Download presentation
Presentation is loading. Please wait.
1
我國6Bone規劃及建置經驗 中華電信北區分公司 互動式多媒體處 嚴劍琴 中華民國九十年三月三十日
2
Contents IPv6現況 IPv6 標準及建置現況 IPv6 位址分配現況 Worldwide Testbed -- 6Bone
總結
3
IPv6 標準及建置現況
4
IPv6 標準現況 IPv6 核心規格多已是IETF Draft Standards => 已經測試完整
IPv6 base spec, ICMPv6, Neighbor Discovery, PMTU Discovery, IPv6-over-Ethernet, IPv6-over-PPP,… 其他重要規格尚未標準化但已在進行中 在routing方面更精良的工作(除了OSPF及RIPv6之外)必須完成,如RSVP, multicast routing, Mobile IPv6, header compression, A6 DNS support, 及MPLS等標準仍需要投注心力去訂定 最新IETF標準現況:
5
IPv6 標準現況(續) 目前缺少的關鍵部分是建置計劃,包括與IPv4間之無縫之互作(seamless interworking)。這種無縫互作之重要是因為Internet目前已經大量建設,不易使廠商或業者投資在此昂貴的v6升級上 需有一套將IPv4轉成IPv6之有效率之移轉計劃 三個可能發生IPv6的領域是:VPNs, Satellite IP (DBS) 及行動電話之應用。 無線網路尋求IPv6以解決移動性IP之問題 期望將IPv6納入3G之標準中 可能將行動電話客戶使用IP服務而產生的區域性訊務,使用自行建置的IPv6 骨幹。此IPv6網路再與現存ISP業者的IPv4骨幹peering,以使行動電話客戶可至Internet取得一些Web Content及與其他Internet用戶互連。 UMTS R’00 已將IPv6包含至其無線行動之標準內
6
Recent IPv6 “Hot Topics” in the IETF
multihoming / address selection address allocation DNS discovery 3GPP usage of IPv6 anycast addressing scoped address architecture flow-label semantics API issues (flow label, traffic class, PMTU discovery, scoping,…) enhanced router-to-host info site renumbering procedures “privacy” addresses address propagation and AAA issues of different access scenarios (always-on, dial-up, mobile,…) and, of course, transition / co-existence / interoperability with IPv4
7
大部分之 IP stack 廠商均投入一些程度之IPv6研發 有些已提供商用
如 3Com, *BSD(KAME), Epilogue, Ericsson/Telebit, IBM, Hitachi, Nortel, Sun, Trumpet 有些已有beta releases e.g., Cisco, Compaq, HP, Linux community, Microsoft 有些已聽說要研製 e.g., Apple, Bull, Juniper, Mentat, Novell, SGI
8
IPv6 建置 實驗網路: the 6bone 支援學術及教育之網路: the 6ren 商用網路
for testing and debugging IPv6 protocols and operations (see 支援學術及教育之網路: the 6ren CAIRN, Canarie, CERNET, Chunahwa Telecom, Dante, ESnet, Internet 2, IPFNET, NTT, Renater, Singren, Sprint, SURFnet, vBNS, WIDE (see 商用網路 a few ISPs (IIJ, NTT, SURFnet, Trumpet,…) have announced commercial IPv6 service or service trials
9
IPv6 建置(續) IPv6 位址分配 6bone:測試位址
regional IP address registries (APNIC, ARIN, RIPE-NCC):商用位址 IPv6 推動 IPv6 Forum:
10
ISP IPv6 建置策略 使用何種硬體平台? What vendor?
Separate or same infrastructure as IPv4? 何種網路架構? Native? Tunneled? 如何培訓人員? On the job training formal training - not yet
11
ISP IPv6 建置問題 目前可使用之 IPv6 Routers limited choice performance
no line-rate forwarding no POS interface support software transition and advanced features scheduled way into 2001/2002 sometimes v6 is not in the same code release as other advanced features bug fixes are not necessarily on the fast track
12
ISP IPv6 建置問題 Transition and Co-existence of v4 and v6
Lots of defined mechanisms Which are easily provided by an ISP? NAT-PT 6to4 Tunnel broker Which mechanisms provide best performance for the customer?
13
Transition Mechanism (1/2)
Simple Internet Transition (SIT) Dual-stack strategies IPv6-over-IPv4 Tunneling Important features Incremental upgrade and deployment Minimal upgrade dependencies Easy Addressing Low start-up costs Tunneling techniques Configured Tunneling Tunnel end point address should be determined from configuration information on tunnel starting point For Host-to-Router and Router-to-Router tunnel
14
Transition Mechanism (2/2)
Automatic Tunneling IPv4-compatible IPv6 address is used as IPv6 destination address For Host-to-Host and Router-to-Host tunnel 0:0:0:0:0:0 IPv4 Address Dual-stack node Dual-stack node IPv4 Tunnel Dual-stack node IPv6 H Payload IPv6 H Payload IPv4 H IPv6 H Payload
15
IPv6 位址分配現況
16
全球 IPv6 位址分配政策 Bootstrap Phase Transitional and temporary Concludes
After first 100 sub-TLA IDs (/29s) have been allocated worldwide, or After a RIR has allocated 60 sub-TLA IDs in their region General Phase
17
IPv6 Allocations by RIRs
APNIC :0200::/23 21 allocations (/35) ARIN :0400::/23 10 allocations (/35) RIPE NCC 2001:0600::/23 22 allocations (/35) 6bone 3ffe::/16 76 allocations (59 / /28) The RIRs have been making IPv6 allocations since May 1999 (for around 20 months now), and they have made a total of 53 allocations in total. APNIC and RIPE NCC have made an average of around 1 subTLA allocation per month, while ARIN is making allocations at around half of that rate. Under the slow-start allocation policy, only the /35 prefix is allocated initially, but the entire /29 is reserved. So far, no further allocations have been made to holders of /35 allocations. By comparison, the 6BONE registry records 76 pTLA allocations in total (/24 and /28 prefixes).
18
APNIC Allocations by Country
The 21 allocations made in the APNIC region are illustrated here, and of course Japan accounts for the majority of them (11 out of 21 in total). 5 allocations have been made to Korea, 2 to Taiwan, and 1 each to Singapore, Australia and China. APNIC is unique as an RIR in having a number of National Internet Registries within its membership structure, and JPNIC is one of these NIRs. APNIC is cooperating closely with JPNIC on IPv6 allocations, and most of the allocations in Japan have been made via JPNIC. Organisations requiring IPv6 space in Japan should speak directly to JPNIC about their requirement. Total Allocations: 21
19
ARIN Allocations by Country
In the ARIN region, only 10 subTLA allocations have been made, and these are distributed as shown in this chart (with 8 allocations to the USA, and 1 each to Canada and Mexico). Total Allocations: 10
20
RIPE NCC Allocations by Country
RIPE NCC has made 22 allocations in total, which are widely distributed across Europe. 7 have been made in Germany, 2 each in France and the UK, and 1 each in a further 11 countries. Total Allocations: 22
21
6BONE Allocations by Country
For comparison, 6BONE pTLA allocations have been made in 30 different countries, and the USA accounts for 24 of these allocations. The next most “active” countries in terms of allocations are: the UK (5), Germany and Japan (4 each), and Switzerland, Denmark and the Netherlands (3 each). Total Allocations: 76
22
Worldwide Testbed - 6Bone
23
6Bone (1/2) A worldwide testbed : http://www.6bone.net/
Virtual network Layered on IPv4-based Internet to support routing of IPv6 packets To provide the early policies and procedures for IPv6 transport Operational from June/July on 1996 Will be replaced in a transparent way by Production ISP User network IPv6 Internet-wide transport Addressing Architecture global aggregatable unicast address TLA 0x1FFE is assigned to 6Bone by IANA for testing Will be replaced in a transparent way by Production ISP User network IPv6 Internet-wide transport 意指 6Bone 最終將成為 production ISP, 使用者網路將以 IPv6 Internet-wide環境來傳送資訊 Addressing Architecture Provider-Based Unicast -> global aggregatable unicast address TLA 0x1FFE is assigned to 6Bone by IANA for testing 6Bone 之 addressing architecture 已由 Provider-Based Unicast 提昇為 global aggregatable unicast address. IANA (Internet Assigned Numbers Authority) assign TLA 0x1FFE 予 6Bone 作為其 testing 之用.
24
6Bone (2/2) Three types of sites Backbone Site (pTLA sites)
With its own pTLA assignments To aggregate routing for other transit sites or leaf sites With BGP4+ peering with a couple of backbone sites Transit Site To aggregate routing for leaf sites with at least one BGP4+ peering with its backbone site Leaf Site With static route peering
25
6Bone Architecture Tunnel Backbone Site Backbone Site IPv6 island
Leaf Site IPv6 island Tunnel (BGP4+) Tunnel (BGP4+) IPv4 network IPv6 island Tunnel (Static) IPv6 island Backbone Site Transit Site
26
6Bone Test Address 3FFE:3600::/24 CHT-TL 128 13 8 24 16 64
TLA RES NLA SLA Interface ID x1ffe NLA NLA SLA Interface ID 13 8 24 16 64 3FFE:3600::/24 CHT-TL 以 CHT-TL為例: 001 0x1FFF NLA1 為 CHT-TL 所專用 (3ffe:3600::/24), NLA2 則分配給國內大學, SLA 以下由大學自己分配.
27
6REN (1/2) 6REN (IPv6 Research & Education Network) is established in October of 1998 Primary Goals To provide production quality IPv6 packet delivery services To develop operational procedures for IPv6 networks To promote the deployment of IPv6 networks To enable early IPv6-ready application testing and deployment A voluntary coordination without fee Participates must use production IPv6 addresses and provide production quality IPv6 service. The “6Tap” project sponsored by Canarie and ESnet To facilitate the easy interconnection of 6REN participants Over ATM interconnections
28
Wide area ATM links from StarTAP participants worldwide
6REN (2/2) native IPv6 BGP peering sessions Native IPv6 peers 6TAP router ATM switch for IPv6 @star tap Wide area ATM links from StarTAP participants worldwide Local OC3 link Native IPv6 peer 1. The Canadian advanced networking initiative (CANARIE) and the US Energy Sciences Network (ESnet) are jointly sponsoring the 6TAP. 2. ESnet is providing routing services and operational management of 6TAP. 3. CANARIE is providing route server and registry services. 4. ATM switch for IPv6 at StarTAP in Chicago provides full mesh PVC connection for 6REN peers. 5. A Cisco router connected to the StarTAP ATM switch will provide a common BGP4+ peering point and router forwarding service. ATM PVCs pre-configured
29
IPv6 Forum Established in April 1999 by Internet vendors and research and education networks IBM, Cisco, Compaq, HP, Sun, MCIWorldcom, Microsoft, UUNET, Telebit Communications, Thomson CSF, Case, Acer, NTT, Hitachi, French G6, 6REN, WIDE of Japan, ... To dramatically improve the market and user awareness of IPv6 by providing world-wide, equitable access to knowledge and technology to work closely with the Internet Engineering Task Force (IETF) The membership fee per organization is US$ 2500, per annum.
30
Production IPv6 Address (1/2)
FP TLA Res NLA SLA Interface ID 13 8 24 16 64 x0001 sub-TLA Res NLA SLA Interface ID 13 13 6 13 16 64 Assign sub-TLA to applicants Slow Start Mechanism are used To issue small address blocks until the provider can show an immediate requirement for larger blocks. The first allocation to a TLA registry will be a 2001::/35 block Right now, in Bootstrap Phase Bootstrap Phase: 意指 IPv6 目前在草創期, 要加入相關組織及獲取 IPv6 address 之門檻較低.
31
Production IPv6 Address (2/2)
Examples of assigned sub-TLAs APNIC ETRI-KRNIC-KR :230::/35 NTT-JP :218::/35 HINET-TW :238::/35 CONNECT-CC-AU :0210::/35 ARIN ESNET-V :0400::/35 ARIN :0400::/23 VBNS-IPV :0408::/35 CANET3-IPV :0410::/35 RIPE-NCC DE-SPACE :0608::/35 UK-BT :0618::/35 CH-SWITCH :0620::/35 AT-ACONET :0628::/35
32
國外IPv6發展現況
33
日本WIDE v6 Working Group WIDE (Widely Integrated Distributed Environment) 於1995開始致力於發展IPv6的環境,主要專注於IPv6技術的研究,至於IPv6產品的開發則由子計劃KAME 負責 其目前發展的產品包括了IPv6路由器與主機核心軟體、v6與v4轉換器、以及v6網域伺服器等 WIDE計劃已向APNIC取得2001:0200::/35的商用位址網段,並開始份配位址給日本的學術單位與研究機構 這是 sTLA address past assignment from WIDE sTLA 的描述, 包括 NLA1 及 NLA2 之 org. name, ipv6 address, connect-pop, link (tunnel, ATM, ether, T1 or serial) 以及 issue date.
34
韓國 成立測試平台(6Bone-KR) 建置6NGIX (IPv6 Next Generation Internet Exchange) 之IPv6商用網路,目前已有ETRI、KT、Dacom、Hitel及hanaro等五個單位申請獲得sTLA商用位址 KRv6計劃,致力於轉移機制及應用軟體之研發,同時提供測試平台並制定推廣策略。在漸進式的轉移機制中亦規劃了IPv6促進(promotion)策略及位址委發(address delegation)機制。 積極參與IPv6 Forum 之相關工作外,對應於IPv6 Forum, 韓國亦於2000年3月成立了Korean IPv6 Forum,以積極促進推展國內之IPv6相關工作。 這是韓國 ETRI (Electronics and Telecommunications Research Institute) 其底下 Advance Standards Research Team 有關 IPv6 方面的研究.
35
NTT-JP NTTv6Net (a research network owned by NTT PF Laboratories).
Here are the main Points of Presence connected via IPv6 native links: London, UK Dusseldorf, Germany New Jersey, USA (East Coast) Cupertino, USA (West Coast) Tokyo, Japan
36
NTT-JP NTT IPv6 network consists of NTTv6Net (a research network owned by NTT PF Laboratories) and NTT Europe's IPv6 commercial network. Both networks are connected seamlessly and will eventually cover all of the world's major continents. Objective: To establish IPv6 network management methodology and its technology Features: Having an international IPv6 native link between Tokyo and California Providing 6bone connectivity to other organizations It provides service: Official IPv6 address from the sTLA block of NTT Communications 6bone and IPv6 Internet connectivity DNS reverse zone delegation Other IPv6 public server services (planned)
37
IIJ–IPv6 Trial Service IIJ IPv6 trial service, which enables their customers to experience the Internet access on the next-generation Internet Protocol, IP version 6(IPv6). Customers wishing to use this service can freely construct their network, using the vast address space, /48.
38
IIJ–IPv6 Trial Service This is IIJ IPv6 backbone map.
NSPIXP: Network Service Provider Internet eXchange Project NSPIXP6: An IPv6 internet exchange point in Tokyo IIJ assigns IPv6 address space and provides with IPv6 connectivity, using IPv6-over-IPv4 tunnel, which uses IPv4 as underlying medium.
39
中國大陸 至於在中國大陸方面,其最大之教育研究網路CERNET亦建置如圖五之IPv6網路 設立測試平台進行IPv6研究發展
目前並已申請到sTLA商用位址。此外,與Nokia合作來建置全國性的IPv6網路並進行關鍵技術研究。
41
ESNET-V6 ESnet is working to make this transition from IPv4 to IPv6 as seemless as possible for our customers. We are one of the few Internet Service Providers to be a participate in the 6Bone backbone. Our engineering staff is also testing many of the network services we are all familiar in an IPv6 environment. 6Bone 6Tap 6ren Whois Server Tunnel Registration Address Delegation ESnet: The Energy Sciences Network
42
vBNS+ IPv6 Service Overview
Native (not tunneled) IPv6-over-ATM backbone since July 1998 Dedicated hardware (Cisco 4700s and a 7507 with OC3/ATM) for IPv6 routing. Full mesh of ATM PVCs among the IPv6 routers. Backbone provider (pTLA) for the global 6bone. IPv6-capable web server:
43
vBNS IPv6 Router Locations
44
CA*net3 IPv6 CAnet3 IPv6 backbone map. BACKBONE ADDRESS ASSIGNMENT
Allocated to: Prefix: Backbone links 2001:410:101::/48 ARDNOC 2001:410:102::/48 TYPICAL RAN ADDRESS ASSIGNMENT (ACORN-NS) Institution: Prefix: Dalhousie U 2001:410:201::/48 NRC/IMB 2001:410:202::/48 Acadia U 2001:410:203::/48 TARA 2001:410:204::/48
45
UK-BT NAT-PT Project BT Labs have developed an implementation of NAT-PT designed to run on a router running the FreeBSD operating system and using the KAME IPv6 stack. We are making this implementation available for download to promote its use as an IPv4/IPv6 interoperability mechanism.
46
UK-JANET The JANET Managed Bandwidth Service, initial trials are now taking place in the UK. Southampton has a 512Kbit MBS link to the European TF-TANT network. Southampton, UCL and Lancaster are embarking on a triangular IPv6 network over JANET, a project which should lead to IPv6 connectivity to Internet 2. Numerous router and workstation/OS vendors already support IPv6; these trials will report on interoperability issues and application developments. JANET is the network for the education and research community within the United Kingdom.
47
我國IPv6發展現況
48
中華電信 IPv6之發展現況 6-Bone Trial activities on CHT
As a leaf site since 1997/12 As a transit sit since 1998/11 As a backbone site since 1999/02 IPv6 address from APNIC (2000/02) inet6num: :238::/35 netname: HINET-TW Join National Telecommunication project Provide Broadband IP Network Join IPv6 testing
49
CHT-TL 6Bone 試用內容 Techniques and Protocols Trial
IPv6-over-IPv4 tunneling testing Stateless auto-configuration testing RIPng and BGP4+ testing Set up Related Services DSN server supporting AAA records WWW server ftp server telnet server
50
CHT-TL 6Bone 試用內容(Continued)
Performance and Traffic Monitoring Traffic monitoring over tunnels with INQMS (IP Network QoS Monitoring System) RTT (Round Trip Time) comparison between IPv4 and IPv6 traffic
51
CHT IPv6 測試平台 東華大學 中正理工學院 成功大學 TANET 中央大學 臺灣大學 HiNet Telebit Sprint
router IPv6-over-IPv4 tunnels 中正理工學院 成功大學 TANET 中央大學 HiNet 臺灣大學 INQMS server Telebit NUS-IRDU(SG) Sprint IPv4 Internet Cisco ETRI(KR) Digital-CA Viagenie NTT-ECL(JP)
52
CHT-TL 6Bone Tunnels - International Links
Telebit(Denmark) 3ffe:0100::/24 Viagenie(Canada) 3ffe:0b00::/24 Sprint(USA) 3ffe:2900::/24 ETRI (KR ) 3ffe:2e00::/ :230::/35 IIJ (JP) 3ffe:8020::/28 Cisco(USA) 3ffe:0c00::/24 NTT-ECL (JP) 3ffe:1800::/24 2001:218::/35 Digital-CA(USA) 3ffe:1200::/24 NUS-IRDU(SG) 3ffe:1600::/24 CHTTL-TW 3ffe:3600::/24 2001:238::/35 NTU NCU-1 NCU-2 CCIT NDHU CCU NCKU-1 NCKU-2
53
Performance Testing IPv6 RTT is greater than IPv4 RTT due to encapsulation overhead Round-Trip Time IPv6-over-IPv4 tunnels IPv4 Internet IPv6 LAN Telebit IPv6 router
54
IPv6 Traffic to Other Backbone Sites
BGP4+ KeepAlive/Update TCP port 179 ICMPv6 Echo request/reply Generated by ping application
55
CHT & NTT 在 6Bone之測試情形 Feb 2000: Tunnel building OK between CHT-HiNet and NTT on 6Bone Next step: Clear IPv6 link Field Trial Step 1: Performance (such as packet loss, packet delay, etc. on ftp or other applications) Testing: (1) via ipv4 tunnel (2) via clear ipv6 connection Step 2: Configuration (anycast, multicast, dual-stack, etc.) and Transition Testing Step 3: Application Test and Business Model Planning Step 4: Network Migration Plan and Testing from v4 to v6
56
TWNIC 在IPv6 之相關活動 在 TWNIC IP 委員會下成立一IPv6 工作小組
建立 IPv6 web site 及提供一個供公開討論 IPv6 相關議題之平台 期望結合國內 ISPs, 大學, 研究單位, 級產品廠商組成一個 IPv6 測試小組 幫助 ISPs 向APNIC 申請 IPv6 commercial addresses 計劃加入 IPv6 forum
57
IPv6 research in National Telecommunication Project
Joined Universities 國立清華大學 國立中正大學 國立東華大學 Establish IPv4 Tunnels on National Broadband Experience Network (NBEN) Establish an experimental native IPv6 network in campus Provide native IPv6 services
58
IPv6 Test Result in NBEN IPv6 Tunneling Test ping6 Test http6
Test Video program transmission Establish PC-based IPv6 platform Windows NT/2000 Linux FreeBSD Establish IPv6 WWW server Establish IPv6 WWW brower IE5.0(Windows NT/2000) Mozilla(Linux)
59
IPv6 Test Environment on NBEN
Linux Windows NT Video Server IPv6 Windows NT WWW Server GigaPoP Bay5000 Hub 3Com Router CCU IPv4 Network Fiber GigaPoP Bay5000 GigaPoP Bay5000 NTHU Tunneling Windows NT NDHU IPv6 Network IPv4 Network
60
總結
61
IPv6仍有很長的路要走 雖然IPv6已具備IPv4之所有功能,然而
功能執行上並非如此先進 (e.g., with respect to performance, multicast support, compactness, instrumentation, etc.) IPv6 網路建置才剛開始 將現有IPv4上之服務、應用, middleware, 及管理系統等轉移至IPv6上仍有一段距離 需要很多訓練工作 應用發展者, 網路管理者, 行銷,… 許多IPv6之功能仍需要較詳盡之規格定義, 開發及建置等工作
62
結論 IPv6 可徹底解決IP位址不足的問題,同時為下一代網際網路提供一較佳之使用平臺 IPv6目前已由測試階段進入初期商用建置階段
IANA開始接受IPv6商用申請 國內IPv6技術,主要仍在學術研究方面 TWNIC 正推動商用之IPv6 技術 藉由整合國內 ISPs 及相關懺業界之力量希望能建置一商用IPv6之試驗平台 引進更多之應用 WWW content multiplayer games cell phones, home devices, 等
63
結論(續) IPv6 描述了未來的願景… 新的設備,新的應用,新的使用者
重塑了新的 Internet model, 在效能 (performance), 穩定(robustness), 安全(security), 管理(manageability), 及啟發快速之創意性上 強化下一代IP應用:提供 multicast, mobility, plug-and-play, security, 及 QoS 然而這是我們預見的未來嗎… 必須投入更多能量:在設計、製作、建設、網路移轉及訓練等方面 然而唯一的方法仍是:繼續投注心力
64
有用之 IPv6 連結 http://www.6bone.net Testbed for deployment of IPv6
APNIC web site ARIN IPv6 registration information ARIN working group information related to IPv6 RIPE web site IETF standard status
Similar presentations