IPv6 Deployment on An Advanced Experimental Network in Taiwan

1
IPv6 Deployment on An Advanced Experimental
Network in Taiwan
Associate Research Scientist Quincy
Wu (solomon_at_nchc.gov.tw) Deputy Director Eugene
J. Yeh (c00jsy00_at_nchc.gov.tw) National Center
for High-Performance Computing
2
Contents

• National Telecommunication Project National
  Broadband Experimental Network
• Main Features of IPv6
• Current Applications Transition Mechanism
• Deployment in Taiwan
• Future Work

3
National Telecom. Program

• Initiated by National Science Council
• Covering 2 major research areas
• Broadband Internet
• Wireless Communications
• NBEN (National Broadband Experimental Network)
  as testbed for multimedia broadband applications
  and various advanced communications protocols.
• Project Implementation May 1998- 2003
• Budget(1998-2000) 5,546 million NT
• Consolidate the RD efforts of CHT, TL and III

4
NBEN Objectives

• To master key future technologies
• Next generation Internet protocols (IPv6, RSVP,
  Multicast, etc.)
• advanced switching and routing techniques
• To develop broadband access technologies
• Gigabit Ethernet, DWDM Wireless LAN
• Provide a dedicated backbone for advanced
  technology and next generation application
• Internet telephony, video-conferencing, web
  course, E-commerce, digital library, distance
  learning

5
NBEN Partners
NSC
Funding flow
Research Projects
NCHC
Service flow
Univ.
Fixed Network Carriers
ATM layer service
NTPO
GigaPops
TL
CHT
Research Institutes
IT Industry
6
NBEN Actions
7
SDH Backbone
NTU
TTI
TL
NMS
TL VPX
Taipei VPX
NCHC
Chung-li VPX
NCU
NMS
STM-4
NDHU
Hsinchu VPX
Hua-lian VPX
NTHU
NCTU
Taichung VPX
NCHU
Tainan VPX
CCU
NCKU
Kaohsiung VPX
NSYSU
8
GigaPop Configuration
WAN
LAN
Fore ASX-1000 ATM Switch
OC-3c
STM-1
OC-3c
Nortel/Bay 5000BH IP Router
100Base-T
Hauman Technologies Corps. (Fore Systems)
9
NBEN Establishment Project

• Investigator NCHC
• Period 8/1998 - 7/1999 (1st year)
• Budget NT12.7M (for equipments)
• Backbone supported by CHT free of charge for 3
  years
• Schedule
• 10/13/98 project approved (submitted 9/11)
• 11/11/98 proposal approved by NSC
• 03/01/99 equipment delivery and test
• 05/18/99 operation and application test
• 06/15/99 deployment accomplished and service
  started

10
Shared Platform for Video Conferencing

• Video Conference/IP(H.323)
• Deploy internet platform for video conferencing
  by multi-users multi-parties
• TANET2000 Video Conference(NTU?NCHC?NCTU?NTPO?NCHU
  ?NCKU?NSYSU)
• Feasibility study and planning for MegaConference
  environment
• NSYSU

11
Service-oriented Pilot Projects
12
Research Groups in 2001

• H.323 Video Conference Multipoint Control Unit
  (MCU)
• NSYSU, NCKU, NCTU, NTU, NCHC
• Quality of Service (QoS)
• NTU, CCU, NCU
• Network Management
• NCU, NCKU
• IPv6
• NDHU, NTHU, NCHC, CCU

13
IPv6 Design Goals

• Addressing and Routing
• Minimizing Administrative Workload
• Multi-media Support
• Security
• Mobility

14
IPv6 Milestone

• Internet Protocol Version 6 (IPv6) was
  recommended by the IPng Area Directors of the
  Internet Engineering Task Force at the Toronto
  IETF meeting on July 25, 1994 in RFC 1752.
• The core set of IPv6 protocols were made an IETF
  Draft Standard on August 10, 1998 in RFC 2460.

15
What happened to IPv5?

• Version 5 had been assigned to another protocol,
  the Streams Protocol, ST2. That experimental
  protocol does not really exist.
• The next number available for assignment was 6,
  hence the next generation is called IPv6.
• Now there is talk of developing the Internet in
  even-numbered increments IPv8.

16
Expanded Address Space

• IPv4 address 140.110.31.15
• 1000 1100 0110 1110 0001 1111 0000 1111
  (32bits)
• Maximum 232 4 Billion
• 60 of the IPv4 address space is allocated
• Overall Internet is still growing at 40 per year
  worldwide
• 320 million users in 2000, 550 million by 2005
• We shall run out of IP addresses in 2010!

17
Expanded Address Space (2)

• IP is everywhere
• IPv6 is specified to be a required, mandatory
  to implement network layer protocol by 3GPP
• UMTS Release 5 is Internet Mobility, 1/3 of 1B
  should get connected
• 1 Billion cars in 2010, 15 should get GPS and
  Yellow Page service
• Billion of new Internet appliances for Home users

18
IPv6 Address

• 128-bit long
• 2128 3.41038 ? 6651021 addresses per m2 of
  earth surface.
• Considering some inefficient usage (e.g. 911
  prefix in telephony), it is estimated to support
  81017 to 21033 addresses.
• 81017 ? 1,564 address per m2.

19
Text Representation of Addresses

• Colon-Hex 3ffe3600200080024854fffe5c8868
• Compressed Format
• 3ffe0b000c1800010000000000000010
• becomes
• 3ffeb00c18110
• IPv4-compatible
• 000000140.110.31.15
• or 140.110.31.15

20
Multicast

• Modern internetworks need to transmit streams of
  video, audio, news, financial, or other timely
  data to groups of functionally related but
  dispersed endstations.
• This is best achieved by network layer multicast.
• Typically, a server sends out a single stream of
  multimedia or time-sensitive data to be received
  by subscribers. A multicast-capable network
  routes the server's packets to each subscriber in
  the multicast group, replicating only as needed.

21
Unicast
22
Multicast
23
Multicast Support

• Multicast is optional for IPv4. Not all routers
  support multicast. For example, TANet does not
  enable multicast feature on each router.
• All IPv6 hosts and routers are required to
  support multicast.
• There are no broadcast addresses in IPv6, their
  function being superseded by multicast addresses.
• Link-local
• Site-local
• Global scope

24
Header Format Simplification

• Address space quadrupled to 16 bytes
• Fixed length
• Concatenated Extension Headers
• No checksum
• (Done by Link Layer)
• No hop-by-hop segmentation
• (Path MTU discovery)
• Flow label/Class
• (Integrated QoS support)

25
IPv4 Header20 OctetsOptions 13 fields,
include 3 flag bits
0 bits
31
4
8
24
16
Ver
IHL
Total Length
Service Type
Identifier
Flags
Fragment Offset
Time to Live
Header Checksum
Protocol
32 bit Source Address
32 bit Destination Address
Options and Padding
26
IPv6 Header40 Octets, 8 fields
0
31
4
12
24
16
Version
Priority
Flow Label
Payload Length
Next Header
Hop Limit
128 bit Source Address
128 bit Destination Address
27
Protocol and Header Types
28
IPv6 Extension Headers

• IP options have been moved to a set of optional
  Extension Headers
• Extension Headers are chained together

IPv6 Header
TCP Header
Application Data
Next TCP
IPv6 Header
TCP Header
Routing Hdr
Application Data
Next Routing
Next TCP
IPv6 Header
TCP Header
Security Hdr
Fragment Hdr
Data Frag
Next Security
Next Frag
Next TCP
29
IPv6 enables efficient routing

• Total IPv6 header size is only twice as large.
• Most IPv6 extension headers are not examined or
  processed by intermediate nodes (in contrast with
  IPv4, where IP options typically cause a major
  performance loss for the packet at every
  intermediate router).
• Priority and flow label can be used to identify
  flows even when the payload is encrypted.

30
Application-level Security Solutions

• SSH for TELNET
• SSL for WWW
• PGP for email
• The contents may be encrypted, but the traffic
  flow can still be observed.
• IPv6 provides Network-level security.

31
Authentication Header

• Data origin authentication
• Useful in conquering DoS attack
• Connetionless integrity

Before applying AH
After applying AH
Origin IP hdr
TCP
Data
AH
Authenticated
32
Encapsulating Security Payload

• Transport Mode of IPv6 Encryption
• Tunnel Mode of IPv6 Encryption

Unencrypted
Encrypted
Unencrypted
Encrypted
IPv6 Hdr
ESP Hdr
Ext. Hdr
Payload
IPv6 Hdr
ESP Hdr
Ext. Hdr
33
Auto-configuration (Plug-n-Play)

• hosts can construct their own addresses
• subnet prefix learned from periodic multicast
  advertisements from neighboring router
• interface IDs generated locally, e. g., using MAC
  in addresses
• DHCP also available for those who want more
  control

34
Auto-Reconfiguration (Renumbering)

• If your organization change to a new ISP, the IP
  address prefix must be changed.
• New address prefix can be introduced, and old
  ones withdrawn
• Add a new Prefix to the Router
• Reduce the Lifetime of the old prefix
• As nodes depreciate the old prefix, the new
  Prefix will start to be used for new connections.

35
IPv6 Implementation - Host

• Apple
• Compaq
• FreeBSD
• Hitachi, Ltd.
• HP
• IBM

• Linux
• Microsoft
• Silicon Graphics
• Sun
• etc.

36
IPv6 Implementation - Router

• 3Com
• Cisco Systems
• Hitachi, Ltd.
• NTHU
• Nokia
• Nortel Networks
• Telebit Communications

37
IPv6 Deployment Policy in Korea

• Transition Roadmap by Government (23 Feb 2001)

Phase I (2001)
Phase II (20022005)
Phase III (20062010)
Phase IV (2011)
IPv4 Only
IPv4 Ocean
IPv4 Island
IPv6 Only
IPv4/IPv6 Translation Required
Experimental IPv6 Network
IPv6 Ocean
IPv6 Island
Complete native IPv6
Commercial IPv6 Service (wire/wireless)

• Validation
• Operation
• Promotion

• IMT2000 Service
• Translation Service

38
NTT-JP
39
CERNETv6
40
ESNET-V6

• ESnet is working to make this transition from
  IPv4 to IPv6 as seemless as possible for our
  customers. We are one of the few Internet Service
  Providers to be a participate in the 6Bone
  backbone. Our engineering staff is also testing
  many of the network services we are all familiar
  in an IPv6 environment.
• 6Tap
• 6ren
• Whois Server
• Tunnel Registration
• Address Delegation
• http//www.es.net/hypertext/welcome/pr/ipv6.html

41
IPv6 Transition Objective

• To allow IPv6 and IPv4 hosts to interoperate
• To allow IPv6 hosts and routers to be deployed in
  the Internet in a highly diffuse and incremental
  fashion, with few interdependencies
• The transition should be as easy as possible for
  end-users, system administrators, and network
  operators to understand and carry out
• The transition should be as transparent to
  general users as possible

42
IPv6 Transition Mechanisms

• A set of protocol mechanisms implemented in
  hosts and routers
• Some operational guidelines for addressing and
  deployment, designed to make transiting the
  Internet to IPv6 work with as little disruption
  as possible

43
IPv4 ?? IPv6 Transition Strategy

• Dual Stack
• Tunneling (RFC 2473)
• Translation (RFC 2766 NAT-PT)

44
Dual-Stack Approach

• When adding IPv6 to a system, do not delete IPv4
• this multi-protocol approach is familiar and
  well-understood (e.g., for AppleTalk, IPX, etc.)
• note in most cases, IPv6 will be bundled with
  new OS releases, not an extra-cost add-on
• Applications (or libraries) choose IP version to
  use
• when initiating, based on DNS response
• if (dest has AAAA or A6 record) use IPv6, else
  use IPv4
• when responding, based on version of initiating
  packet
• This allows indefinite co-existence of IPv4 and
  IPv6, and gradual, app-by-app upgrades to IPv6
  usage

45
IPv6 Tunneling
IPv6 Network
IPv6 Tunnel
Transport Layer Header
IPv6 Header
Data
IPv6 Tunnel
Service Provider IPv4 Backbone
Transport Layer Header
IPv6 Header
IPv4 Header
Data
IPv6 Tunnel
IPv6 Network
46
Translation

• May prefer to use IPv6-IPv4 protocol translation
  for
• New kinds of IPv6 devices (e.g., cell phones,
  cars, appliances) accessing IPv4 servers
  resources over the Internet
• Smoothly deploying IPv6 on a campus network,
  providing v4-v6 communications
• This is a simple extension to NAT techniques, to
  translate header format as well as addresses
• IPv6 nodes behind a translator get full IPv6
  functionality when talking to other IPv6 nodes
  located anywhere
• Methods used to improve NAT functionality (e.g.,
  ALGs) can be used equally to improve IPv6-IPv4
  functionality

47
IPv4-IPv6 Translation NAT-PT
NAT-PT
IPv4/v6 Network
IPv4 Network
V4 v6 host, router V4-only host,
router v4-only link v4 v6 link
48
NBEN IPv6 Project in 2000

• NTHU, NDHU, CCU deployed IPv6 applications
• DNS
• WWW
• Email (SMTP, POP3, IMAP)
• Files Transfer (FTP)
• Remote Access (TELNET, SSH)

49
WWW Server Browser
50
NBEN IPv6 Project in 2001

• Pure IPv6 environment on backbone (no tunneling)
• NTHU, NDHU, CCU ready before 9/30.
• All GigaPOPs ready before 12/31.
• Mobile IPv6
• VOD on IPv6, Layer 7 Switching Router for IPv6
• VoIPv6
• BGP4 peering with other IPv6 networks

51
Future Work

• Translator
• NAT-PT (Network Address Translator and Protocol
  Translator)
• Wireless Mobile Applications
• IPv6 Forum activity
• BGP4 peering to gain operational experience

52
Conclusion

• IPv6 integrates many built-in features which are
  optional and sometimes mutually-exclusive in
  IPv4.
• Transition mechanism is crucial to the success of
  IPv6.
• New proposal high-bandwidth application are two
  major topics for NBEN to support.
• NCHC NBEN will keep on facilitating networking
  research with advanced technology.