Summary of Certification Process(part 1)

IPv6 Client

IPv6 packets inside IPv4 packets

Test IPv6 Tunnel

Register a Domain Name

• Domain registrar– Registers whois info– Assigns authoritative

DNS server– Puts “glue records” at

the top-level domain (.info, .com, etc.) with A and AAAA records of your nameservers

Set DNS Records

Test DNS Resolution

IPv6 Web Server

IPv6 packets inside IPv4 packets

IIS ServerListening On [::]:80

HE.NETHTTP GET

IPv6 BackboneNative IPv6

IPv6-to-IPv4Gateway

Native IPv6

IPv6 Email Server

IPv6 packets inside IPv4 packets

James Server

Listening On [::]:25

HE.NETSMTP SEND

IPv6 BackboneNative IPv6

IPv6-to-IPv4Gateway

Native IPv6

Chapter 3

3.3 IPv6 Header

• Traffic Class: same as TOS in IPv4

• Flow Label: used for QoS

• Next Header: can start a chain of headers

3.4 IPv6 Extension Headers

• Extension headers are only examined by the destination node– Except for the rarely-used Hop-by-Hop

Options header

Most Important Extension Headers

• TCP, UDP, ICMP6– Specify the higher-layer protocol

• AH and ESP– Used for IPsec security

• Mobility– Used for Mobile IPv6

Routing Header Zero

• Deprecated, and recommended to be filtered out– http://www.ietf.org/rfc/rfc5095.txt

• A denial-of-service condition is possible by specifying a malicious path, such as a loop

ICMPv6

3.5.3 Neighbor Discovery

• Main Uses– Autoconfiguration of IPv6 Addresses– Duplicate Address Detection (DAD)– Address Resolution (replacing ARP)

Router Advertisement

• Router Solicitation (RS)– Sent by an interface when it is enabled and

needs an IP address

• Router Advertisement (RA)– Routers send these messages out, telling

clients the network prefix and other configuration information

Neighbor Solicitation

• Neighbor Solicitation (NS)– A node sends this message to verify that a

neighbor is still reachable, or for Duplicate Address Detection (DAD)

• Neighbor Advertisement (NA)– The response to a NS message

• “Solicited Node Multicast Address” (see p. 3-27)

3.5.4 Autoconfiguration

• Automatic addressing via two mechanisms– Stateless Autoconfiguration (SLAAC)

• No server needed• Routers advertise network portion• Hosts make up their own host portion

– Stateful Autoconfiguration (DHCPv6)• Requires a DHCP server

3.5.6 Path Maximum Transmission Unit (PMTU) Discovery

• IPv4 allows each router to fragment packets if needed to pass into a network with a small MTU

• In IPv6, only the sender can change the packet size– This makes the process much more efficient

Path Maximum Transmission Unit (PMTU) Discovery

• ICMPv6 “Packet Too Big” messages are sent to inform the source device to use smaller packets