Read IPv6 Introduction IPv6 is an extension of IP with several advanced features: IPv6 Routing Prefix IPv4 addresses are 32 bits long, whereas IPV6 acldresses are 128 bits wm Larger address space IPv6 addresses are composed of the following elements (see Figure 8-1) Simpler header 1m The first three bits /3) of unicast always 001 © Autoconfiguration ‘m The next 13 bits (/16) are Top-Level Aggregator (TLA) the Extension headers upstream ISP. Flow labels 1m The next 24 bits (/40) are the next-level aggregator or regional ISP. 1 Mobility 1m Enterprises are assigned /48 and have 16 bits of subnetting, m “Baked in” security (OF these, many capabilities have been backported to IPv. The primary adoption of IPV6 will be driven by the need for more addresses. Given the growth in Intemet use and the emergence of large groups of Intemet users in devetoping countries, this i FIGURE 8-1 RFC 2374 IPv6 Address Structure65) CCONP BSC! Quick Reference Sheets IPv6 INTRODUCTION IPv6 Interface ID Simplified Presentation of IPv6 ‘The host portion ofthe adress is last 4 bits. Itcan beassioned mam- Address ally, using DHCP V6, or using stateless autoconfiguration. “There are two ways to shorten the representation of an IPv6 address. ‘An end-system uses stateless autoconfiguration by waiting for a router Take the example address to advertise the local prefix. I the end system has a 64-bit MAC, it -4001:0000:0001:0002:0000-0000:0000:ABCD. cconcatenates the prefix and its MAC to form an IPv6 address. Ifthe tend system has @ 48-bit MAC, it lips the global/local bit and inserts fm Leading zeros may be on OXFFEE into the middle of the MAC. The resulting 64-bit number is Ole Oa Ane: called the EUIG4. The prefix and EUI64 are concatenated to form the 1m Sequential zeros may be shown as double colons once per address. address. Figure 8-2 shows how a host uses its MAC address to create This makes the example 4001:0:1:2::ABCD. its IPV6 adds. ed. This makes the example FIGURE 8-2 EUI64IPv6 INTRODUCTION IPv6 Header ‘The IPV6 header is similar tothe IPvd header. The largest changes have to do with the larger addresses, aligning fields to 64-bit boundaries and ‘moving fragmentation (oan extension header. FIGURE 8-3 IPv6 Header t t Teen [Fa] Fox Pa tag [rests [rept (66) CCONP BSC! Quick Reference Sheets 1 Version—6, © Priority—Similar to DSCP in version 4, this cight-bit field is used to describe relative priority. 1 Flow—20-bit flow label allows tagging in a manner similar to MPLS, m Length —The length of the data in the packet. ‘Next Header—Indicates how the bits after the IP header should be interpreted. Could indicate TCP ‘or UDP, or it could show an extension header. Hop Limit—Similar to TTL, Source and Destination —1PV6 addresses. Zero or more extension headers could follow, including: | Hop-by-hop options—Options for intermediate devices, '& Destination options—Options for the end node. 1 Source rout route m .—Specifies *way stations” thatthe include, ‘m Fragmentation—Used to divide packets '& Authentication—Used to attest to source. Replaces the AH header from IPSec. 'm Encryption—Replaces the IPSec ESP header.IPv6 INTRODUCTION Advanced Features “Advanced” features are elements that are not available in IPv4 oF have significantly changed. For mpomtant to Know that the idea of broadcasts has been abandoned and that devices will typically fespond toa set of IPv6 addresses. ‘Specifying Destinations 1P¥6 does not support broadcasts, bat replaces broakasts with multi casts IP¥6 also uses Anycast, which involves using the same address on two devices. Anyeast can be used to implement redundancy and has been backported to IPv4 Specifying Sources ach IPV6 system must recognize the following addresses: 2 Unicast address 1 Link local address (FESOV10 1 EUIG4) Loopback (:1) i All-nodes multicast (FFOO%:1) Wm Site-local multicast (FEO2::2) 1 Solicited-nodes multicast (FFO2:1:FFOO104) (67) CCONP BSC! Quick Reference Sheets Additionally, some systems will also use the following addresses 1 IPv4 mapped address (O:FFFF | 32-bit, IPv4 address). ‘m Second unicast address shared with another system (anycast), {© Additional multicast groups. {© Routers must support subnet-outer anycast all zeros EUI64) 1m Routers must support local all-routers multicast (FPO1::2),link- local (FFO2:2), and site-local (FFOS:2), 1& Routers must support routing protocol multicast groups. Renumbering IPv6 supports easy network renumbering. A router adverisement” witha ew prefix and a token that instructs end systems to perform stateless autoconfiguration, Hess then recognize the command and update thir adresses xls out a “router Anyone who has had to renumber a large range of IPv4 addresses can testify to what a boon this feature will be! Mobility |Pv6 also includes beter support for roaming systems. Using IPv6 Mobility, roamers keep in touch with a “home agent.” which s thet home router. Taffie sent ro the “home address” is forwarded by the agent tothe current address. The roamer then sends back a bindingIPv6 INTRODUCTION "update to its corresponding agent so that future traffic is sent directly to the roaming address. IPv6 Routing IPV6 is not enabled by default on Cisco routers. To enable IPv6 routing, the command is Router(config)Mpv6 unteast-routing Alter IPV6 is enabled, addresses are assigned to interfaces much like version 4: Router (contig-*)#4p¥6 address pretix/pretix-longth “To make this less abstract, a more complete example that shows an 1PV6 implementation is shown in Example 8-1 EXAMPLE 8-1 Enabling IPv6 Routing and Assigning Addresses. Routersfeontigure terminal Routera(config) ipy6 undcast-routing Routera(contsa)esnterface Fastethernet0/® Routera(confag-if)deseraption Local LAN Routera(config-it)#ipve aderess 4001 Routera(contig-it)sinterface serial 1/0 RouterA(confag-if)deseription point-to-point Line to Internet Routera(contsa-it)#4pV6 address 4001 1168 4222/68 (68) CCONP BSC! Quick Reference Sheets Static Routing Static routing with IPv6 works exactly like it does with version 4. ‘Aside from understanding the address format, there are no differences Static routes are not currently on the BSCI test. The syntax for the [Pv6 Satie route command is shown below, and Example 8-2 is supplied so that the command may be viewed in context as it might be applied. Router(config)# ipv6 route ipy6-prefix/prefix-length {ipv6-addres: | interrace:type interface-nunber [ipv6-adéress}) [adninistrative- distance] [adeindetrative-qultscast-distance | unicast | multicast] (tag tag] EXAMPLE 8-2 Configuring Static IPv6 Routes Routera(contig)#4pv6 route 4001:0:1:2::/64 400: Routera(config)#ipve route ::/8 serialt/o RIPng for IPv6 RIPng is the [Pv6 of RIP and is defined in RFC 2080. Like RIPV2 for Pv, RIPag isa distance vector routing protocol that uses a hop count {or its metric and has a maximum hop count of 15. RIPng also uses periodic multicast updates—every 30 seconds—to advertise routes, The ‘multicast address is FFO29. RIPng is not on the BSCI exam at present, but itis presented here for completeness and to round out your appreciation for IPV6 routing and {o prepare the reader for trial implementations of IPv6,IPv6 INTRODUCTION TThere are two important differences between the old RIP and the next generation RIP. First, RIPng supports multiple concurrent processes, teach identified by a process number (this is similar to OSPF¥2). Second, RIPng is initialized in global configuration mode and then enabled on specific interfaces, Example 8-3 shows the syntax used to apply RIPag to a configuration Notice that the syntax is very similar to traditional RIP. EXAMPLE 8-3 RIPng outercontig)#4pve router rip process Router(config-rtr}#intertace type nunber Router(contig-1f)#4p¥6 Fp process enable Like RIP for IPv, troubleshoot RIPng by looking atthe routing table (show ipv6 route). by reviewing the routing protocols (show ipv6 protocols), and by watching routing updates propagated between outers (debug ipv6 rip) EIGRP EIGRP has been expanded to support IPv6, although you'll need to verify that a specific version of 1OS is capable of doing this. EIGRP for Pv is based on the IPv4 version. EIGRP is still an advanced distance vector routing protocol that uses a complex mettic. EIGRP still has a reliable update mechanism and uses DUAL to retain fallback paths. Like EIGRP in IP 4, it sends multicast hellos every five seconds (but 69) CCONP BSC! Quick Reference Sheets the multicast address is now FFO2::A), EIGRP is enabled as described in the following: Router (config) #ipv6 router eigrp as Router(contig-tr}#router-4d spva-addr Router(config-ctr)#intertace type number Router(contig-1f)¥spv6 esgrp as Hpve-aaare Like EIGRP for IPv4, troubleshoot by looking atthe routing table (show ipv6 route), by reviewing the routing protocols (show ipv6 protocols), and by monitoring neighbors (show ipv6 eigrp neighbors), Example 8-4 shows the configuration for IPv6 EIGRP. Notice that the routing protocol must be enabled under each interface. EXAMPLE 8-4 Configuring EIGRP for IPv6 Routerateontigure terminal Routera(config)s4pv6 unicast-routing Rovtera(con?ig)#4pv6 router eigrp 1 Routera(config-rtr) router-s8 10.255.255.1 RouterA(config) interface fastethernet0/® Routera(contig-if description Local LAX Routera(contig-i*)#4pve address 4001 Routera(config-if)#4pv6 eigrp 1 Routera(contig-it)Hinterface sersal 1/0 Routera(config-if description point-to-point Line to Internet Routera(contig-‘*)#4pv6 address 400170:198:"1/68 Routera(contig-if)H4pv6 eigep 1 MP-BGP for IPv6 Multiprotocol BGP (RFC 2858) involves two new extensions to BGP4) that allow BGP to carry reachability information for other protocols,such as IPv6, multicast IPv4, and MPLS. The extensions allow NEXT_HOP to carry IPv6 addresses and NLRI (network layer reacha- bility information) to an IPV6 pr Example 8-5 shows the BGP commands as they might be applied. EXAMPLE 8-5 Configuring BGP IPv6 Routes Routerateontigure terminal Routera(coatig) ape Routera(eonfag)srout Routera(contag-rtr)nesghb Routera(coatag-rtr) addr Routera(eontag-rtr af éneaghbor 400% Routera(contig-rtr-af)meework 400% OSPFv3 (OSPF43 is one of the first routing protocols available for IPv6 and. ‘Due to its open-standard heritage, itis widely supported in IPV6. (OSPF43 is the only routing protocol discussed on the BSCI test, so it is covered in more depth here. (OSPF 43, which supports IPv6, is documented in RFC 2740. Like (OSPF42, itis a link-state routing protocol that uses the Dijkstra algo. rithm to select paths. Routers are organized into areas, with all areas touching area 0. (OSPF speakers meet and greet their neighbors using Hellos, exchange LSAs (link-state advertisements) and DBDs (database descriptors) and run SPF against the accumulated link-state database. (70) CCONP BSC! Quick Reference Sheets ‘OSPF43 participants use the same packet types as OSPF¥2, form neighbors in the same way, flood and age LSAs identically, and support the same NBMA topologies and rare techniques such as NSSA and on- demand circuits. ‘OSPF43 differs from its predecessors principally in its new address Format, OSPFV3 advertises using multicast addresses FFO2::5 and FFFO2::6, but uses its link-local address as the source address ofits ‘advertisements. Authentication is no longer builtin, but relies on the underlying capabilities of IPv6. OSPFv3 LSAs OSPF\3 and OSPF? use a similar set of LSAs, but version 3 has a {ew changes from OSPFV2. Types 3 and 4 have been slightly renamed, but stil fulfill the same functionality as they did with OSPFV2. Type 8 is new and assists in discovering neighbors. Types 1 and 2 no longer pass routes, Instead they pass router IDs. Prefixes are associated as leaf ‘objects that hang off those nodes and are advertised using Type 9, which is also new, LSAs are sourced from the link-local address of an interface and destined for a multicast address, FFO2::5 is the “all OSPF routers” address and FEO2:¢6 is the “all OSPF DRs" address. “The OSPFV3 LSA types are collected together in Table 8-1. Notice that types one through seven exactly match their OSPF¥2 predecessor, while type 8 and type 9 are new to OSPF V3.IPv6 INTRODUCTION TABLE 8-1 OSPFLSA Types isa’ ‘Name ‘Description r Router LSA ‘Advertise RIDs within area 2 Nework LSA ‘Advertise RIDs within area from DR 3 nie Area Prefix LSA Advertise prefixes between areas 4 Inter Area Router LSA Advertise location of ASBR 5 AS-External LSA ‘Advertise redistributed routes 6 Group-Membership Multicast information 7 TypeT-LSA Pass extemal routes through an NSSA 5 Tink-LSA “Advertise link-local address to Deighbors 5 Tnur-ArcaPrefic LSA Advertise prefixes associated with RID Configuration (OSPF configuration is similar to RIPng and EIGRP. The routing process is created and routing properties are assigned to it. Interfaces are then associated with the process under interface configuration ‘mode. Assuming that 4pv6 undeast-routing and interface IP addresses are already in place, the commands to implement OSPF¥3 are shown in Example 8-6, im CNP SCI Quick Reference Sheets EXAMPLE 8-6 Configuring OSPF IPv6 Routes Router(config)#ipv6 router ospt process-id Router(contig-rtr}#router-4a 2p1¢-adress Router(config-rtr}¥area area range suntary-range/prefix-tongth Router(oontig-tr)#anterface type aunber Reuter(contip.if)#4pv6 espt process area arca Router(contig-if)#ipv6 ospt process priority priority Router(contig-if)#pv6 ospf process cost cost Cost may be overridden with the 4pv6 ospf cost command as shown in Example 8.7. ‘The summary-range command is shown to demonstrate summarization. EXAMPLE Configuring OSPF IPv6 Routes Routeratcontigure terminal Routera(config)#4pv6 unicast-routing RouterA(config)#ipve router ospt + Routera(config-rtr}jrouter 8 10.255.255.1 Routera(config-rtr)qarea 1 range 40042021: Routera(config-rer) interface Tastethernet0/® Routera(config-if)#desersption Local LAX Routera(confag-if)#4pve address 200% Rovteralconfag-if)#4pv6 ospf 1 area Routera(contig-if)H4pv6 ospf cost 10 Routera(config-if)#4pv8 ospt priority 20 Routeratcontig.‘#)#intorface sersal 1/0 Routera(contig-1f)idesersption mult RouterA(config-if)#4pv6 address 200% Routera(config-i¢)#4pv6 ospf 1 area 1 Routera(contig-if)#4pv6 ospf cost 10 RovterA(config-i#)#4pv6 ospf priority 20 2/68IPv6 INTRODUCTION Troubleshooting ‘Troubleshoot OSPF¥3 just like OSPFV2, Start by looking at show route to verify routes have been advertised. Assuming the route is in the routing table, test reachability using ping ipv6, You can also look at the ospf setup using show ipv6 ospt 1 interface, show sve Ospt, or show ipv6 ospt database Integrating IPv4 and IPv6 ‘There are several strategies for migrating from IPv+ to IPv6. Each of| these strategies should be considered when organizations decide 10 ‘make the move to IPV6 because cach has postive points to aiding & smooth migration, It should also be said that there does not have to be a global decision on strategy—your organization may choose to run dual-stack inthe U.S., g0 completely to IPv6 in Japan, and use tunnel {ng in Europe. The transition mechanisms include: wm Dual stack—Rut 1g 1PV6 and IPv4 concurrently fm IPv6 to [Pv tunneling (6-t0-4)—Routers that straddle the [Pvt ‘and 1PV6 worlds to encapsulate the IPv6 traffic inside IPv4 packets. 1m Intra-Site Automatic Tunnel Addressing Protocol (ISATAP)—This protocol is similar to 6-1o-4, but it teats the [Pv4 network as an NBMA network. 1m Teredo/Shipworm—Encapsulates IPv6 packets in IPv4/UDP segments (72) CCONP BSC! Quick Reference Sheets NAT-PT, ALG, and BIA/BIS Instead of replacing IPv4 there are several ways to coordinate the func tioning of IPv4 and v6 concurrently. NAT-protocol translation is an {example of this coexistence strategy. NAT-PT maps IPV6 addresses 10 IPvt addresses. If IPv6 is used on the inside of your network, a NAT. PT device will receive IPV6 trafic on its inside interface and replace the IPv6 header with an IPv4 header before sending it to an outside interface, Reply traffic will be able to follow the mapping backward to enable wo-way communication, NATPT is able to interpret application traffic and understand when IP information is included in the application data, Its also possible to connect IPv4 and IPv6 routing domains using. pplication-level gateways (ALG), proxies, or Bump-in-the-API (BIA) and Bump-in-the-Stack (BIS), which are NAT-PT implementations within a hostCCNP BSCI Quick Reference Sheets Brent Stewart Denise Donohue Pedy: Cis Ps Indnga IN 4210USA Warning and Disclaimer Trademark Acknowledgments Feedback Information ‘1 Cc en a ga ce ep ca ok of ee uly a ae ae od npn uy aig ses teh pore marti ttastssn Pena sch Corporate and Government Sales (Cio Pst es cle est i igi rt wet dred in guy oa vluali, | SESE ce ay