the mayan perspective on the ipv6 business case · cpug - ipv6 business case - september 2010 sunny...

CPUG - IPv6 Business Case - September 2010

Sunny Connection AG - www.sunny.ch

1

The Mayan Perspective on the IPv6 Business Case

Silvia HagenSunny Connection AG

www.sunny.ch

2

Topics

Context

Technical Overview – very short

Facts – Figures – Business Case



2

3

The IPv6 Header

4

Why IPv6? – The big context

IPv6 is about the continuation of the Internet.

The Internet is a global collaborative creation.

Each of us has to contribute his part in the evolution of theInternet, because we all benefit from it. It takes a collective effortfor the best of all.

This is the main reason to drive the integration of IPv6.



3

5

Business Case and Cost Issue

IPv6 is an upgrade of the infrastructure („it‘s the plumbing“ as Jim Bound used to say).

There is no direct business case for infrastructure upgrades.

If you want to save cost, turn it off (yes, I mean the network).

The Business Case is in the applications and services. To run state-of-the-art services you need a state-of-the-artinfrastructure.

Customers will never ask for IPv6. Customers ask for services.

6

Infrastructure



4

7

Infrastructure Upgrade

8

Extensions ...

Trend analystspredictedthatmankindwould soondrown in horse dung!



5

Structural Upgrade

Thisresolvedthe horsedung issue…

Butcreatedsome newissues to be solvednow!

10

Next Evolutionary Step?

Not quiteyet!

Butgettingthere.



6

11

This may become the Quantum Leap

Interplanetary Communication Protocolo RFC 4838 - Delay-Tolerant Networking Architecture

o RFC 5050 - Bundle Protocol Specification

o RFC 5325 - Licklider Transmission Protocol Motivation

o RFC 5326 - Licklider Transmission Protocol Specification

o RFC 5327 - Licklider Transmission Protocol Security Extensions

o And a bunch of drafts in the queue …

Get ready for the next technology leap, evolutionnever ends and is not linear.

Short Technical Overview



7

13

Main Changes from IPv4 to IPv6

Expanded addressing capability (128 bits)

Expanded autoconfiguration mechanisms

Simplification of the header format(fixed length: 40 bytes)

Improved support for extensions and options (Extension Headers)

Extensions for authentication and privacy (security)

Flow labelling capability (QOS – Quality of Service)

14

Dual IP Layer



8

15

Extension Headers

IPv6 handles options in additional Extension Headers

The current IPv6 specification defines 6 Extension Headers:

Hop-by-Hop Options Header

Routing Header

Fragment Header

Destination Options Header

Authentication Header RFC 4302

Encrypted Security Payload RFC 4303

RFC 2460

16

Extension Headers (cont)

IPv6 HeaderNext Header = TCP

Value 6

TCP Headerand data

IPv6 HeaderNext H. = Routing

Value 43

Routing HeaderNext H. = TCP

Value 6

IPv6 HeaderNext H. = Routing

Value 43

Routing HeaderNext H. = Fragment

Value 44

Fragment HeaderNext H. = TCP

Value 6

TCP Headerand data

TCP Headerand data

RFC 2460



9

17

Examples - Mobile IPv6

Both the Routing header and the Destination Options header areused with Mobile IPv6 to ensure applications don't lose their TCP connection while a user is roaming

Mobile IPv6 allows a direct routing between Mobile Node and Correspondent Node, thanks to Extension Headers – Mobile IPv4 will never be able to provide this

Mobile IP uses home agent, home address, and care-of address

For information about Mobile IPv6, refer to RFC 3775

18

Global Unicast Address

Identified by the binary prefix 001 – 2000::/3

Global Routing Prefix Value assigned to a site, Bit 0 – 2 set to 001

Subnet ID Identifier assigned to a link within a site

Interface ID Interface Identifier, 64 bit, following formats

- EUI-64 Extend MAC address to 64 bits by adding FF FE between the 3rd

and 4th Byte and “locally administered bit” must be set (2nd bit)

- Manual

- Random (Privacy Option)

Global Routing Prefix

Subnet ID Interface ID



10

19

ICMPv6

Neighbor Discovery (ND)

Autoconfiguration (SLAAC)

Path MTU Discovery (PMTUD)

Multicast Listener Discovery (MLD)

20

Integration mechanisms

Dual-stack

Tunneling

6to4, Isatap, Teredo, Tunnelbroker, 6RD…..

Translation

Original NAT-PT specification "deprecated", new solutionsunder development in Softwire Mesh Framework Group

Last resort…..



11

Fact, Figures, Business Case

22

IPv4 Address Space

Total IPv4 address space 4.3 Billion

World population 2009 6.8 Billion

Growth rate ~80 Mio / year

Today approximately 25% of world population haveInternet access.

Internet growth rate since 2000: 380%Highest rate in Middle East, Africa, Latinamerica



12

23

Population and Internet Users

Region Online Users Population Online in %

World 1‘802 Mio. 6‘767 Mio. 26.6%(world in 2001 360 Mio.)

USA/Canada 259 Mio. 340 Mio. 76.2%

Europe 425 Mio. 803 Mio. 53.0%

Middle East Mio. 202 Mio. 28.8%

Latin America 186 Mio. 586 Mio. 31.9%

Africa 86 Mio. 991 Mio. 8.7%

Asia 764 Mio. 3‘808 Mio. 20.1%

Oceania 21 Mio. 34 Mio. 60.8%

www.internetworldstats.com/stats.htm

24

Address Allocation IPv4 - Worldview

IANA Pool (unallocated addresses)October 2005 64 /8 (Class A)May 2007 47 /8January 2008 42 /8January 2009 34 /8January 2010 24 /8June 2010 16 /8August 2010 14 /8

Projected end of IPv4 pools:IANA Pool May 2011RIR Pools January 2012

Source: http://www.potaroo.net/tools/ipv4



13

25

Only 256 Days left….

http://ipv6.he.net/

How many days does a year have?

26

Address Allocation IPv6 - Global

100%139‘411Total

24.3%33‘843RipeNCC

47.3%65‘901LACNIC

10.8%15‘113ARIN

17.6%24‘494APNIC

0.04%60AfriNic

%No of /32Registry

Jan 2010

• 139‘411 /32 blocks represent 0.026% of the currently available globalIPv6 Unicast space (2000::/3).

• With 139‘411 /32 blocks 9.1 Bio. Customers can receive a /48.

Source: http://www.bgpexpert.com/addrspace-ipv6.php

One single /32 block has more IP addresses than thewhole IPv4 addressspace!!



14

27

IPv6 Allocations

Find a list of IPv6 allocations and visibility per country at

www.sixxs.net/tools/grh/dfp

DFP visibility per RIR

* 6bone (144) (phased out 6/2006)

* RIPE (2470)

* APNIC (1244)

* ARIN (1541)

* LACNIC (342)

* AfriNIC (107)

28

Do you still want a Business Case now?

If you don‘t upgrade you will have

• Extra cost due to an overaged infrastructure.

• Not be able to integrate new applications.

• Loose markets and customers due to outdated services and lack of global connectivity.

• Get out of business in the long term.

• Loose your membership in the global Internet community.



15

29

New applications?

From a presentationby Sean Siler, Senior. IPv6 ProductManager at Microsoft (2009)

30

What is Direct Access?

With DirectAccess, users are able to access corporate resources (such as e-mail servers, shared folders, or intranet Web sites) securely without connecting to a virtual private network (VPN).

Direct Access usesstandard technologiessuch as IPv6 and IPsecfor Tunneling, Authentication and Encryption



16

31

The IPsec Tunnels - Choices

End-to-End Tunnel

Highest Security Level

Configuration on DirectAccess Server

End-to-Edge Tunnel

Tunnel with IPsecGateway Server

No IPsec needed in Intranet

Source: Microsoft Technet

32

When to choose IPv6

Never touch a running system!As long as your IPv4 networks do what you need them to do, let them run

Choose IPv6, ...when an IPv4 network hits the limits for some reasonswhen you plan updates due to natural life cycles or other projectsif you need to extend your network by a whole new segmentif you need end-to-end securityif new services require it, such as Direct Access with Windows7

Develop an integration strategy and confront your vendors!



17

33

No Flagday for IPv6!

Never touch a running system.

Before investing in extending or fixing your IPv4 infrastructure, evaluate IPv6.

Don't wait for a flag day or killer application.

Go for step by step integration and learn as you go.

Be careful when dealing with Asia!

34

Deployments in Europe

TeliaSonera has a /20 Allocation introduces IPv6 in 2006 ein. Lucent delivers VitalQIP IP-Management solution. TeliaSonera has more than 8 Mio fixed lines, approx. 15 Mio mobile phone customers, and over 2 Mio. Internet customers.

Deutsche Telekom got a /19 in 2004 and already had 2 /35, 1 /34, 1 /33 . Pilot running.France Telecom, BT, NTT Communications and Global Crossing offer commercial IPv6 services in Europe, among others.

Cable & Wireless is fully dual-stack, /21 Allocation.Géant - European High Speed network, dual-stack.



18

35

Registry Information

80% of all European IEX Points support IPv6.www.euro-ix.net/ixp/serviceMatrixIPv6 is available in every country in Europe.

8 of the 13 DNS Root servers are dual-stack and can be reachedover IPv6.http://www.root-servers.org

36

RipeNCC

Announced in December 2008:

All of the RIPE NCC's major online services are now accessible via IPv6.

These services include the web servers, ftp servers, DNS, the LIR Portal and mail system as well as the RIPE Database and all of the RIPE NCC's Information Services - Test Traffic Measurement (TTM) service, the Routing Information Service (RIS), DNS Monitoring (DNSMON) service and Hostcount.



19

37

Switzerland

BIT has a /32 allocation, has created a high level integrationstrategy and a national address concept

ech.ch has created a standard which defines IPv6 for all futuregovernment networks as mandatory. IPv4 is recommended. Thestandard called SAGA has been approved by the IRB (highestboard)

At federal level IPv6 support is mandatory for the purchasing of all new systems.

38

EU and Germany

The EU is working on concepts to support all members in theintegration of IPv6.

The German Government has obtained an IPv6 Prefix of /26 upgradable to /23 ( reserved) in December 2009

Some Bundesländer are active, such as Sachsen.

Sachsen started project in 2006

Created address plan, detailed implementation scenarios, ran labs and pilots

Integrated IPv6 support in all their contracts with suppliersincluding VoIP, telephony and mobile communication



20

39

North America

US Task Force 2001 started – www.nav6tf.org

The US Department of Defense (DoD) announced in 2003 theintroduction of IPv6 until the year 2008. Test networks running(Moonv6). Close collaboration with government, ISPs and Application and Hardware vendors to introduce IPv6 in North America.

A NASA concept for network-centric operations for global communication is based on IPv6, RFI

Office of Management and Budget (OMB) announces in Juli 2005, that all government agencies must support IPv6 until 2008. And yes, they are getting there…

40

IPv6 Networks

Some examples:

Moonv6 (www.moonv6.org)Internet2 (www.internet2.org)

Global Crossing has introduced IPv6 in their global IP networkt. The MPLS infrastructure has been fully IPv6-enabled in 2005.

NTT Communications has a global dual-stack backbone and offers commercial IPv6 services successfully since more than 6 years.

Comcast (large ISP) has migrated its core network to IPv6.

San Francisco-based Bechtel Group Inc. has migrated their network to IPv6.

Google offers all services over IPv6.



21

41

Internet2

42

Who else, some examples

Heise.de, Google.com, Youtube and Facebook are reachable overIPv6. Yahoo currently runs a pilot.

Comcast (Broadband Access Provider), Verizon, Sprint Nextel(Service Provider), Tata Communications (Tier 1 Service Provider), Bouygues Telecom (Mobile Provider), Free.fr

Greek educational network, Factice World Bank, Cisco Systems, Microsoft, Bechtel Corporation (Construction Company), ArchRock (Network Sensor Technology), Command Information (Professional IT Services).

Bundesamt für Informatik Schweiz (BIT) (/32), Bundesstaat Sachsen, EU, Deutschland (/26)



22

43

Comcasts press release January 2010

Today we are announcing our 2010 IPv6 trial plans. For more information please visit the following web site:http://www.comcast6.net

We have also made available a partial, dual-stack version of our portal which can be found at:http://ipv6.comcast.net

44

6rd (IPv6 Rapid Deployment)

Developed by free.fr

Within 5 weeks in 2007 Free has enabled IPv6 access for 1.5 Bio Internet users (on request)

Modified version of 6to4

Standardized in Softwire workgroup RFC 5969

Description of deployment: RFC 5569



23

45

Application support

IPv6 Ready Logo:

Phase 1: www.ipv6ready.org/logo_db/approved_list.php

Phase 2: www.ipv6ready.org/logo_db/approved_list_p2.php

46

Google Statement

”IPv6 is easy, not expensive”,Article in Network World, March 25, 2009

Quotes Lorenzo Colitti, Google Engineer:Building a pilot IPv6 network “was not expensive,” said Colitti, who recommended rolling out IPv6 in stages. “There’s nothing inherently unreliable about IPv6.”Google is already reaping the benefits of IPv6. “It’s refreshingly simple to look at a network with globally addressable devices.”Colitti said Google has accepted that IPv6 is a requirement for any company that wants to see the Internet continue to operate and to support new applications and users.



24

47

When is it time for IPv6?

48

Next courses

2-day Hands-On in Zurich, October 21./22. 2010

IPv6 Essentials, 2-day seminar

November 11./12. in Düsseldorf

December 2./3. in Munich

Corporate classes and other dates on request

Overview: www.sunny.ch/education/f_seminars_d.htm



25

49

Thank you for your attention!

IPv6 Grundlagen, Funktionalität,

Integrationvon Silvia Hagen, Deutsch2. Auflage, Sunny Edition, 2009ISBN 978-3-9522942-2-2

IPv6 Essentials

by Silvia Hagen, English2nd Edition, O'Reilly, May 2006ISBN 978-0-596-10058-2

the mayan perspective on the ipv6 business case · cpug - ipv6 business case - september 2010 sunny...

Documents