Академический Документы
Профессиональный Документы
Культура Документы
BRKSPG-3300
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv4 Runout
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 Market Adoption: 6lab.cisco.com/stats
Progress has been encouraging: Google has recently reported that double digit of their traffic is now IPv6; Comcast and
AT&T are showing double digit percentages of traffic. T-Mobile and Verizon has made great strides in getting IPv6 in their
mobile networks, and the IPv6 is enabled on most of the current windows/MAC/Linux based operating systems
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Go IPv6!
Facebook News Feeds Load 20-40% Faster Over IPv6
Want to read your Facebook News Feed faster? Ask your
Internet Service Provider (ISP) if you can get IPv6!
Paul Saab, Facebook
https://www.youtube.com/watch?v=An7s25FSK0U&feature=youtu.be&t=19m
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 in the SP: Drivers
External Drivers
SP customers that need access to IPv6 resources
SP customers that need to interconnect their IPv6 sites
SP customers that need to interface with their own customers over IPv6
Internal Drivers
Handle some problems that are hard to fix with IPv4
Public IPv4 address exhaustion
Private IPv4 address exhaustion
Strategic Drivers
Long term expansion plans and service offering strategies
Preparing for new services and gaining competitive advantage
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
IPv6 Integration and Co-Existence
Many ways to deliver IPv6 services to End Users, Most important is End to End
IPv6 traffic forwarding as applications are located at the edge
SPs may have different deployment needs and mechanisms but basic steps are
common
IPv6 Addressing Scheme
Routing Protocol(s)
IPv6 Services - QoS, Multicast, DNS,
Security
Network Management
Resources are shared between the two protocols for both Control and
Forwarding Plane. Evaluate processor utilization and memory needs
Most vendors have good IPv6 HW forwarding performance
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Agenda
CE PE P P PE CE
IPv4
145.95.0.0 v4 v6 2001:CAFE::
6PE P P 6PE
Dual Stack IPv4-IPv6 Routers Dual Stack IPv4-IPv6 Routers
2001:F00D:: v6
P P
CE
6PE IPv4 6PE
MPLS v4
192.76.10.0 v4 192.254.10.0
CE CE
IPv6 global connectivity over and IPv4-MPLS core
Transitioning mechanism for providing unicast IP
PEs are updated to support dual stack/6PE
IPv6 reachability exchanged among 6PEs via iBGP (MBGP)
IPv6 packets transported from 6PE to 6PE inside MPLS
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
6PE Routing/Label Distribution
6PE-2 Sends MP-iBGP Advertisement to 6PE-1 Which Says:
2001:F00D:: Is Reachable
IGPv6 or MP-BGP
Advertising Via BGP Next Hop = 200.10.10.1 (6PE-2)
2001:F00D:: Bind BGP Label to 2001:F00D:: (*)
IPv6 Next Hop Is an IPv4 Mapped IPv6 Address Built from
2001:DB8:: 200.10.10.1
200.11.11.1
6PE-2
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
6PE Forwarding (6PE-1)
IPv6 Forwarding and Label Imposition:
6PE-1 receives an IPv6 packet
Lookup is done on IPv6 prefix
Result is:
Label binded by MP-BGP to 2001:F00D::
Label1 binded by LDP/IGPv4 to the IPv4
address of BGP next hop (6PE-2)
2001:DB8::
6PE-1 2001:F00D::
IPv6 Packet
to 2001:F00D::1
6PE-2
LDP/v4 MP-BGP
Label1 to IPv6
Label Packet
6PE-2
P1 P2
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
6PE Forwarding (P1)
IPv6-UN-aware MPLS Label Switching:
P1 receives an MPLS packet
Lookup is done on Label1
Result is Label2
2001:DB8::
6PE-1 2001:F00D::
6PE-2
P1 P2
LDP/v4
MP-BGP
Label2 to IPv6 Packet
6PE-2 Label
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
6PE Forwarding (P2)
IPv6-UN-aware MPLS Label Switching:
P2 receives an MPLS packet
Lookup is done on Label2
Result includes Pop label (PHP), if used
2001:DB8::
6PE-1 2001:F00D::
6PE-2
P1 P2 MP-BGP IPv6
Label Packet
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
6PE Forwarding (6PE-2)
MPLS label forwarding:
6PE-2 receives an MPLS packet
Lookup is done on label
Result is:
Pop label and do IPv6 lookup
on IPv6 destination
2001:DB8::
6PE-1 2001:F00D::
6PE-2
P1 P2
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
For Your
Reference
6PE-1 Configuration
ipv6 cef 2001:DB8::
! iBGP Session
mpls label protocol ldp
!
router bgp 100 6PE-2
no synchronization 6PE-1
no bgp default ipv4 unicast
neighbor 2001:DB8:1::1 remote-as 65014 2001:DB8:1::1 Is the Local CE
neighbor 200.10.10.1 remote-as 100 200.10.10.1 Is the Remote 6PE
neighbor 200.10.10.1 update-source Loopback0
!
address-family ipv6
neighbor 200.10.10.1 activate
neighbor 200.10.10.1 send-label Send Labels Along with
IPv6 Prefixes by Means of
neighbor 2001:DB8:1::1 activate
MP-BGP Note: Will Cause
redistribute connected Session to Flap
no synchronization
exit-address-family
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
For Your
6PE Show Output Reference
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6PE Summary
Core network (Ps) untouched
IPv6 traffic inherits MPLS benefits (fast re-route, TE, etc.)
Incremental deployment possible (i.e., only upgrade the
PE routers which have to provide IPv6 connectivity)
Each site can be v4-only, v4VPN-only, v4+v6, v4VPN+v6
P routers wont be able to send ICMPv6 messages (TTL expired, trace route)
Scalability issues arise as a separate RIB and FIB is required for each
connected customer
Good solution only for SPs with limited devices in PE role
Cisco 6PE Documentation/Presentations:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_data_sheet09186a008052edd3.html
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE over MPLS
v4 and v6 VPN iBGP (MBGP) Sessions v4 and v6 VPN
VPN BLUE
VPN BLUE
v4 and v6 VPN
VPN BLUE
P P v6 Only
6VPE 6VPE
VPN YELLOW v6 Only
VPN YELLOW
MPLS VPNs
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
Implementing 6VPE
Implementing 6VPE is no different than implementing VPNv4 in the network
Define VRFs if not already done for IPv4
Associate interfaces to VRFs
Add VPNv6 address family under MP-BGP
Send extended communities for the prefixes under the new address family
Consider redundancy and downtime while migrating from 6PE to 6VPE
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Example Design
Addressing/Routing
10.1.1.0/24 10.1.2.0/24
Enterprise 2001:DB8:BEEF:1::/64 2001:DB8:BEEF:2::/64 Enterprise
IGP IGP
MP-iBGP Session
Lo0- 192.168.2.1
CE1-BLUE
PE2
MP-eBGP P1 P2
MP-eBGP
172.16.1.1 172.16.3.2
172.16.1.2 192.168.1.1-192.168.1.2 192.168.1.5 - 192.168.1.6 192.168.1.9 - 192.168.1.10 172.16.3.1
IPv4 IPv4 IPv4 IPv4 IPv4
2001:DB8:CAFE:1::1 2001:DB8:CAFE:3::2
1::2 3::1
IPv6 IPv6 26
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Configuration Example For Your
Reference
CE1-BLUE to PE1 router bgp 500
10.1.1.0/24 bgp log-neighbor-changes
Enterprise 2001:DB8:BEEF:1::/64 no bgp default ipv4 unicast
IGP neighbor 2001:DB8:CAFE:1::2 remote-as
100
neighbor 172.16.1.2 remote-as 100
!
address-family ipv4
redistribute connected
CE1-BLUE PE1 redistribute eigrp 100
neighbor 172.16.1.2 activate
ipv6 unicast-routing no auto-summary
ipv6 cef no synchronization
! exit-address-family
interface Ethernet0/0
!
description to PE1
address-family ipv6
ip address 172.16.1.1 255.255.255.0
neighbor 2001:DB8:CAFE:1::2 activate
ipv6 address 2001:DB8:CAFE:1::1/64
! redistribute connected
interface Ethernet1/0 redistribute rip BLUE
description to BLUE LAN no synchronization
ip address 10.1.1.1 255.255.255.0 exit-address-family
ipv6 address 2001:DB8:BEEF:1::1/64 !
ipv6 rip BLUE enable ipv6 router rip BLUE
redistribute bgp 500
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Configuration Example For Your
Reference
PE1 Connections
ipv6 unicast-routing
ipv6 cef
mpls ldp router-id Loopback0
!
CE1-BLUE interface Loopback0
ip address 192.168.2.1 255.255.255.255
PE1 !
interface Ethernet0/0
description to CE1-BLUE
vrf forwarding BLUE
ip address 172.16.1.2 255.255.255.0
P1 ipv6 address 2001:DB8:CAFE:1::2/64
Standard MPLS configuration !
between PE-P interface Ethernet2/0
description to P1
Running IGP in the cloud (OSPF) ip address 192.168.1.1 255.255.255.252
mpls ip
!
router ospf 1
log-adjacency-changes
redistribute connected subnets
passive-interface Loopback0
network 192.168.1.0 0.0.0.255 area 0
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Configuration Example For Your
PE1 VRF Definitions Reference
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Configuration Example For Your
PE1 BGP Setup Reference
VRF BLUE
address-family vpnv6
neighbor 192.168.5.1 activate
MP-iBGP neighbor 192.168.5.1 send-community extended
CE1-BLUE Session
172.16.1.1 exit-address-family
!
CAFE:1::1 PE1 address-family ipv4 vrf BLUE
PE2
redistribute connected
MP-eBGP 192.168.5.1 neighbor 172.16.1.1 remote-as 500
router bgp 100 neighbor 172.16.1.1 activate
bgp log-neighbor-changes no auto-summary
neighbor 192.168.5.1 remote-as 100 no synchronization
neighbor 192.168.5.1 update-source exit-address-family
Loopback0 !
! address-family ipv6 vrf BLUE
address-family ipv4 neighbor 2001:DB8:CAFE:1::1 remote-as 500
neighbor 192.168.5.1 activate neighbor 2001:DB8:CAFE:1::1 activate
no auto-summary redistribute connected
no synchronization no synchronization
exit-address-family exit-address-family
!
address-family vpnv4
neighbor 192.168.5.1 activate
neighbor 192.168.5.1 send-community
extended
exit-address-family
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Configuration Example For Your
P Connections Reference
P1 P2
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 Routing Tables CE1-CE2 For Your
Reference
Default Table Default Table
Routing Routing BEEF:2::/64
BEEF:1::/64
9999::/64 Table BLUE Table BLUE 8888::/64
VRF BLUE VRF BLUE
PE1 BGP Table PE2
CE1-BLUE CE2-BLUE
MP-iBGP Tunnel
32
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 Routing Tables PE1-PE2 For Your
Default Table Routing Routing Default Table Reference
BEEF:1::/64 BEEF:2::/64
Table BLUE Table BLUE 8888::/64
9999::/64
VRF BLUE PE1 PE2 VRF BLUE
BGP Table
CE1-BLUE CE2-BLUE
MP-iBGP Tunnel
pe1#show ipv6 route vrf BLUE pe2#show ipv6 route vrf BLUE
B 2001:DB8:BEEF:1::/64 [20/0] B 2001:DB8:BEEF:1::/64 [200/0]
via FE80::A8BB:CCFF:FE01:F400, Ethernet0/0 via 192.168.2.1%Default-IP-Routing-Table,
B 2001:DB8:BEEF:2::/64 [200/0] indirectly connected
via 192.168.5.1%Default-IP-Routing-Table, B 2001:DB8:BEEF:2::/64 [20/0]
indirectly connected via FE80::A8BB:CCFF:FE01:FA00, Ethernet1/0
C 2001:DB8:CAFE:1::/64 [0/0] B 2001:DB8:CAFE:1::/64 [200/0]
via Ethernet0/0, directly connected via 192.168.2.1%Default-IP-Routing-Table,
L 2001:DB8:CAFE:1::2/128 [0/0] indirectly connected
via Ethernet0/0, receive C 2001:DB8:CAFE:3::/64 [0/0]
B 2001:DB8:CAFE:3::/64 [200/0] via Ethernet1/0, directly connected
via 192.168.5.1%Default-IP-Routing-Table, L 2001:DB8:CAFE:3::2/128 [0/0]
indirectly connected via Ethernet1/0, receive
B 8888::/64 [200/2] B 8888::/64 [20/2]
via 192.168.5.1%Default-IP-Routing-Table, via FE80::A8BB:CCFF:FE01:FA00, Ethernet1/0
indirectly connected B 9999::/64 [200/2]
B 9999::/64 [20/2] via 192.168.2.1%Default-IP-Routing-Table,
via FE80::A8BB:CCFF:FE01:F400, Ethernet0/0 indirectly connected
L FF00::/8 [0/0] L FF00::/8 [0/0]
via Null0, receive via Null0, receive 33
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 Routing Tables PE1 BGP Next-Hop For Your
Reference
Default Table Default Table
BEEF:1::/64 Routing Routing BEEF:2::/64
9999::/64 Table BLUE Table BLUE 8888::/64
VRF BLUE VRF BLUE
PE1 BGP Table PE2
CE1-BLUE CE2-BLUE
MP-iBGP Tunnel
IPv4-Mapped
IPv6 Address
pe1#show bgp vpnv6 unicast all #OUTPUT SHORTENED FOR CLARITY (IPv4-Based
Network Next Hop Metric LocPrf Weight Path LSP Setup)
Route Distinguisher: 200:1 (default for vrf BLUE)
*> 2001:DB8:BEEF:1::/64 2001:DB8:CAFE:1::1
0 0 500 ?
*>i2001:DB8:BEEF:2::/64 ::FFFF:192.168.5.1
0 100 0 506 ?
*>i2001:DB8:CAFE:3::/64 ::FFFF:192.168.5.1
0 100 0 ?
*>i8888::/64 ::FFFF:192.168.5.1
2 100 0 506 ?
*> 9999::/64 2001:DB8:CAFE:1::1
2 0 500 ?
34
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
MPLS Forwarding PE1 For Your
Reference
Default Table
BEEF:1::/64
9999::/64
VRF BLUE VRF BLUE
PE1 PE2
CE1-BLUE CE2-BLUE
MP-iBGP Tunnel
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
A Look at Forwarding For Your
Reference
2001:DB8:BEEF:1::1
Lo0-192.168.2.1
CE1-BLUE CE2-BLUE
Lo0-192.168.3.1 Lo0-192.168.4.1 Lo0-192.168.5.1
PE1
PE2
192.168.1.1-192.168.1.2
P1 P2
192.168.1.5-192.168.1.6 192.168.1.9-192.168.1.10
IPv4
IPv4 IPv4
pe1#show mpls forwarding
Local Outgoing Prefix Outgoing Next Hop
Label Label interface
25 No Label 2001:DB8:BEEF:1::/64 Et0/0 FE80::A8BB:CCFF:FE01:F400
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6VPE Summary
RFC4659: BGP-MPLS IP Virtual Private Network (VPN) Extension for IPv6 VPN
6VPE simply adds IPv6 support to current IPv4 MPLS VPN offering
For end-users: v6-VPN is same as v4-VPN services (QoS, hub and spoke,
internet access, etc.)
For operators:
Same configuration operation for v4 and v6 VPN
No upgrade of IPv4/MPLS core (IPv6 unaware)
Consider redundancy and downtime while migrating from 6PE to 6VPE
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
6PE/6VPE Route Reflector (RR) Considerations
MP-BGP Route Reflectors in
& out of Data path
RR v6 2003:1::
2001:DB8:: v6
RR
145.95.0.0 v4 v6 2001:CAFE::
6PE P P 6PE
Dual Stack IPv4-IPv6 Routers Dual Stack IPv4-IPv6 Routers
2001:F00D:: v6
P P
CE
6PE IPv4 6PE
MPLS v4
192.76.10.0 v4 192.254.10.0
CE iBGP (MBGP) Sessions CE
Similar to IPv4 BGP, Route reflectors and Confederation can help improve scalability with
6PE and 6VPE deployments
Dedicated Route Reflectors or data path RRs in BGP/6PE/6VPE deployment
Route reflector per address family or route reflector for multiple address families
6PE-RR must support the "IPv6+label functionality
6VPE-RR must support the "IPv6+label" and extended communities functionality 38
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Provider Assigned (PA) Addresses
SPs assigns address blocks to customers from its own address space received
from its upstream provider
Aggregation happens towards upstream provider
Minimizing the Internet routing table size
PA Cons:
- Customers are locked with the SPs
- Renumbering burden
- Multi-homing and Traffic Engineering problems
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 PA Allocation Hierarchy
IANA
2001::/3
42
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Provider Independent (PI) Addresses
RIRs directly assigns address space to end customers
Customers are no longer locked to a SP
No need for re-addressing
Multi homing is straightforward
PI Cons:
Larger Internet routing table due to lack of efficient aggregation
Memory and CPU needs on BGP speakers
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 PI Allocation Hierarchy
IANA
2001::/3
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Infrastructure Addressing (ULA vs. Global)
What type of addressing should I deploy internal to my network?
It depends
Unique Local Addresses (ULA) FC00::/7
Prefix FC00::/7 is reserved by IANA for ULA (bit 8 determines if locally or centrally
assigned, so ULA or ULA-Central)
Global-only 2000::/3
Recommended approach, but breaks topology hiding
ULA + Global
Allows for the best of both worlds BUT at a price much more address management
with DHCP, DNS, routing and security
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Link Level Prefix Length Considerations
64 bits < 64 bits > 64 bits
Address space
Recommended by Considered bad conservation
RFC3177 and practice
IAB/IESG Special cases:
64 bits offers more /126valid for p2p
Consistency makes space for hosts /127valid for p2p
management easy than the media can /128loopback
support efficiently
MUST for SLAAC Complicates management
(MSFT DHCPv6
also) Must avoid overlap with
specific addresses:
Significant address Router Anycast (RFC3513)
space loss (18.466 Embedded RP (RFC3956)
Quintillion) ISATAP addresses
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Prefix Sizing Considerations RFC5375
The IPv6 specifications prescribe a /64 prefix length for IPv6 unicast addresses.
Using a different prefix length other than a /64 subnet in IPv6 breaks the
operation of the following technologies and more:
- Neighbour Discovery (ND)
- Secure Neighbour Discovery (SEND) [RFC3971]
- Privacy-extensions [RFC4941]
- PIM-SM with Embedded-RP [RFC3956]
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Prefix Allocation Practices
Many SPs offer /48, /52, /56, /60 or /64 prefixes
Enterprise customers receives a /48
Large Enterprises receive one or more /48 prefixes
Small business customers receive /52 or /56
BB customers using DHCP-PD receives /56 or /60
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Prefix Delegation
DHCPv6
server
DHCPv6
relay agent
/64
SP edge router
/64
CPE
/64
Delegated Prefix:
2001:db8:1::/56 Service Provider
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Agenda
Broadband
Users
Internet TVs
Traditional
TVs
PC player
Gateway
Gaming/Media Player
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
SP IPv6 Address Assignment Case Study
SP Addressing Needs
Infrastructure addresses
Enterprise customers
Small Medium Business (SMB) customers
Broadband customers
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
SP IPv6 Address Assignment Case Study
SP receives 2001:DB8::/32 and 2001:DB9::/48 from RIR
SP carves /32 into 16 /36 addresses
2001:db8:0000::/36 2001:db8:1000::/36
2001:db8:2000::/36 2001:db8:3000::/36
2001:db8:4000::/36 2001:db8:5000::/36
2001:db8:6000::/36 2001:db8:7000::/36
2001:db8:8000::/36 2001:db8:9000::/36
2001:db8:A000::/36 2001:db8:B000::/36
2001:db8:C000::/36 2001:db8:D000::/36
2001:db8:E000::/36 2001:db8:F000::/36
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
SP IPv6 Address Assignment Case Study
SP utilizes the /48 for infrastructure needs (2001:DB9:abcd::/48 )
SP further carves the infrastructure /48 into 16 /52s and assigns one or multiple
/52s for each regional network depending on the need
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
SP IPv6 Address Assignment Case Study
SP Regional Network 2001:db9:abcd:2000::/52 (Infrastructure)
2001:db8:4000::/36 (Enterprise)
Receives a /52 for infrastructure 2001:db8:5000::/36 (Enterprise-Future)
addresses 2001:db8:6000::/36 (SMB/BB)
2001:db8:7000::/36 (SMB/BB- Future)
Receives a sequential chunk of
/36s for customer address space Regional
2001:db9:abcd:2000::/52
Utilises a /36 for Enterprise
customers (2^12 /48s) 2001:db8:4000::/48 assigned
2001:db8:4001::/48 reserved
Reserves a subsequent /36 for
Enterprise customers Enterprise
2001:db8:4000::/48
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
SP IPv6 Address Assignment Case Study
SMB/Broadband Customer
Broadband User Network
SP Reg2 uses a /36 for SMB and BB Internet TVs
Gateway PC player
2001:db8:6000:1000::/60
16 /64 addresses per BB user
2001:db8:6000:1004::/64
Gaming
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv6 Multi-Homing Solutions
Traditional Multi-homing (PI)
Advertiseaddress space to multiple transit providers
Longer prefixes to prefer a ISP and/or Load balancing
Large BGP routing table
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Network Based Multi-homing with LISP
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Network Based Multi-homing with LISPn
LISP mapping Cache LISP mapping Database
Locator
ISP1 ISP2
2001:db8:b::2
2001:db8:a::1 ITR 2001:db8:1::1 2001:db8:2::2 ETR
Internet
2001:db8:11::1 2001:db8:22::2
ISP 11 ISP 22
EID-prefix: 2001:db8:b::/48
Locator-set:
2001:db8:2::2, priority: 1, weight: 50 (D1)
2001:db8:22:2, priority: 1, weight: 50 (D2)
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
BRKSPG-2602
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IP address sharing: Stateless vs Stateful
Providing an IPv4 service is still expected, but
Find spare IPv4
Use IPv4 address sharing
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
What is Stateless? (in the context of this presentation)
Stateless = No dynamic state created/induced by traffic
Stateless does NOT mean configuration-less
Some examples of Stateless/State-full
Stateless Stateful
IP Router & IP Forwarding Firewall, NAPT44, SBC
MAP and 6rd Border Relay DS-Lite AFTR, Xlat464 PLAT
65
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Stateless vs. Stateful Operational benefits
Stateless is deemed
better for a lot of
operational reasons
better scaling, better
performance, flexible network
design and better cost-
effectiveness
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Public IPv4 Exhaustion with CGN Solution
Residential Access Aggregation Edge Core
IP/MPLS
NAT44
CGN
NAT44
NAT44
6rd 6rd BR
CE
RG
IPv6 LNS
IPv4 BNG
RG
IPv4oPPPoE or IPv4oE
IPv6oPPPoL2TPv2
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
IPv4 via IPv6 Using DS-Lite (w/NAT44)
Residential Access Aggregation Edge Core
IP/MPLS
B4
AFTR
RG
B4
RG
IPv4/v6 IPv6
Access, Aggregation, Edge and Core migrated to IPv6.
NMS/OSS and network services migrated to IPv6 as well (DNS, DHCP)
IPv4 Internet service still available and overlaid on top of IPv6-only network.
Two Components: B4 (Basic Bridging Broadband Element) and AFTR (Address Family Transition Router)
B4 typically sits in the RG
AFTR is located in the Core infrastructure
Assumption: IPv4 has been phased out, IPv6 only Access/aggregation network
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Connecting IPv6-Only with IPv4-Only: AFT64
Residential Access Aggregation Edge Core
IP/MPLS
DNS64
NAT64
Public IPv4
Internet
IPv4
DataCentre
AFT64 technology is only applicable in case where there are IPv6 only end-points that need to
talk to IPv4 only end-points (AFT64 for going from IPv6 to IPv4)
AFT64 = stateful v6 to v4 translation, ALG still required
Key components includes NAT64 and DNS64
Assumption: Network infrastructure and services have fully transitioned to IPv6 and IPv4 has
been phased out
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Mapping of Address/Port using Encapsulation (MAP-E)
Residential Access Aggregation Edge Core
IP/MPLS
MAP MAP BR
CPE
IPv4/IPv6
NAT44 Tunnel encap
IPv4/IPv6 encap
MAP
CPE
MAP BR
IPv4/v6 IPv6
Mapping algorithm for port indexing and IPv4<->IPv6 address
RFC7597
Stateless: better scalability/no redundancy issues
MAP CPE: IPv4 to IPv6 encap/decap to-and from-core RFC7598
MAP stateless Border Relay (MAP BR)
Backwards compatible with DS-Lite AFTR core
CPE uses combination of IPv6 prefix + DHCPv6 MAP Option to derive CPEs IPv4 address + port set id
CPE derives its TCP/UDP port range by decoding the port-set id using MAP algorithm
72
TR-242i2 IPv6 Transition Mechanisms for Broadband Networks
TR-069 extensions are for MAP CE functions
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Mapping of Address/Port using Translation (MAP-T)
Residential Access Aggregation Edge Core
IP/MPLS
MAP MAP BR
CPE
AFTR
NAT44/AFTR
MAP
CPE
MAP BR
NAT44/AFTR
IPv4/v6 IPv6
Mapping algorithm for port indexing and IPv4<->IPv6 address
RFC7599
Stateless: better scalability/no redundancy issues
MAP CPE: NAT46 to- and from-core RFC7598
MAP stateless Border Relay (MAP BR)
Backwards compatible with statefull NAT64
CPE uses combination of IPv6 prefix + DHCPv6 MAP Option to derive CPEs IPv4 address + port set id
CPE derives its TCP/UDP port range by decoding the port-set id using MAP algorithm
73
TR-242i2 IPv6 Transition Mechanisms for Broadband Networks
TR-069 extensions are for MAP CE functions
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
464XLAT = Stateless + State-full Translation
Subscriber Access Aggregation Edge Core
IP/MPLS
IPv6
IPv4-only Content Provider
App
NAT64
NAT46 PLAT
CLAT
NAT46
(CLAT)
IPv4-only
Content Provider
IPv6
15% of free applications break with IPv6 native or break with NAT64 - 464 translation helps the 15%
464 = Handset does IPv4 to IPv6 translation (NAT46), network does NAT64
CLAT: is Customer-side translator (XLAT). It algorithmically translates 1:1 private IPv4 addresses to global
IPv6 addresses, and vice versa
PLAT: is Provider-side translator (XLAT). It translates N:1 global IPv6 addresses to global IPv4 addresses,
and vice versa
Same architecture & compatible with MAP-T RFC6877
74
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Disclaimer: Cisco supports almost
all of the options : CGN44, 6rd
Solution Approaches Comparison BR, DS-Lite AFTR, MAP BR etc.
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agenda
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
For Your
Reference
More information / References
http://www.cisco.com/go/ipv6
http://www.cisco.com/en/US/prod/collateral/iosswrel/p
s6537/ps6553/white_paper_c11-558744-00.html
http://6lab.cisco.com
http://www.segment-routing.net/
http://labs.apnic.net/ipv4/report.html
http://www.cisco.com/c/dam/en/us/solutions/collateral/i
os-nx-os-software/enterprise-ipv6-
solution/idc_ipv6_economics.pdf
https://www.google.com/intl/en/ipv6/statistics.html
https://ipv6.he.net/statistics/
http://www.ripe.net/ripe/docs/current-ripe-documents/ripe-554
79
2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Q&A