Post on 05-Apr-2017
transcript
Govt. Engineering College, Bikaner
Submitted to:-Mrs. Anita Chandel Assistant professor Dept. of Information Technology
Submitted by:-Mohit Kumar SharmaInformation Technology13EEBIT0318th Sem, 4th Year
Information Technology Department
IPV6The Next Generation
Protocol
OUTLINES IntroductionWhat is IPv6IPv6 featuresIpv6 PacketIPv4 vs IPv6AddressingSecurityPros & Cons
Intorduction
What is IP?
The Internet Protocol (IP) is the method or protocol by which data is sent from one computer to another on the Internet. Each computer (known as a host) on the Internet has at least one IP address that uniquely identifies it from all other computers on the Internet.
The current version of the Internet Protocol IPv4 was first developed in the 1970s, and the main protocol standard RFC 791 that governs IPv4 functionality was published in 1981.
Internet Engineering Task Force (IETF) initiated as early as in 1994, the design and development of a suite of protocols and standards now known as Internet Protocol Version 6 (IPv6).
IPv6 was first formally described in Internet standard document published in December 1998.
History
Connectionless ProtocolBest effort deliveryUsed on packet-switched network
Addressing IPv4 uses 32-bit addresses which limits the address space to 4294967296 (232) addresses.IPv4 reserves special address blocks for private networks(~18 million addresses) and multicast addresses (~270 million addresses).
IPv4
IPv4 Address Classes
IPv4 Packet
SubnettingNetwork Address Translation (NAT)Classless Inter Domain Routing
(CIDR)
Techniques to reduce address shortage in IPv4
Three-level hierarchy: network, subnet, and host.
The extended-network-prefix is composed of the classful network-prefix and the subnet-number
The extended-network-prefix has traditionally been identified by the subnet mask
Subnetting
Network-Prefix Subnet-Number Host-Number
Subnetting Example
InternetG
H1 H2
H3 H4
Subnet mask 255.255.255.0
All trafficto 128.10.0.0
128.10.1.1 128.10.1.2
128.10.2.1 128.10.2.2
Sub-network 128.10.1.0
Sub-network 128.10.2.0
Net mask 255.255.0.0
Network Address Translation
Each organization- single IP address
Within organization – each host with IP unique to the orgn., from reserved set of IP addresses
NAT Example
Eliminates traditional classful IP routing.Supports the deployment of arbitrarily sized
networks Routing information is advertised with a bit
mask/prefix length specifies the number of leftmost contiguous bits in the network portion of each routing table entry
Example: 192.168.0.0/30
Classless Inter-Domain Routing
1. Internet Users or PC ~530 million users in 2002, ~945 million by 2004 (Source: Computer Industry Almanac) Emerging population/geopolitical and Address space
2. PDA, Pen-Tablet, Notepad,… ~20 million in 2004
3. Mobile phones Already 1 billion mobile phones delivered by the industry
4. Transportation 1 billion automobiles forecast for 2008 Internet access in Planes
5. Consumer devices Billions of Home and Industrial Appliances
Do We Really Need a Larger Address Space?
Internet Around us
What is IPv6?
Network layer protocol for packet switched internet works.
Conservative extension of IPv4.Virtually unlimited IP address possible. (Major
advantage over IPv4)
IPv6 has a larger 128-bit address space, providing for 340 undecillion addresses. (That is the number 340, followed by 36 zeroes.)
Originally called as IP Next Generation (IPng).
IPv6
Features
Larger address spaceStateless auto configuration of host.MulticastNetwork Layer Security. (encryption and authentication,
is an integral part of base protocol)MobilitySupports quality of service (QoS) parameters
for realtime audio and video.
Features of IPv6
IPv6 Packet
Two main parts: Header and Payload
Header is in first 40Bytes
The payload can be up to 64KB in size in standard mode, or larger with a "jumbo payload" option.
IPv6 Packet
IPv6 Packet
IPv4 vs IPv6
IPv4 & IPv6 Header Comparison
Version IHL Type of ServiceTotal
Identification Flags Fragment Offset
Time to Live Protocol Header Checksum
Source AddressDestination AddressOptions Padding
Version Traffic Class Flow Label
Payload Length Next Header Hop Limit
Source Address
Destination Address
IPv4 Header IPv6 Header
- field’s name kept from IPv4 to IPv6- fields not kept in IPv6- Name & position changed in IPv6- New field in IPv6
Difference
IPv4 IPv6
Source and destination addresses are 32 bits (4
bytes) in length.
Source and destination addresses are 128 bits (16
bytes) in length.
IPsec support is optional. IPsec support is required.
No identification of packet flow for QoS handling by
routers is present within the IPv4 header.
Packet flow identification for QoS handling by
routers is included in the IPv6 header using the
Flow Label field
Fragmentation is done by both routers and the
sending host.
Fragmentation is not done by routers, only by the
sending host.
Header includes a checksum. Header does not include a checksum.
Header includes options. All optional data is moved to IPv6 extension
headers.
Address Resolution Protocol (ARP) uses broadcast
ARP Request frames to resolve an IPv4 address to
a link layer address.
ARP Request frames are replaced with multicast
Neighbor Solicitation messages.
Addressing
Addresses are 128 bit long versus 32 bit in IPv4
Able to support 2128 (about 3.4×1038) addresses, for each of the roughly 6.5 billion people alive today.
In most of the cases NAT (Network address translation) is not required.
Makes large networks simpler, by avoiding the need for complex sub netting schemes
Whats New?
128-bit IPv6 Address
3FFE:085B:1F1F:0000:0000:0000:00A9:1234
8 groups of 16-bit hexadecimal numbers separated by “:”t hexadecimal numbers separated by “:”Leading zeros can be removed
3FFE:85B:1F1F::A9:1234
:: = all zeros in one or more group of 16-bit hexadecimal numbers
Address Allocation2001 0410
ISP prefix
Site prefix
Subnet prefix
/32 /48 /64
Registry
/23
Interface ID
The allocation process was recently updated by the registries:
IANA allocates from 2001::/16 to regional registriesEach regional registry allocation is a ::/23ISP allocations from the regional registry is a ::/36 (immediate allocation) or ::/32 (initial allocation) or shorter with justificationPolicy expectation that an ISP allocates a ::/48 prefix to each customer
Addresses have scopeLink LocalSite LocalGlobal
Addresses have lifetimeValid and Preferred lifetime
IPv6 - Addressing Model
Link-LocalSite-LocalGlobal
Unicast One address on a single interface Delivery to single interface
Multicast Address of a set of interfaces Delivery to all interfaces in the set
Anycast Address of a set of interfaces Delivery to a single interface in the set
No broadcast addresses
Types of IPv6 Addresses
Security
All implementations required to support authentication and encryption headers (“IPsec”)
Authentication separate from encryption for usein situations where encryption is prohibited or prohibitively expensive
Authentication header Guarantees authenticity and integrity of data
Encryption header Ensures confidentiality and privacy
Encryption modes: Transport mode Tunnel mode
IPv6 Security
Authentication Data Integrity Anti-Reply
It doesn’t provide any data confidentiality(Encryption).
Authentication Header
All functions of AH(Authentication, Data integrity, Anti-reply)
Also support data confidentiality(Encryption)
The benifits of using Encapsulating Security Payload (ESP) are listed below.
• Confidentiality of Datagrams through encryption.• Traffic flow confidentiality using security gateways.• Authentication of data origin using digital certificates. • Anti-replay services using sequence number
mechanism.
Encapsulating Security Payload (ESP)
Encapsulating Security Payload (ESP)
Encryption Mode- Transport mode
End-to-end data transmission security using Transport Mode
IPsec Transport mode protects upper-layer protocols (Ex: TCP or UDP) and Transport mode is used to secure end-to-end (device to device) communications.
Encryption Mode- Tunnel mode
IPSec tunnel mode is used to secure gateway-to-gateway traffic.
IPSec tunnel mode is used to secure network layer packet also.
Transport vs Tunnel Mode
Transport mode is a good option securing host-to-host communication and Tunnel mode is the option for Virtual Private Network (VPN).
Pros & Cons
Provides more address space ( which is being needed in larger buisness)
More powerful internet (128bit versus IPv4's current 32 bit)
Offers and overall larger scale internet-which again will be needed in the future
Address allocation is done by the device itself
Support for security using (IPsec) Internet Protocol Security
Pros
It will be much harder to remember IP addresses (compared to the addresses now)
Creating a smooth transition from IPv4 to IPv6
IPv6 is not available to machines that run IPv4
Any consumer costs in having to replace an IPv4 machine
Time to convert over to IPv6
Cons
Department of Telecommunications, of Government of India has run workshops on IPv6 on 13 February 2015 at Silvassa & on 11 February 2015, at DoT headquarters,New Delhi.They have also released roadmaps on IPv6 deployment.
ERNET - The Indian Education and Research Network, Department of Electronics & IT.
Reliance JIO has deployed and is offering IPv6 services in India.
Current User of IPv6 in India
Thank You!