hurricane electric - martin levy - ipv6 · 19 march 2009 insight into hurricane electrics global...

Insight into Hurricane Electrics Global IPv6 Flow Data

Google IPv6 Implementers Conference 2009March 19th – Mountain View, California

Martin J. Levy, Director IPv6 StrategyHurricane Electric

19 March 2009 Insight into Hurricane Electrics Global IPv6 Flow Data - Martin J. Levy

Hurricane Electric – Talk Outline

IPv6 Peering (where the traffic is!)This is not news – there is lots of IPv6 peering

Hurricane Electric traffic levelsReview of high-level view of IPv6 traffic

Q: Does traffic levels matter?Is there a better measure of IPv6’s existence?


Hurricane Electric

IPv6 Peering


IPv6 at peering exchanges

Tokyo

JPNAPJPIXBBIXDIX-IEEQUINIX

Los Angeles

EQUINIXANY-2LAIIX

SeattleSIX

PAIX

San JoseEQUINIX

PAIXANY-2AMES

São Paulo

NAP do BrasilPTTMetro

Buenos AiresCABASE

Miami

PAIXNOTA

Virginia area

EQUINIXPAIXANY2

Atlanta

TIEPAIX

ChicagoEQUINIX

Chicago IX

TorontoTORIX Dublin

INEX

NJ & NYEQUINIXPAIXNYIIXBigApe

LondonLINX

LONAP

ParisPARIXPaNAPSFINXFreeIX

BrusselsBNIXFreeBiX

AmsterdamAMSIXNL-IX

OsloNIX

BostonMXP

JohannesburgJINX

NairobiKIXP

Singapore

EQUINIXSOX

Auckland

APEV6IX

BeijingNational IX

LisbonGigaPix

WellingtonWIX

SydneyEQUINIXPIPE

SantiagoNAP Chile

MadridESPANIX

GenevaCERN

MoscowMSK-IX

FrankfurtDE-CIXKleyReX

StockholmNetNodSOL-IX

JakartaIIX

Zurich

SwissIXTIX

PragueNIX CZ

ViennaVIX

Milan

MIXMINAP

Hong KongHKIX

EQUINIXSeoul

KIDCKINX

TaipeiTWIX

MumbaiNIXI

New DelhiNIXI

Kuala LumpurMyIX

Dallas

EQUINIXPAIX

GuangzhouNational IX

ShanghaiNational IX


IPv6 at peering exchanges

IPv6 PeeringIs there any? (Hint: The answer is yes)Hurricane Electric has 400+ IPv6 BGP neighbors

Total Number of IPv6 Peering Adjacencies Seen at Oregon RouteviewsExtracted from Geoff Huston's http://bgp.potaroo.net/v6/as6447/bgp-as-adj.txt databy Martin Levy at Hurricane Electric http://ipv6.he.net/

950

1,000

1,050

1,100

1,150

1,200

1,250

1,300

1,350

Apr

May

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

# P

eering

Adj

acen

cies

See

n Gl

obally

20092008


Hurricane Electric

IPv6 Traffic


Hurricane Electric stats – overall IPv6 traffic

Overall IPv6 traffic

Sample IPv6 Peering Traffic(summed globally)


Hurricane Electric stats – IPv6 vs. IPv4 traffic

IPv6

IPv4

IPv6 traffic levels don’t relate to IPv4 traffic levelsDifferent customer baseDifferent traffic flows

This will change – they will converge


Hurricane Electric stats – IPv6 peering traffic

LINX IPv6 peering

2002::/16


Hurricane Electric stats – IPv6 peering traffic

AMSIX IPv6 peering

AMSIX IPv6 peering(UDP traffic)

Interesting customer traffic


Hurricane Electric stats – IPv6 @ AMS-IX

Total AMSIX IPv6 traffic

http

://w

ww

.am

s-ix

.net

/tech

nica

l/sta

ts/s

flow

/?ty

pe=i

pv6


Hurricane Electric

IPv6 6to4 ** 6to4 (sometimes written 6 to 4) is a system that allows IPv6 packets to be transmitted over an IPv4 network (generally the IPv4 internet) without the need to configure explicit tunnels. Routing conventions are also in place that allow 6to4 hosts to communicate with hosts on the IPv6 internet. It is typically used when an end-site or end-user wants to connect to the IPv6 Internet using their existing IPv4 connection.

From Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/6to4

Or read RFC3056 at http://tools.ietf.org/html/rfc3056


Hurricane Electric – The IPv6 network map

AS6939 IPv6 Transit – IPv6 Peering – IPv6 tunnelbroker – IPv6 hosting – IPv6 everywhere!


Hurricane Electric 6to4 Relay Deployment

Palo Alto

MiamiVA / DC

NJ / NY

London Frankfurt

Hong Kong

Fremont

The Goal:

Localize 6to4 traffic (2002::/16 & 192.88.99.1/32 via anycast routing)

IPv6 6to4 relays turned on


Hurricane Electric

IPv6 Teredo *

* Teredo is a tunneling protocol designed to grant IPv6 connectivity to nodes that are located behind IPv6-unaware NAT devices. It defines a way of encapsulating IPv6 packets within IPv4 UDP datagrams that can be routed through NAT devices and on the IPv4 internet.

From Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Teredo_tunneling

Or read RFC4380 at http://tools.ietf.org/html/rfc4380


Hurricane Electric – Teredo traffic

Traffic is all eastward across the AtlanticFlows towards teredo.bit.nl AS12859 over AMS-IX

See http://teredo.bit.nl/ for graphs (270+ Mbps processed)Just changed https://www.widexs.nl/ AS12573 also over AMS-IX

2001::/32 announce by other networks including:AS12637 (Seeweb), AS1257 (Tele2), etc.


Hurricane Electric – Teredo relays everywhere!

No shortage of relaysOr maybe … no shortage of 2001::/32 announcements?

http://ww

w.bgpm

on.net/teredo.php?week=4


Hurricane Electric – Teredo relays everywhere!

Relays fighting for traffic in AmsterdamEnd users are loosing out on quality packet flowTeredo and 6to4 relays also need coordination

http://teredo.bit.nl/ AS12859 https://www.widexs.nl/ AS12573

Other peering traffic to teredo relay


Hurricane Electric – Teredo & 6to4

Rel

ay A

Rel

ay B

Rel

ay A

Rel

ay B

··· ···

Pee

ring

traffi

c flo

win

gto

war

ds te

redo

rela

ysin

Am

ster

dam

Hur

rican

e E

lect

ric6t

o4 re

lay

traffi

cle

vels

clo

se-b

y


Hurricane Electric

IPv6 Qualitative Viewpoint

are traffic levels the right measurement?


IPv6 – less quantitative and more qualitative

IPv6 readiness on a backboneDoes a backbone have IPv6 enabled?Are domains served by IPv6 DNS serversDo the basic services operate on v4 & v6?

Count ofIPv6 addresses

within .COM domain(Queries on78,630,991

domains to findAAAA records)

Measured onFeb 12, 2009

RFC5156 says:

2.2. IPv4-Mapped Addresses::FFFF:0:0/96 are the IPv4-mapped

addresses [RFC4291]. Addresses within this block should not appear on the public Internet.

2.3. IPv4-Compatible Addresses::<ipv4-address>/96 are the IPv4-

compatible addresses [RFC4291]. These addresses are deprecated and should not appear on the public Internet.

Address Notes 13/02/09::ffff:0:0/96 v4-mapped 107,7292000::/3 unicast 46,233:: unspecified 17,038::/96 v4-compatible 9122002::/16 6to4 641::1 localhost 614invalid invalid 1113ffe::/16 6bone 101fe80::/10 link-local 40fec0::/10 site-local 12001::/32 teredo -fc00::/7 ULA 1

Total IPv6 173,421Total usable IPv6 46,874


IPv6 – Registered domains with AAAA recordsht

tp://

bgp.

he.n

et/ip

v6-p

rogr

ess-

repo

rt.cg

i

TLD domains A AAAA A-glue AAAA-gluecom 79,950,901 69,918,138 182,221 1,513,368 213net 12,147,196 10,162,887 26,281 318,199 373org 7,455,783 6,215,906 20,115 203,481 115

info 5,069,171 3,939,232 6,529 136,749 137biz 2,010,353 1,588,125 3,941 19,345 -us 1,389,075 1,161,127 3,306 13,785 -ca 1,158,165 969,884 118 15,391 -no 418,689 310,875 138 1,381 3sk 174,960 126,771 9,697 3,437 -to 52,322 49,450 22 1,988 -kz 31,627 21,876 1 43,675 -ma 28,302 9,267 2 28,452 -ag 13,446 9,506 22 297 -ge 11,715 8,272 9 175 1am 10,608 8,186 5 526 4tc 9,995 7,827 7 519 -vg 8,972 6,664 4 334 -ba 7,963 6,514 2 5,715 -gt 6,750 4,824 3 426 2pe 6,159 2,980 1 73 -lk 5,850 3,211 1 1,504 -nf 5,571 5,282 2 12 -sn 2,315 936 4 251 1gd 2,180 1,367 2 187 -lc 1,597 420 1 29 -mw 1,315 532 3 - -cu 816 215 - 567 9

Total 109,981,796 94,540,274 252,437 2,309,866 858

Generated by querying for A (IPv4) and AAAA (IPv6) records for all domains in the listed TLDs (top level domains).

Demonstrates growing use of AAAA records for the primary domain name of websites and other Internet services.


IPv6 – Certification (and learning)

http://ipv6.he.net/certification/

• Prove that you have IPv6 connectivity• Prove that you have a working IPv6 web server• Prove that you have a working IPv6 email address• Prove that you have working forward IPv6 DNS• Prove that you have working reverse IPv6 DNS for your mail

server• Prove that you have name servers with IPv6 addresses that

can respond to queries via IPv6• Prove your knowledge of IPv6 technologies through quick and

easy testing

• the format of IPv6 addresses• AAAA records• reverse DNS for IPv6• the IPv6 localhost address• the IPv6 default route• the IPv6 documentation prefix• the IPv6 link local prefix• the IPv6 multicast prefix• do an IPv6 ping• do an IPv6 traceroute• common IPv6 prefix• and more!

2,113 Certifications!


Q&A

Contact:Martin J. LevyHurricane Electric760 Mission CourtFremont, CA 94539, USAhttp://www.he.net/

martin at he dot net+1 (510) 580 4167

hurricane electric - martin levy - ipv6 · 19 march 2009 insight into hurricane electrics global...

Documents