IPv4/IPv6 Translation: Framework. Li, Bao, and Baker

Similar documents
IPv4 and IPv6 Integration. Formation IPv6 Workshop Location, Date

SIIT-DC: Stateless IP/ICMP Translation for IPv6 Data Centre Environments & SIIT-DC: Dual Translation Mode

SIIT-DC: IPv4 Service Continuity for IPv6 Data Centres. Tore Anderson Redpill Linpro AS RIPE69, London, November 2014

Prefix-specific and Stateless Address Mapping (IVI) for IPv4/IPv6 Coexistence and Transition draft-xli-behave-ivi-00

How To Connect Ipv4 To Ipv6 On A Ipv2 (Ipv4) On A Network With A Pnet 2.5 (Ipvin4) Or Ipv3 (Ip V6) On An Ipv5

Network Address Translation (NAT)

Configuring Network Address Translation (NAT)

TCP/IP Basis. OSI Model

Firewalls und IPv6 worauf Sie achten müssen!

21.4 Network Address Translation (NAT) NAT concept

ProCurve Networking IPv6 The Next Generation of Networking

Residential IPv6 IPv6 a t at S wisscom Swisscom a, n an overview overview Martin Gysi

Basic IPv6 WAN and LAN Configuration

IP addressing. Interface: Connection between host, router and physical link. IP address: 32-bit identifier for host, router interface

SIIT-DC: IPv4 Service Continuity for IPv6 Data Centres. Tore Anderson Redpill Linpro AS 8th Belgian IPv6 Council, Bruxelles, November 2015

Network Address Translation (NAT) Adapted from Tannenbaum s Computer Network Ch.5.6; computer.howstuffworks.com/nat1.htm; Comer s TCP/IP vol.1 Ch.

ICS 351: Today's plan

NAT (Network Address Translation)

IPv6 Transition Work in the IETF

- Introduction to Firewalls -

IPv4 and IPv6: Connecting NAT-PT to Network Address Pool

IPv4/IPv6 Transition Mechanisms. Luka Koršič, Matjaž Straus Istenič

Proxy Server, Network Address Translator, Firewall. Proxy Server

Campus IPv6 connection Campus IPv6 deployment

IPv6 Fundamentals: A Straightforward Approach

IPv6 in Axis Video Products

Stateful Network Address Translators (NAT) Xiaohu Xu Dean Cheng IETF75, Stockholm

Transition to IPv6 in Service Providers

F5 Silverline DDoS Protection Onboarding: Technical Note

We Are HERE! Subne\ng

Multi-Homing Security Gateway

IPv6 over IPv4/MPLS Networks: The 6PE approach

Implementing DHCPv6 on an IPv6 network

IPv4/IPv6 Transition Using DNS64/NAT64: Deployment Issues

Load Balancing. Final Network Exam LSNAT. Sommaire. How works a "traditional" NAT? Un article de Le wiki des TPs RSM.

DEPLOYMENT GUIDE Version 1.4. Configuring IP Address Sharing in a Large Scale Network: DNS64/NAT64

IPv6 for AT&T Broadband

LAN TCP/IP and DHCP Setup

Technical White Paper

Savera Tanwir. Internet Protocol

2. IP Networks, IP Hosts and IP Ports

464XLAT in mobile networks

- Network Address Translation -

Configuring Static and Dynamic NAT Translation

CIRA s experience in deploying IPv6

VLSM & IP ADDRESSING EXAMPLE QUESTIONS with answers;

IPv6 en Windows. Juan Jackson Pablo García

About Me. Work at Jumping Bean. Developer & Trainer Contact Info: mark@jumpingbean.co.za

Carrier Grade NAT. Requirements and Challenges in the Real World. Amir Tabdili Cypress Consulting

TR-296 IPv6 Transition Mechanisms Test Plan

Network Address Translation (NAT)

LinkProof DNS Quick Start Guide

Introduction to IP v6

Chapter 12 Supporting Network Address Translation (NAT)

Classful IP Addressing (cont.)

Chapter 1 Introduction

Chapter 7. Address Translation

Securing the Transition Mechanisms

ExamPDF. Higher Quality,Better service!

Deploying IPv6 Service Across Local IPv4 Access Networks

Firewalls. Basic Firewall Concept. Why firewalls? Firewall goals. Two Separable Topics. Firewall Design & Architecture Issues

Internet Protocol version 4 Part I

NAT66: IPv6-to-IPv6 NAT draft-mrw-behave-nat66-01.txt

Industry Automation White Paper Januar 2013 IPv6 in automation technology

Ecdysis: Open-Source DNS64 and NAT64

Scenario 1: One-pair VPN Trunk

Variable length subnetting

464XLAT: Breaking Free of IPv4. T-Mobile.com NANOG 61 June 2014

Course Overview: Learn the essential skills needed to set up, configure, support, and troubleshoot your TCP/IP-based network.

IPv6 Addressing. Awareness Objective. IPv6 Address Format & Basic Rules. Understanding the IPv6 Address Components

How To - Configure Virtual Host using FQDN How To Configure Virtual Host using FQDN

Компјутерски Мрежи NAT & ICMP

Developing an IPv6 Addressing Plan Guidelines, Rules, Best Practice

IPv6 Deployment Strategies

Ceres Messaging and Routing Model

Exam 1 Review Questions

Efficient Addressing. Outline. Addressing Subnetting Supernetting CS 640 1

CS268 Exam Solutions. 1) End-to-End (20 pts)

Chapter 19 Network Layer: Logical Addressing 19.1

Chapter 3 LAN Configuration

iseries TCP/IP routing and workload balancing

Transport and Network Layer

Course Syllabus. Fundamentals of Windows Server 2008 Network and Applications Infrastructure. Key Data. Audience. Prerequisites. At Course Completion

Redundancy and Load-Balancing Framework for Stateful NAT

464XLAT: Breaking Free of IPv4. APRICOT 2014

Wireless Edge Services xl Module 2.0 Update NPI Technical Training June 2007

The Implications of Large Scale NAT for Security Logging August 2012

ASA/PIX: Load balancing between two ISP - options

WHITE PAPER. Best Practices for Deploying IPv6 over Broadband Access

IP Subnetting and Addressing

< Introduction > This technical note explains how to connect New SVR Series to DSL Modem or DSL Router. Samsung Techwin Co., Ltd.

3URMHFW1XPEHU /DERUDWRULHV2YHU1H[W *HQHUDWLRQ1HWZRUNV 3URMHFW7LWOH IST / PTIN /WP2.1/DS/P/1/01 &(&'HOLYHUDEOH1XPEHU

Dynamic Host Configuration Protocol (DHCP) 02 NAT and DHCP Tópicos Avançados de Redes

Learn About Differences in Addressing Between IPv4 and IPv6

Real World IPv6 Migration Solutions. Asoka De Saram Sr. Director of Systems Engineering, A10 Networks

IPv6-only hosts in a dual stack environnment

ANALYSIS OF IPV6 TRANSITION TECHNOLOGIES

Internet Peering, IPv6, and NATs. Mike Freedman V Networks

WHITE PAPER SERIES Transition to IPv6

Transcription:

IPv4/IPv6 Translation: Framework Li, Bao, and Baker

Outcome from the Montreal Interim Basically, merging NAT64 and IVI to produce a common translation technology Not to exclude other documents, but these form the basis Described in at least four documents: Framework draft-baker-behave-v4v6-framework SIIT Update basic translation behavior draft-baker-behave-v4v6-translation Extensions for stateful translation draft-bagnulo-behave-nat64 DNS Translation gateway draft-bagnulo-behave-dns64 Possible future documents FTP ALG etc

Scenario IPv4-only Xlate DNS IPv6-only IPv4 packets IPv6 packets The IPv4 packets arrived in the IP/ICMP translator will be translated to IPv6 packets. The translator translates the packet headers from IPv4 to IPv6 and translate the addresses in those headers from IPv4 addresses to IPv6 addresses. The IPv6 packets arrived in the IP/ICMP translator will be translated to IPv4 packets. The translator translates the packet headers from IPv6 to IPv4 and translate the addresses in those headers from IPv6 addresses to IPv4 addresses. 3

Terminology (1) State Refers to dynamic per-flow or per-host state Stateless translation The translation information is carried in the address itself, permitting both IPv4->IPv6 and IPv6->IPv4 sessions establishment. Stateful translation Translation state is maintained between IPv4 address/port pairs and IPv6 address/port pairs, enabling IPv6 systems to open sessions with IPv4 systems. 4

Terminology (2) IPv4-mapped IPv6 address The IPv4-mapped IPv6 addresses are the IPv6 addresses which have unique relationship to specific IPv4 addresses. This relationship is self described by embedding IPv4 address in the IPv6 address. Unmapped IPv6 address The unmapped IPv6 addresses are general IPv6 addresses. There may exist relationship to the IPv4 addresses, but this relationship is maintained as the states (mapping table between IPv4 address/port and IPv6 address/port) in the translator. The states are either manually configured or session initiated. 5

Terminology (3) IPv4 address pool In the stateful mode, a certain amount of IPv4 addresses are maintained in the translator as the IPv4 address pool. In the stateless mode, there is no IPv4 address pool in the translator. A special block of IPv4 addresses are reserved, embedded in the IPv6 addresses and represented by the IPv6 end systems. 6

IPv4/IPv6 Translation: temporary tool to help coexistence/transition IPv4 addresses Embedded in an IPv6 prefix in the IPv6 domain Stateless and stateful translation Connectivity provided: IPv4 <-> IPv4 IPv6 <-> IPv6 1:N IPv6 -> IPv4 (unmapped) 1:1 IPv6 <-> IPv4 (mapped) Attributes: Enables services in both domains Stateless translation works in multiple providers, multiple translators Experience: IVI 2 years in CERNET NAT-PT/SIIT commercially deployed DNS ALG IPv4 or IPv4+IPv6 Domain IPv6 Domain

The address format chosen Basic format: IPv4 address embedded in IPv6 address Prefix: provided by the network administration 0::0/3 format has routing issues with multiple translators and with multiple IPv4 domains 0::0/3 format partially deprecated in RFC 4291 Placement of IPv4 address: Cook s choice: IPv4 bit 0 in IPv6 bit 33..63 or 96 Prefix64::/96 format appropriate for CPE and for stub IPv4 networks Putting upper part of prefix in routing locator appropriate for ISP usage

ISP usage #1 Carrier Grade NAT, if you will Designed to facilitate carrier transition with customers in various phases of transition Enables service: IPv6 /48 or longer general prefix to customer Equivalent of IPv4 /24 or longer to customer in IPv6 form for access by remote IPv4-only hosts with 1:1 stateless translation Requires advertisement of /64 by edge network for IPv4-mapped IPv6 addresses IPv6-only service with remote IPv4 hosts accessing local mapped IPv6-only servers and local IPv6 hosts accessing remote IPv4-only servers Prefix Host Identifier

ISP usage #2 (residential/soho/smb) Dual stack customers around IPv6-only network /64..48 to customer results in One /64 translated to IPv4 2 n -1 /64 IPv6 subnets No IPv4-accessible servers IPv6-only Network Domain Or host ISP provided /96 prefix IPv4 Address IPv4+IPv6 LANs

Stub network usage: Access to legacy equipment IPv6-only network, IPv4-only equipment (could be dual stack but network chooses not to) /64 prefix to RFC 1918 space with 1:1 stateless translation IPv6-only Network Domain or host Network-provided /96 prefix IPv4 Address IPv4 LAN

Routing advertisements by translator Xlate IPv4-only DNS IPv6-only In the IPv4 network Translator advertises an IPv4 prefix for stateless translation in ISP#1 case Translator advertises an IPv4 prefix for the stateful translation address pool Attracts traffic destined for translation to IPv6 In the IPv6 network Translator advertises an IPv6 prefix for entire IPv4 address space Attracts traffic destined for translation to IPv4 12

Usage of 1:n translation Primarily to let IPv6-only hosts with general format addresses access IPv4-only servers/peers IPv4 access to general IPv6 hosts excluded due to complexity

Usage of DNS translator Client/Server and Peer/Peer Enable IPv6 hosts with mapped addresses to be accessible to IPv4 clients/peers Enable IPv4 hosts to be accessed by IPv6 clients/peers Designed for simplicity and maintainability Simplest case is static configuration of records Capable of dynamic translation A<->AAAA Capable of multiple DNS servers with predictable results and no state other than DNS caches

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information