한국기술교육대학교 ubiquitous networks - 3 - ipv6- laboratory of intelligent networks...
TRANSCRIPT
한국기술교육대학교
Ubiquitous Networks - 3- IPv6-
Laboratory of Intelligent Networks (LINK)@KUThttp://link.kut.ac.kr
Youn-Hee Han
한국기술교육대학교2
한국기술교육대학교3
IPv6 (Internet Protocol version 6)
What is IPv6?
A next-generation version of IP (Internet Protocol), a basic Internet protocol, in which the number of IP addresses (numbers to identify terminals) is greatly increased.
The current version of IP is version 4.232 IP addresses (=approximately 4.3 billion)Number corresponding to Number corresponding to one bucket full of sand.one bucket full of sand.
The next-generation of IP is version 62128 IP addresses Number corresponding to Number corresponding to a mass of sand covering a mass of sand covering
the whole world.the whole world.
665,570,793,348,866,943,898,599 (or 6.65 x 1023) addresses for each square meter of the Earth's surface.
Who manage IPv6 address?ICANN/IANA (Internet Assigned Numbers Authority)
인터넷 할당 번호 관리기관
RIR (Regional Internet Registry) 대륙별 인터넷 레지스트리 APNIC (Asia Pacific Network Information Center)
아시아 · 태평양 지역 RIPE-NCC (Réseaux IP Européens Network Co-ordination Centre)
유럽 ARIN (American Registry for Internet Number)
북남미 외 기타 지역
국가별 NIC (Network Information Center) 한국은 KISA( 한국인터넷진흥원 ) 안에 KRNIC( 한국인터넷정보센터 )
에서 담당 https://ip.kisa.or.kr/main.html
한국기술교육대학교4
Recent Status of IPv4 Address Spacehttp://www.potaroo.net/tools/ipv4/index.html
https://ip.kisa.or.kr/main.html
2010.03
2011.03
한국기술교육대학교5
한국기술교육대학교6
Recent Status of IPv4 Address Space출처 - 2006 년 u- 인프라 통합 컨퍼런스
한국기술교육대학교7
Recent Status of IPv4 Address Space
한국기술교육대학교8
Recent Status of IPv4 Address Space
(/32)
한국기술교육대학교9
IPv4 Issues (1/3)
Demerits of Current Internet Addresses Address Shortages Limits Internet growth for existing users Hinders use of the Internet for new users Internet routing today is inefficient Forces users to use NAT
System Management Costs Managing addresses manually is costly and error-prone Networks Renumbering
Caused by address space shortage When choosing a more competitive ISP
Mobile IPv4 Complicated to manage
한국기술교육대학교10
IPv4 Issues (2/3)
Optional Security IPv4 was never designed to be secure
adapted for a public educational & research network Many solutions for IPv4 security have been defined
SSL, HTTPS, IPSECv4 No ONE standard
Security features are optional CANNOT count on their availability
Support for 21st century applications New applications are more demanding, they will require
Guaranteed on-time delivery Guaranteed availability of bandwidth Guaranteed security
Difficult to add the functions to the base IPv4 technology adding them is very high overhead
한국기술교육대학교11
IPv4 Issues (3/3)
Overcoming Insufficiency of IPv4 Address PPP address sharing CIDR (Classless Inter-domain Routing)
“ 망 주소 / 넷마스크 사이즈” 로 라우팅 테이블 엔트리 표현 E.g.] 128.156.20.0/22 호스트식별자가 0 인 인터넷망 주소
NAT (Network Address Translation)
한국기술교육대학교12
Use of NAT
Is NAT Good Solution?
한국기술교육대학교13
NAT example (1/2)
Internet
192.168.0.10
131.107.47.119 157.60.13.9
NAT
Host
Webserver
Destination Address: 157.60.13.9
Source Address: 192.168.0.10
Destination TCP Port: 80
Source TCP Port: 1025
Destination Address: 157.60.13.9
Source Address: 131.107.47.119
Destination TCP Port: 80
Source TCP Port: 5000
[192.168.0.10:TCP 1025] ↔ [131.107.47.119: TCP 5000]
Mapping
한국기술교육대학교14
NAT example (2/2)
Internet
192.168.0.10
131.107.47.119 157.60.13.9
NAT
Host
Webserver
Destination Address: 192.168.0.10
Source Address: 157.60.13.9
Destination TCP Port: 1025
Source TCP Port: 80
Destination Address: 131.107.47.119
Source Address: 157.60.13.9
Destination TCP Port: 5000
Source TCP Port: 80
[192.168.0.10:TCP 1025] ↔ [131.107.47.119: TCP 5000]
Mapping
한국기술교육대학교15
Is NAT Good Solution? IPSec packets
Address and port translation (NAT function) invalidates the packet’s integrity
Peer-to-peer(P2P) Communication NAT prohibits P2P communication, or makes it complicated
Battery Problem at Mobile Devices IPv4 mobile devices are usually behind IPv4 NATs Application that want to be reachable need to send periodic
Keep-Alives to keep NAT state active Current NATs requires Keep-Alive from 40 sec. to 5 minutes It reduces battery life of mobile devices
Is NAT Good Solution? IPSec packets
Address and port translation (NAT function) invalidates the packet’s integrity
Peer-to-peer(P2P) Communication NAT prohibits P2P communication, or makes it
complicated
한국기술교육대학교16
한국기술교육대학교17
Is NAT Good Solution?
Carrier-Grade NAT (CGN)What is CGN?
AccessConcentrator
Internet
Global v4 address
CPEWith NAT
Global v4 address
End Host
Private v4 address
FTTHADSL
AccessConcentrator
With NAT
Internet
Global v4 address
CPEWith NAT
Private IPv4 address
End Host
Private v4 address
Source: 72th IETF (July 2008)
한국기술교육대학교18
CGN’s LimitationCGN looks v6 is not needed?
No. CGN has serious restrictions. IPv6 is needed !
Each customer can have only some “limited” numbers of sessions simultaneously.
“port number” is just 2bytes which means 64K For example, if 2000 customer shares same Global IPv4 address
(please note that this is just for example), only 25 or 30 so sessions can be used by each customer at the worst case.
Which means that:
한국기술교육대학교19
CGN’s Limitation - Web 2.0 and IPv6Max 30 Connections Max 20 Connections
Max 15 Connections Max 10 Connections
Source: 72th IETF (July 2008)한국기술교육대학교20
“Ajax” web application
Web 2.0 Application’s Operation
Browser
UI:
server-side
server processing
Ajax:
time
UI
Other data (e.g. images)
HTML / CSSdata
XMLdata JavaScript
Code –the AjaxEngine
XMLHttpRequest()
HTM
L re
nd
eri
ng
en
gin
e
JavaScript Engine
data stores
backend etc.
web
server
browser server-side systemsrequest
html + css+ xml
data mgmt
Desktop UI“session” management
concurrent sessions
한국기술교육대학교21
Web 2.0 and IPv6
Source: 72th IETF (July 2008)
Examples of # of concurrent sessions of web 2.0 sites
AJAX applications of Web 2.0 break behind NAT Too many connections exhaust public IP port space
Webpage # of sessionsNo operation 5 ~ 10
Yahoo top page 10 ~ 20Google image search 30 ~ 60
Nico Nico Douga 50 ~ 80OCN photo friend 170 ~ 200+
iTunes 230 ~ 270iGoogle 80 ~ 100Rakuten 50 ~ 60Amazon 90
HMV 100YouTube 90
한국기술교육대학교22
한국기술교육대학교23
What is IPv6 Application? (1)
The world of IPv6
DRINKDRINK
Mobile telephone
Image Server
Music
Data car
Map information
Vending machines
Data-compatible home appliances
Broadcasting
Settlement
\ \
\\
IPvIPv 66
한국기술교육대학교24
What is IPv6 Application? (2)
Internet
Internet
NAT
Client
Server
ClientNAT×
IPv6: Keep unique identification Expand networking area from Server-client to peer-to-peer communication
Server-clientCommunication
Introduce IPv6 Peer to Peer
communication
New Application emergesVoIP 、 TV conference, chat,
multiplayer game over Internet,etc.
Clinet
Server
Client
IPv6 applied
Local net
Local net
Local net
Local net
한국기술교육대학교25
IPv6 Devices (1)
for example….. The Sony IP digital camera & Camcorder
IPv6 digital camera system, IPv6 TV system, Home gateway
파나소닉의 IPv6 네트워크 카메라 모델
한국기술교육대학교26
IPv6 Devices (2)
IPv6 Microwave Oven
IPv6 Refrigerator
한국기술교육대학교27
IPv6 for the Ubiquitous Internet
Connect Everything to the Internet Simply (Plug & Play) and Safety
Enjoy Internet Everywhere & Anytime
Play, Learn, and Live on the Internet for Everyone Peer to Peer (P2P) Global Reachability Home Information System
We need One Internet Global Communications enhances business, trade, research
한국기술교육대학교28
Next generation network (society) by IPv6
IPv6 Internetmobile phone
( IMT-2000 )
Car ( ITS )
PDA
Servers PCs
Light
Air conditioner
★Always on Internet nearly infinite address (identification)★★Security (privacy) 1 to N, N to M (broadcast application★ )
Contents distribution( Cinema, Music, etc. )
MobileComputing
HomeComputing
Remote operation, monitoring( Freight management,
Facility management, etc. )
NetworkComputing
Pet Animal
Home Network( BlueTooth, Zigbee )
Track
“Everything over IP”
Storages
InformationAppliance
한국기술교육대학교
New Header FormatNew Header Format
Minimize header overhead (streamline IPv6 header) Note: IPv6 header is not a superset of (not compatible with)
IPv4 header
한국기술교육대학교29
0 bits 31
Ver IHL Total Length
Identifier Flags Fragment Offset
32 bit Source Address
32 bit Destination Address
4 8 2416
Type of Service
Options and Padding
Time to Live Header ChecksumProtocol
Removed
20 Octets + options : 13 fields, including 3 flag bits20 Octets + options : 13 fields, including 3 flag bits
Changed
New Header FormatIPv4 Header Format
한국기술교육대학교30
New Header Format
IPv4 Header Format Internet Header Length (IHL)
Unit: 4 bytes, Min: 5 (54=20 bytes), Max: 15 (154=60 bytes) Type of Service (ToS)
RFC 2474 provides a definition of this field in terms of DS (Different Service)
Total Length Unit: 1 bytes, Min: 20 bytes, Max: 65,535(=2^16) bytes
Identifier If an IPv4 packet is fragmented, all of the fragments retain the
same Identification values, so the destination can group them for reassembly
Flags 0, 3: Reserved 1: Don’t fragment 2: More fragment
Time to Live (TTL) When TTL becomes 0, ICMPv4 Error message is sent to the source
한국기술교육대학교31
40 Octets, 8 fields40 Octets, 8 fields
0 31
VersionTraffic Class Flow Label
Payload Length Next Header Hop Limit
128 bit Source Address
128 bit Destination Address
4 12 2416
Changed
New Header Format
한국기술교육대학교32
IPv6 Header Format
IPv6 Header Format Traffic ClassTraffic Class
indicates IPv6 packet’s class or priorityindicates IPv6 packet’s class or priority Flow LabelFlow Label
Indicates that this packet belongs to a specific sequence of Indicates that this packet belongs to a specific sequence of packets between a source and a destinationpackets between a source and a destination
Payload LengthPayload Length Indicates the length of IPv6 payload Indicates the length of IPv6 payload unit: 1 byte, Max: 65,535(=2^16) bytesunit: 1 byte, Max: 65,535(=2^16) bytes For payload of which length greater than 65,535 bytes, this For payload of which length greater than 65,535 bytes, this
field is set to 0 and the Jumbo Payload option is used in Hop-field is set to 0 and the Jumbo Payload option is used in Hop-by-Hop option extension headerby-Hop option extension header
Next HeaderNext Header Indicates either the type of the first extension header or the Indicates either the type of the first extension header or the
upper-layer protocol (such as TCP, UDP, or ICMPv6).upper-layer protocol (such as TCP, UDP, or ICMPv6). Hop LimitHop Limit
The maximum number of links over which IPv6 packet can The maximum number of links over which IPv6 packet can travel travel
New Header Format
한국기술교육대학교33
34
New Header Format
한국기술교육대학교
IPv6 Extension Header
Routing Header Routing HeaderRouting Header
Used to specify a list of intermediate nodes for the packet Used to specify a list of intermediate nodes for the packet to travel to the final destinationto travel to the final destination
35 한국기술교육대학교
Fragment Header Fragment HeaderFragment Header
Used for IPv6 fragmentation and reassembly servicesUsed for IPv6 fragmentation and reassembly services Only source node generate the fragment headerOnly source node generate the fragment header If the packetIf the packet’’s size is greater than s size is greater than ‘‘Path MTUPath MTU’’, the fragment , the fragment
header is requiredheader is required
Unfragmentable part
Fragmentable part
Unfragmentable part
First fragmentFragment header
Unfragmentable part
Second fragmentFragment header
Unfragmentable part
Third fragment
Fragment header
Original IPv6 Packet
36 한국기술교육대학교
Internet Header Length (IHL) is removedInternet Header Length (IHL) is removed IPv6 Header is always a fixed length of 40 bytesIPv6 Header is always a fixed length of 40 bytes The size of header - The size of header -
IPv4: minimum 20 bytes IPv4: minimum 20 bytes IPv6: fixed 40 bytes IPv6: fixed 40 bytes
The number of fieldsThe number of fields IPv4: 12 IPv4: 12 IPv6: 8 IPv6: 8
Seldom-used fields (e.g., Identification, Flags, Fragment Seldom-used fields (e.g., Identification, Flags, Fragment Offset) are removedOffset) are removed Fragmentation information is contained in a Fragment Fragmentation information is contained in a Fragment
extension headerextension header
Header Checksum field is removedHeader Checksum field is removed Link-layer performs bit-level error detectionLink-layer performs bit-level error detection
Features of IPv6
한국기술교육대학교37
한국기술교육대학교38
Features of IPv6
Efficient and Hierarchical Addressing and Routing Infra.
International and planned address allocation Backbone routers will have much smaller routing table entries
Address Autoconfiguration Stateless and Stateful address configuration
Built-in Security Support of IPSec is an IPv6 protocol suite requirement
Better Support for QoS New QoS fields in the IPv6 header
IPv6 주소 유형 IPv6 주소의 유형
39 한국기술교육대학교
Why IPv6?
IPv6 의 장점
40 한국기술교육대학교
한국기술교육대학교41
Why IPv6 (Summary)?
IPv6 solves the address depletion problem
IPv6 solves the international address allocation problem
IPv6 restores end-to-end communication
IPv6 has more efficient forwarding
IPv6 has built-in security and mobility
IPv6 uses scoped addresses and address selection
IPv6 & Google
http://www.google.com/intl/en/ipv6/
[ 추천동영상 ]http://www.youtube.com/watch?v=o5RbyK0m5OY
한국기술교육대학교42
한국기술교육대학교43
IPv6 Reference
Homepage IETF Homepage : www.ietf.org IPv6 Forum : www.ipv6forum.com IPv6 Korea Forum : www.ipv6.or.kr
IPv6 RFC RFC2460 : Internet Protocol, Version 6 (IPv6) Specification RFC2461 : Neighbor Discovery for IPv6 RFC2462 : IPv6 Stateless Address Autoconfiguration RFC2463 : Internet Control Message Protocol (ICMPv6) for the IPv6
Specification RFC2464 : Transmission of IPv6 Packet over Ethernet Networks RFC2373 : IPv6 Addressing Architecture RFC2374 : An IPv6 Aggregatable Global Unicast Address Format RFC2529 : Transmission of IPv6 over IPv4 Domains without Explicit
Tunnels RFC1886 : DNS Extensions to support IPv6 RFC2471 : IPv6 Testing Address Allocation RFC2472 : IPv6 over PPP
추천 사이트 및 동영상http://www.vsix.net/
한국 인터넷 진흥원 IPv6 포털
http://www.v6pc.jp/en/index.phtml 일본에서 만든 IPv6 홍보 사이트
http://www.youtube.com/watch?v=2wa7y3W2DI0&feature=related
IPv6 Tutorial
http://www.youtube.com/watch?v=o5RbyK0m5OY Google IPv6 Conference (Jan. 2008)
한국기술교육대학교44