Document 1134628

Download Report

Transcript Document 1134628 

Setting up IPv6 Network
Usman Shaukat
Background
Worked


Multicast
IPv6 addressing
Need


Deploy actual IPv6 Nodes
Transition between IPv6 and IPv4
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
Tunneling
Moving IPv6 packets through a hybrid network
Based on theoretical work done by M. Aazam
Techniques explored




Teredo
ISATAP
6to4
6over4
Techniques deployed

Teredo, ISATAP, 6to4
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
LAB Setup
H1
TS
R1 + IS
R2
H2
DN
S
H1 = Host 1 (IPv6, Windows XP)
H2 = Host 2 (IPv6, Windows XP)
DNS = DNS Server (IPv6, Windows 2003 Server)
R1 = Router 1 + ISATAP Server (IPv6, Windows Server 2003)
R2 = Router 1 (IPv6, Windows Server 2003)
TS = Teredo Server (Miredo, Linux FC8)
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
IPv6 Setup
Dual Stack
H1
Dual Stack
Dual Stack
R1
10.0.1.x
2001:db8:
0:1::/64
R2
10.0.2.x
2001:db8:0:2::/
64
Dual Stack
Me
My forward
boys be
IPv4
likean
2001:db8:0
IPv6
Packets
::/64
Dual Stack
You become
2001:db8:0
Me Too…..
:3::/64
10.0.3.x
2001:db8:0:3::/6
4
H
2
DNS
Make nodes dual stack

Netsh interface ipv6 install
Enable routing at R1 and R2

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\Tcpip\Parameters\\IPEnableRouter to 1
Enable IPv6 Routing on R1 & R2

netsh interface ipv6 set interface "Subnet 1 " forwarding=enabled advertise=enabled
Add route to routing table and advertise for for global configuration

netsh interface ipv6 add route 2001:db8:0:1::/64 "Subnet 1 Connection" publish=yes
Default route

netsh interface ipv6 add route ::/0 "Subnet 2 Connection" nexthop=ROUTER2Address publish=yes
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
H1
2001:db8:0:10:10.0.1.1
Dual Stack
2001:db8:0:10:10.0.1.2
R1
2001:db8:0:10:10.0.2.1
R2
IPv4 Network
Logical ISATAP Subnet
Dual Stack
Dual Stack
H
2
2001:db8:0:10
:10.0.3.2
DNS
2001:db8:0:10:10.0.1.3
Disable IPv6 forwarding on R1 and R2

netsh interface ipv6 set interface "Subnet 2 Connection" forwarding=disabled advertise=disabled
Advertise logical isatap subnet

netsh interface ipv6 isatap set router 10.0.2.1
netsh interface ipv6 set interface "Automatic Tunneling Pseudo-Interface" forwarding=enabled advertise=enabled
Add route to logical subnet

netsh interface ipv6 add route 2001:db8:0:10::/64 "Automatic Tunneling Pseudo-Interface" publish=yes
Renew ip address configuration

netsh interface ipv6 renew
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
6to4Setup
Dual Stack
H1
Dual Stack
IPv4 Network
Dual Stack
R1
R2
Subnet 2
202.10.10.x
Subnet 1
201.10.10.x
Dual Stack
Dual Stack
Subnet 3
203.10.10.x
192.168.0.x
2002:ca0a:02:5::/
64
H
2
DNS
Disable IPv6 on R1
Enable 6to4 Tunneling on router 2

netsh interface ipv6 set interface "6to4 Tunneling Pseudo-Interface" forwarding=enabled
Advertise addresses for auto configuration

netsh interface ipv6 add route 2002: WWXX : YYZZ : Subnet_ID ::/64 Interface_Name_Or_Index
publish=yes
Add default route

netsh interface ipv6 add route 2002: WWXX : YYZZ ::/64 Interface_Name_Or_Index publish=yes
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk
Teredo (II)
Dual Stack
IPv4
Only
H1
IPv4 Only
R1
Private IPv4
Network
T
IPv4 Internet
R2
Private IPv4
Network
H
2
DNS
1.
2.
3.
Dual Stack
Dual Stack
Ask for prefix and create a NAT entry
Send UDP messages to Teredo Client without involving Teredo
Server / Relay
Periodic Bubble packets to refresh the entry
CoReNeT - Center of Research in Networks & Telecom
http://www.corenet.org.pk