying IPv6 Transitional procedures are those procedures that are necessary to migrate from IPv4 to IPv6 These procedures include setting up dualstack routers and end systems, tunneling mechanisms, Domain Name System (DNS) servers, and, in the future, the testing of Network Address Translation-Protocol Translation (NAT-PT) Operational procedures are related to network management, element management of dual-stack hosts and end systems, and other similar functions Test IPv6 applications and implementations on local workstations Minimize the management overhead associated with a 6bone connection Note: Although the 6bone comprises many types of organizations (for example, academic and government organizations, hardware and software vendors, and service providers), this document uses the term 6bone ISP when referring to the organization that is at the 6bone end of the tunnel Configure The IPv4 address of your border router is 192168991 Derive your 6to4 prefix from your IPv4 address by converting the decimal components of the IPv4 address to hexadecimal and then prefixing 2002 to the resulting hexadecimal numbers So the 6to4 prefix for the IPv6 nodes in your network is 2002:C0A8:6301::/128 The C0A8:6301 part of the preceding IPv6 address is formed from the IPv4 address by converting each octet of the dotted decimal notation to its hexadecimal equivalent, as shown in Table 6 Decimal 192 C0 168 A8 99 63 1 01 Hexadecimal This section presents the information to configure the features described in this document Note: Use the Command Lookup Tool (registered customers only) to find more information on the commands used in this document Network Diagram This document uses the network setup shown in the diagram below This figure shows the topology of a typical 6to4 tunnel to the 6bone

Configurations Your 6bone ISP has provided you with the IPv4 address its 6bone border router: 192168331 Use the preceding address information to configure a 6to4 tunnel on your identified dual-stack border router by entering the following commands: Enterprise Router interface Ethernet0 description connection to 6bone ISP ip address 192168991 2552552550 description 6to4 tunnel to 6bone ISP ipv6 address 2002:C0A8:6301::1/128 tunnel source ethernet0 --- In some cases, a user will require a data license -- in order to issue the tunnel mode ipv6ip command ipv6 route 2002::/16 Tunnel2002 ipv6 route ::/0 2002:C0A8:2101::1 The 2002:C0A8:2101::1 in the second ipv6 route command is the IPv6 address of the ISP 6to4 relay router that provides access to the 6bone The C0A8:2101 part of the address is derived from the IPv4 address (192168331) of the 6to4 relay router in a manner similar to Table 6 At the other end of the tunnel, the border router at your 6bone ISP would have a configuration like the following IPv6 unicast routing example: ISP 6to4 Relay Router interface ethernet0/0 description connection to enterprise ip address 192168331 2552552550 description 6to4 relay service ipv6 address 2002:C0A8:2101::1/128 tunnel source ethernet0/0 ipv6 route 2002::/16 tunnel2002 Enterprise Router 6bon2-gw maui-soho-01# show running-config Building configuration username maui-nas-05 password cisco Identify the version of Cisco IOS software running on the router version 122 Include timestamps on log and debug entries that are useful for troubleshooting and optimizing the network service timestamps debug datetime localtime show-timezone service timestamps log datetime localtime show-timezone Specify that passwords will be encrypted in configuration output service password-encryption Configure the router name hostname 6bone-gw Configure boot options boot system flash slot0: boot system flash bootflash: Configure logging logging buffered 10000 debugging Configure secret password

enable secret 5 [removed] Configure clock timezone and summertime rule clock timezone PST -8 clock summer-time PDT recurring ip subnet-zero no ip source-route no ip rcmd domain-lookup Configure router domain name ip domain-name EnterpriseDomaincom Configure DNS name servers ip name-server 192168110 ip name-server 192168221 ip name-server 2002:C0A8:6301:1::21 Enable IPv6 routing Configure Tunnel interface description 6to4 tunnel to 6bone ISP ipv6 address 2002:C0A8:6301::1/128 tunnel source ethernet0 Configure physical interface interface Ethernet0 description connection to 6bone ISP ip address 192168991 2552552550 interface Ethernet1 description connection to Lab interface router ip address 1921689940 2552552550 ipv6 address 3FFE:FFFF:8023:100::1/64 ipv6 rip v6rip enable interface FastEthernet2/0 description connection to core router ip address 1921689941 2552552550 ipv6 address 3FFE:FFFF:8023:200::1/64 ipv6 rip v6rip enable interface FastEthernet3/0 description connection to IPv4-only core router ip address 1921689942 2552552550 Other interfaces are all unused interface Serial4/0 interface Serial4/1 interface Serial4/2 interface Serial4/3 Configure basic IP routing ip default-gateway 192168331 ip classless ip route 0000 0000 192168331 Configure IPv6 static route ipv6 route 2002::/16 tunnel2002 ipv6 route ::/0 2002:C0A8:2101::1 ipv6 router rip v6rip

end end 6bone IPv6 ISP Router maui-soho-01# show running-config Building configuration username maui-nas-05 password cisco Identify the version of Cisco IOS software running on the router version 122 Include timestamps on log and debug entries that are useful for troubleshooting and optimizing the network service timestamps debug datetime localtime show-timezone service timestamps log datetime localtime show-timezone Specify that passwords will be encrypted in configuration output service password-encryption Configure the router name hostname ipv6-router Configure boot options boot system flash slot0: boot system flash bootflash: Configure logging logging buffered 10000 debugging Configure secret password enable secret 5 [removed] Configure clock timezone and summertime rule clock timezone PST -8 clock summer-time PDT recurring ip subnet-zero no ip source-route no ip rcmd domain-lookup Configure router's domain name ip domain-name 6boneISPcom Configure DNS name servers ip name-server 192168334 ip name-server 192168335 ip name-server 3FFE:FFFF:8001::4 Enable IPv6 routing Configure Tunnel interface description 6to4 relay service ipv6 address 2002:C0A8:2101::1/128 tunnel source ethernet0/0 Configure physical interface interface Ethernet0/0 description connection to enterprise ip address 192168331 2552552550 interface Ethernet0/1 interface Ethernet0/2

interface Ethernet0/3 interface FastEthernet1/0 description connection to ISP-core-A ip address 1921683410 2552552550 ipv6 address 3FFE:FFFF:8023:2::6/64 duplex auto speed auto interface FastEthernet2/0 description connection to ISP-core-B ip address 1921683522 2552552550 ipv6 address 3FFE:FFFF:8023:2::8/64 duplex auto speed auto Other interfaces are all unused interface Serial4/0 interface Serial4/1 interface Serial4/2 interface Serial4/3 Configure basic IP routing ip default-gateway 192168301 ip classless ip route 0000 0000 192168301 Configure IPv6 static route ipv6 route 2002::/16 tunnel2002 end Verify This optional task explains how to confirm that your tunnel is configured and working properly The commands contained in the task steps can be used in any sequence and may need to be repeated The Output Interpreter Tool (registered customers only) (OIT) supports certain show commands Use the OIT to view an analysis of show command output enable show interfaces tunnel number [accounting] ping [protocol] destination show ip route [address [mask]] Troubleshoot There is currently no specific troubleshooting information available for this configuration Related Information IPv6 Deployment Strategies Implementing IPv6 for Cisco IOS Software IPv6 for Cisco IOS Software Command Reference RFC 2185, Routing Aspects of IPv6 Transition (informationa RFC 2373, IP Version 6 Addressing Architecture RFC 2374, An IPv6 Aggregatable Global Unicast Address Format RFC 2460, Internet Protocol, Versionb 6 (IPv6) Specification RFC 2464, Transmission of IPv6 Packets over Ethernet Networks RFC 2471, IPv6 Testing Address Allocation RFC 2893, Transition Mechanisms for IPv6 Hosts and Routers RFC 3056, Connection of IPv6 Domains via IPv4 Clouds IP Routed Protocols Support Page Technical Support & Documentation - Cisco Systems Updated: Aug 10, 2005 Document ID: 45741 Contacts Feedback Help Site Map

1992-2010 Cisco Systems, Inc All rights reserved Terms & Conditions Privacy Statement Cookie Policy Trademarks of Cisco Systems, Inc

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information