Title: IPv6 Deployment on An Advanced Experimental Network in Taiwan
1 IPv6 Deployment on An Advanced Experimental
Network in Taiwan
Associate Research Scientist Quincy
Wu (solomon_at_nchc.gov.tw) Deputy Director Eugene
J. Yeh (c00jsy00_at_nchc.gov.tw) National Center
for High-Performance Computing
2Contents
- National Telecommunication Project National
Broadband Experimental Network - Main Features of IPv6
- Current Applications Transition Mechanism
- Deployment in Taiwan
- Future Work
3National Telecom. Program
- Initiated by National Science Council
- Covering 2 major research areas
- Broadband Internet
- Wireless Communications
- NBEN (National Broadband Experimental Network)
as testbed for multimedia broadband applications
and various advanced communications protocols. - Project Implementation May 1998- 2003
- Budget(1998-2000) 5,546 million NT
- Consolidate the RD efforts of CHT, TL and III
4NBEN Objectives
- To master key future technologies
- Next generation Internet protocols (IPv6, RSVP,
Multicast, etc.) - advanced switching and routing techniques
- To develop broadband access technologies
- Gigabit Ethernet, DWDM Wireless LAN
- Provide a dedicated backbone for advanced
technology and next generation application - Internet telephony, video-conferencing, web
course, E-commerce, digital library, distance
learning
5NBEN Partners
NSC
Funding flow
Research Projects
NCHC
Service flow
Univ.
Fixed Network Carriers
ATM layer service
NTPO
GigaPops
TL
CHT
Research Institutes
IT Industry
6NBEN Actions
7SDH Backbone
NTU
TTI
TL
NMS
TL VPX
Taipei VPX
NCHC
Chung-li VPX
NCU
NMS
STM-4
NDHU
Hsinchu VPX
Hua-lian VPX
NTHU
NCTU
Taichung VPX
NCHU
Tainan VPX
CCU
NCKU
Kaohsiung VPX
NSYSU
8GigaPop Configuration
WAN
LAN
Fore ASX-1000 ATM Switch
OC-3c
STM-1
OC-3c
Nortel/Bay 5000BH IP Router
100Base-T
Hauman Technologies Corps. (Fore Systems)
9NBEN Establishment Project
- Investigator NCHC
- Period 8/1998 - 7/1999 (1st year)
- Budget NT12.7M (for equipments)
- Backbone supported by CHT free of charge for 3
years - Schedule
- 10/13/98 project approved (submitted 9/11)
- 11/11/98 proposal approved by NSC
- 03/01/99 equipment delivery and test
- 05/18/99 operation and application test
- 06/15/99 deployment accomplished and service
started
10Shared Platform for Video Conferencing
- Video Conference/IP(H.323)
- Deploy internet platform for video conferencing
by multi-users multi-parties - TANET2000 Video Conference(NTU?NCHC?NCTU?NTPO?NCHU
?NCKU?NSYSU) - Feasibility study and planning for MegaConference
environment - NSYSU
11Service-oriented Pilot Projects
12Research Groups in 2001
- H.323 Video Conference Multipoint Control Unit
(MCU) - NSYSU, NCKU, NCTU, NTU, NCHC
- Quality of Service (QoS)
- NTU, CCU, NCU
- Network Management
- NCU, NCKU
- IPv6
- NDHU, NTHU, NCHC, CCU
13IPv6 Design Goals
- Addressing and Routing
- Minimizing Administrative Workload
- Multi-media Support
- Security
- Mobility
14IPv6 Milestone
- Internet Protocol Version 6 (IPv6) was
recommended by the IPng Area Directors of the
Internet Engineering Task Force at the Toronto
IETF meeting on July 25, 1994 in RFC 1752. - The core set of IPv6 protocols were made an IETF
Draft Standard on August 10, 1998 in RFC 2460.
15What happened to IPv5?
- Version 5 had been assigned to another protocol,
the Streams Protocol, ST2. That experimental
protocol does not really exist. - The next number available for assignment was 6,
hence the next generation is called IPv6. - Now there is talk of developing the Internet in
even-numbered increments IPv8.
16Expanded Address Space
- IPv4 address 140.110.31.15
- 1000 1100 0110 1110 0001 1111 0000 1111
(32bits) - Maximum 232 4 Billion
- 60 of the IPv4 address space is allocated
- Overall Internet is still growing at 40 per year
worldwide - 320 million users in 2000, 550 million by 2005
- We shall run out of IP addresses in 2010!
17Expanded Address Space (2)
- IP is everywhere
- IPv6 is specified to be a required, mandatory
to implement network layer protocol by 3GPP - UMTS Release 5 is Internet Mobility, 1/3 of 1B
should get connected - 1 Billion cars in 2010, 15 should get GPS and
Yellow Page service - Billion of new Internet appliances for Home users
18IPv6 Address
- 128-bit long
- 2128 3.41038 ? 6651021 addresses per m2 of
earth surface. - Considering some inefficient usage (e.g. 911
prefix in telephony), it is estimated to support
81017 to 21033 addresses. - 81017 ? 1,564 address per m2.
19Text Representation of Addresses
- Colon-Hex 3ffe3600200080024854fffe5c8868
- Compressed Format
- 3ffe0b000c1800010000000000000010
- becomes
- 3ffeb00c18110
- IPv4-compatible
- 000000140.110.31.15
- or 140.110.31.15
20Multicast
- Modern internetworks need to transmit streams of
video, audio, news, financial, or other timely
data to groups of functionally related but
dispersed endstations. - This is best achieved by network layer multicast.
- Typically, a server sends out a single stream of
multimedia or time-sensitive data to be received
by subscribers. A multicast-capable network
routes the server's packets to each subscriber in
the multicast group, replicating only as needed.
21Unicast
22Multicast
23Multicast Support
- Multicast is optional for IPv4. Not all routers
support multicast. For example, TANet does not
enable multicast feature on each router. - All IPv6 hosts and routers are required to
support multicast. - There are no broadcast addresses in IPv6, their
function being superseded by multicast addresses. - Link-local
- Site-local
- Global scope
24Header Format Simplification
- Address space quadrupled to 16 bytes
- Fixed length
- Concatenated Extension Headers
- No checksum
- (Done by Link Layer)
- No hop-by-hop segmentation
- (Path MTU discovery)
- Flow label/Class
- (Integrated QoS support)
25IPv4 Header20 OctetsOptions 13 fields,
include 3 flag bits
0 bits
31
4
8
24
16
Ver
IHL
Total Length
Service Type
Identifier
Flags
Fragment Offset
Time to Live
Header Checksum
Protocol
32 bit Source Address
32 bit Destination Address
Options and Padding
26IPv6 Header40 Octets, 8 fields
0
31
4
12
24
16
Version
Priority
Flow Label
Payload Length
Next Header
Hop Limit
128 bit Source Address
128 bit Destination Address
27Protocol and Header Types
28IPv6 Extension Headers
- IP options have been moved to a set of optional
Extension Headers - Extension Headers are chained together
IPv6 Header
TCP Header
Application Data
Next TCP
IPv6 Header
TCP Header
Routing Hdr
Application Data
Next Routing
Next TCP
IPv6 Header
TCP Header
Security Hdr
Fragment Hdr
Data Frag
Next Security
Next Frag
Next TCP
29IPv6 enables efficient routing
- Total IPv6 header size is only twice as large.
- Most IPv6 extension headers are not examined or
processed by intermediate nodes (in contrast with
IPv4, where IP options typically cause a major
performance loss for the packet at every
intermediate router). - Priority and flow label can be used to identify
flows even when the payload is encrypted.
30Application-level Security Solutions
- SSH for TELNET
- SSL for WWW
- PGP for email
- The contents may be encrypted, but the traffic
flow can still be observed. - IPv6 provides Network-level security.
31Authentication Header
- Data origin authentication
- Useful in conquering DoS attack
- Connetionless integrity
Before applying AH
After applying AH
Origin IP hdr
TCP
Data
AH
Authenticated
32Encapsulating Security Payload
- Transport Mode of IPv6 Encryption
- Tunnel Mode of IPv6 Encryption
Unencrypted
Encrypted
Unencrypted
Encrypted
IPv6 Hdr
ESP Hdr
Ext. Hdr
Payload
IPv6 Hdr
ESP Hdr
Ext. Hdr
33Auto-configuration (Plug-n-Play)
- hosts can construct their own addresses
- subnet prefix learned from periodic multicast
advertisements from neighboring router - interface IDs generated locally, e. g., using MAC
in addresses - DHCP also available for those who want more
control
34Auto-Reconfiguration (Renumbering)
- If your organization change to a new ISP, the IP
address prefix must be changed. - New address prefix can be introduced, and old
ones withdrawn - Add a new Prefix to the Router
- Reduce the Lifetime of the old prefix
- As nodes depreciate the old prefix, the new
Prefix will start to be used for new connections.
35IPv6 Implementation - Host
- Apple
- Compaq
- FreeBSD
- Hitachi, Ltd.
- HP
- IBM
- Linux
- Microsoft
- Silicon Graphics
- Sun
- etc.
36IPv6 Implementation - Router
- 3Com
- Cisco Systems
- Hitachi, Ltd.
- NTHU
- Nokia
- Nortel Networks
- Telebit Communications
37IPv6 Deployment Policy in Korea
- Transition Roadmap by Government (23 Feb 2001)
Phase I (2001)
Phase II (20022005)
Phase III (20062010)
Phase IV (2011)
IPv4 Only
IPv4 Ocean
IPv4 Island
IPv6 Only
IPv4/IPv6 Translation Required
Experimental IPv6 Network
IPv6 Ocean
IPv6 Island
Complete native IPv6
Commercial IPv6 Service (wire/wireless)
- Validation
- Operation
- Promotion
- IMT2000 Service
- Translation Service
38NTT-JP
39CERNETv6
40ESNET-V6
- ESnet is working to make this transition from
IPv4 to IPv6 as seemless as possible for our
customers. We are one of the few Internet Service
Providers to be a participate in the 6Bone
backbone. Our engineering staff is also testing
many of the network services we are all familiar
in an IPv6 environment. - 6Tap
- 6ren
- Whois Server
- Tunnel Registration
- Address Delegation
- http//www.es.net/hypertext/welcome/pr/ipv6.html
41IPv6 Transition Objective
- To allow IPv6 and IPv4 hosts to interoperate
- To allow IPv6 hosts and routers to be deployed in
the Internet in a highly diffuse and incremental
fashion, with few interdependencies - The transition should be as easy as possible for
end-users, system administrators, and network
operators to understand and carry out - The transition should be as transparent to
general users as possible
42IPv6 Transition Mechanisms
- A set of protocol mechanisms implemented in
hosts and routers - Some operational guidelines for addressing and
deployment, designed to make transiting the
Internet to IPv6 work with as little disruption
as possible
43IPv4 ?? IPv6 Transition Strategy
- Dual Stack
- Tunneling (RFC 2473)
- Translation (RFC 2766 NAT-PT)
44Dual-Stack Approach
- When adding IPv6 to a system, do not delete IPv4
- this multi-protocol approach is familiar and
well-understood (e.g., for AppleTalk, IPX, etc.) - note in most cases, IPv6 will be bundled with
new OS releases, not an extra-cost add-on - Applications (or libraries) choose IP version to
use - when initiating, based on DNS response
- if (dest has AAAA or A6 record) use IPv6, else
use IPv4 - when responding, based on version of initiating
packet - This allows indefinite co-existence of IPv4 and
IPv6, and gradual, app-by-app upgrades to IPv6
usage
45IPv6 Tunneling
IPv6 Network
IPv6 Tunnel
Transport Layer Header
IPv6 Header
Data
IPv6 Tunnel
Service Provider IPv4 Backbone
Transport Layer Header
IPv6 Header
IPv4 Header
Data
IPv6 Tunnel
IPv6 Network
46Translation
- May prefer to use IPv6-IPv4 protocol translation
for - New kinds of IPv6 devices (e.g., cell phones,
cars, appliances) accessing IPv4 servers
resources over the Internet - Smoothly deploying IPv6 on a campus network,
providing v4-v6 communications - This is a simple extension to NAT techniques, to
translate header format as well as addresses - IPv6 nodes behind a translator get full IPv6
functionality when talking to other IPv6 nodes
located anywhere - Methods used to improve NAT functionality (e.g.,
ALGs) can be used equally to improve IPv6-IPv4
functionality
47IPv4-IPv6 Translation NAT-PT
NAT-PT
IPv4/v6 Network
IPv4 Network
V4 v6 host, router V4-only host,
router v4-only link v4 v6 link
48NBEN IPv6 Project in 2000
- NTHU, NDHU, CCU deployed IPv6 applications
- DNS
- WWW
- Email (SMTP, POP3, IMAP)
- Files Transfer (FTP)
- Remote Access (TELNET, SSH)
49WWW Server Browser
50NBEN IPv6 Project in 2001
- Pure IPv6 environment on backbone (no tunneling)
- NTHU, NDHU, CCU ready before 9/30.
- All GigaPOPs ready before 12/31.
- Mobile IPv6
- VOD on IPv6, Layer 7 Switching Router for IPv6
- VoIPv6
- BGP4 peering with other IPv6 networks
51Future Work
- Translator
- NAT-PT (Network Address Translator and Protocol
Translator) - Wireless Mobile Applications
- IPv6 Forum activity
- BGP4 peering to gain operational experience
52Conclusion
- IPv6 integrates many built-in features which are
optional and sometimes mutually-exclusive in
IPv4. - Transition mechanism is crucial to the success of
IPv6. - New proposal high-bandwidth application are two
major topics for NBEN to support. - NCHC NBEN will keep on facilitating networking
research with advanced technology.