Module 5: Configuring

and Troubleshooting
IPv6 TCP/IP
Module Overview
• Overview of IPv6

• Coexistence with IPv6

• IPv6 Tunneling Technologies

• Transitioning from IPv4 to IPv6

• Troubleshooting IPv6
Lesson 1: Overview of IPv6
• Benefits of IPv6

• Differences between IPv4 and IPv6

• IPv6 Implementations Using Microsoft Technologies

• The IPv6 Address Space

• IPv6 Prefixes

• Unicast IPv6 Address Types

• IPv6 Addresses Assigned to Hosts and Routers

• Zone IDs

• Address Autoconfiguration for IPv6

• Demonstration: Configuring IPv6 Client Settings

Benefits of IPv6

Benefits of IPv6 include:

• Large address space

• Hierarchical addressing and routing infrastructure
• Stateless and Stateful address configuration
• Built-in security
• Enhanced support for prioritized delivery
• New protocol for neighboring node interaction
• Extensibility
 Differences Between IPv4 and IPv6
IPv4 IPv6

Source and
32 bits (4 bytes) in length 128 bits (16 bytes) in length
destination addresses

IPsec support Optional Required

Broadcast ARP Request frames ARP Request frames replaced with

Address Resolution
resolve IPv4 address to link layer multicast Neighbor Solicitation
Protocol
address messages

Internet Group Manages local subnet group

IGMP replaced with MLD messages
Management Protocol membership

Replaced with ICMPv6 Router

ICMP Router Determines IPv4 address of
Solicitation and Router
Discovery default gateway
Advertisement messages

Uses a link-local scope, all-nodes

Sends traffic to all nodes on a
Broadcast addresses multicast address instead of an
subnet
IPv6 broadcast address

Configured manually or through Does not require manual

Configuration
DHCP configuration or DHCP

Uses A resource records in DNS Uses AAAA resource records in

Resource records to map host names to IPv4 DNS to map host names to IPv6
addresses addresses
IPv6 Implementations Using Microsoft Technologies

• Windows Server 2003 family

• The IPv6 protocol for Windows XP SP1 and
Windows XP SP2
• The IPv6 protocol for Windows CE .NET
versions 4.1 and later
• The Next Generation TCP/IP stack in Windows Vista
and Windows Server 2008
 The IPv6 Address Space
Address Syntax: Compressing Zeros:
• 128-bit address in binary: • Some types of addresses can
contain many zeros
001000000000000100001101101110000000
0000000000000010111100111011
000000101010101000000000111111111111
• A contiguous sequence of
1110001010001001110001011010 16-bit blocks set to 0 can be
compressed using the double
• 128-bit address divided into colon “::”
16-bit boundaries:
• Link-local:
0010000000000001 0000110110111000
0000000000000000 0010111100111011
0000001010101010 0000000011111111 FE80:0:0:0:2AA:FF:FE9A:4CA2
1111111000101000 1001110001011010
• Can be compressed down to:

FE80::2AA:FF:FE9A:4CA2
• Each 16-bit block converted to
HEX (base 16):
2001:0DB8:0000:2F3B:02AA:00FF:FE28:9C5A • Multicast:
FF02:0:0:0:0:0:0:2

• Further simplify by removing • Can be compressed down to:

leading zeros:
FF02::2
2001:DB8:0:2F3B:2AA:FF:FE28:9C5A
 IPv6 Prefixes

Format prefix Format prefix Fraction of the

Allocation
binary value hexadecimal value address space
Reserved 0000 0000 - 1/256

Reserved for NSAP

0000 001 - 1/128
allocation

Aggregatable global
001 2 or 3 1/8
unicast addresses
Link-local unicast
1111 1110 10 FE8 1/1024
addresses
Site-local unicast
1111 1110 11 FEC0 1/1024
addresses
Multicast addresses 1111 1111 FF 1/256
Unicast IPv6 Address Types
Scope
Link-Local Address
Global Unique Unicast Address
10 bits 54 bits 64 bits

1111 1110
• Global
bitsunicast 000
addresses
48 . . . 000 Interface ID
10

• Link-local
45 bits addresses 16 bits 64 bits

Format Prefix Global

all •link-local IPs addresses
Site-local
001have Global
a prefix of FE80
Routing Prefix Subnet ID Interface ID
• Unique local IPv6 unicast addresses
Site-Local/Unique-Local
Site-Local Address
54 bitsSubnet bits for 64 bits
• Special
10 bits
Prefix managed addresses
Link-Local Link-Local
by IANA organizations

1111 1110 11 Subnet ID Interface ID

Prefix assigned Client

to top-level ISP interface ID
Format Prefix
all link-local IPs
have a prefix of FEC0
IPv6 Addresses Assigned to Hosts and Routers

IPv6 hosts and routers are typically assigned the

following IP addresses:

• A link-local address for each interface

• Additional unicast addresses for each interface
(can be a site-local and one or multiple global addresses)
• The loopback address (::1)

Routers also are assigned an anycast address for

each subnet
Zone IDs

Zone IDs

• fe80::2b0:d0ff:fee9:4143%3

• fec0::f282:2b0:d0ff:fee9:4143%2
 Address Autoconfiguration for IPv6

Check
If managed
for
the a
address
router
router
flag set,
for
conflicts
on the
314625 Derive
Add prefixes
network
use
prefixes
using
Link-Local Address
DHCPv6
neighbor solicitation
Autoconfigured IP Timeline
IPv6 Client

Valid

Tentative Preferred Deprecated Invalid

Time

Preferred Lifetime

Valid Lifetime fe80::d593:e1e:e612:53e4%10

Router configuration information

Additional router prefixes

IPv6 Router IPv6 DHCP Server DHCPv6 information received

configured with Site
Local Scope
Demonstration: Configuring IPv6 Client Settings

In this demonstration, you will see how to configure

IPv6 settings on a network client
Lesson 2: Coexistence with IPv6
• What Are Node Types?

• IPv4 and IPv6 Coexistence

• What Is a Dual Layer Architecture?

• What Is a Dual Stack Architecture?

• How Does DNS Support IPv6?

• Demonstration: Configuring DNS to Support IPv6

• What Is IPv6 Over IPv4 Tunneling?

What Are Node Types?

IPv6 Only Node

IPv6 Network

IPv4/IPv6 Node

IPv4 Network

IPv4 Only Node

IPv4 and IPv6 Coexistence

Methods for providing coexistence of IPv4 and IPv6:

• Dual IP layer architecture

(Windows Vista and Windows Server 2008)

• Dual stack architecture

(Windows Server 2003 and Windows XP)

• DNS Infrastructure requirements

• IPv6 over IPv4 tunneling

What Is a Dual Layer Architecture?

Dual layer can create:

Application Layer

• IPv4 packets
Transport Layer (TCP/UDP)

• IPv6 packets

IPv6 IPv4
• IPv6 over IPv4 packets

Network Interface Layer

IPv6 IPv4

IPv6 over IPv4

What Is a Dual Stack Architecture?

Dual stack can create: Application Layer

• IPv4 packets
TCP/UDP TCP/UDP

• IPv6 packets
IPv6 IPv4

• IPv6 over IPv4 packets

Network Interface Layer

IPv6 IPv4

IPv6 over IPv4

How Does DNS Support IPv6?

DNS support for IPv6:

• DNS Host records are classified as

AAAA records

• Pointer Records are configured in the

IP6.ARPA zone

• DNS tries to return the appropriate address

(either IP 4 or IP 6 depending on the
Address Selection rules)
Demonstration: Configuring DNS to Support IPv6
In this demonstration, you will see how to:
• Configure an AAAA record

• Create and IPv6 PTR record (IP6.ARPA)

What Is IPv6 Over IPv4 Tunneling?
IPv6 IPv4
Packet Packet IPv6 over IPv4
tunneling allows IPv6 to
communicate through
an IPv4 network

IPv6

IPv6 Packet

IPv6 Extension Upper layer

IPv4 header headers protocol data unit

IPv4 IPv6 Extension Upper layer

header header headers protocol data unit

IPv4 Packet
Lesson 3: IPv6 Tunneling Technologies
• Tunneling Configurations

• Types of Tunnels

• Tunneling Technologies Usage

• What Is ISATAP Tunneling?

• What Is 6to4 Tunneling?

• What Is Teredo Tunneling?

• What Is Port Proxy?

 Tunneling Configurations
IPv4-only infrastructure
IPv6-capable IPv6-capable
infrastructure infrastructure
Router-to-
IPv6 over IPv4 tunnel
router
IPv6 IPv6
node IPv6/IPv4 router IPv6/IPv4 router node

IPv6-capable
Node A infrastructure Node B
Host-to-router
or IPv6 over IPv4 tunnel
Router-to-host
IPv6/IPv4 IPv6
IPv6/IPv4 router

IPv4-only infrastructure

Host-host IPv6 over IPv4 tunnel

IPv6/IPv4 IPv6/IPv4
node node
Types of Tunnels

Tunnel Key Points

Requires manual configuration of tunnel
Configured
endpoints
Tunnel endpoints are determined
automatically by the use of logical tunnel
Automatic
interfaces, routes, and destination IPv6
addresses
 Tunneling Technologies Usage

Tunneling
Usage
Technology
• Local intranets
• Autoconfiguration on host
ISATAP
• Allows IPv6 nodes to communicate over an IPv4 subnet
• Enabled by default
• IPv6 to IPv6 networks over the IPv4 Internet
6to4 • Autoconfiguration on host
• Enabled by default
• IPv6 to IPv6 through IPv4 NAT
Teredo
• Disabled by default

PortProxy facilitates communication between nodes or

applications that cannot connect using a common Internet layer
protocol (IPv4 or IPv6)
 What Is ISATAP Tunneling?
How ISATAP Tunneling Works
ISATAP Router
• Address assignment and automatic tunneling technology for
DNSunicast
Server IPv6 traffic between IPv6/IPv4 nodes across
• Advertises subnet prefixes assigned to the logical ISATAP
an IPv4 intranet
subnet on which ISATAP hosts are located
• ISATAP hosts use the advertised subnet prefixes to
ISATAP addresses:
• configure global ISATAP addresses
ISATAP Router
• [64-bit unicast prefix]:0:5EFE:w.x.y.z
IPv4-only IPv6-capable
• w.x.y.z is a public or private IPv4 address
intranet network
• Forwards packets between ISATAP hosts and hosts on
• Example:
other FE80::5EFE:157.59.137.133
IPv6 subnets (optional)
3
ISATAP Host
• ISATAP treats an IPv4
1 infrastructure
2 as DNS
1 a single
querylink
for “ISATAP”
• The other subnets can be subnets in an IPv6-capable portion
of the organization's network or the IPv6 Internet
IPv4-encapsulated router
IPv4 traffic
2 solicitation
IPv6 tunneled IPv4-encapsulated router
with IPv4 3 advertisement
ISATAP Host
Lab A: Configuring an ISATAP Router
• Exercise 1: Configuring a New IPv6 Network and Client

• Exercise 2: Configuring an ISATAP Router to Enable

Communications Between an IPv4 Network and an IPv6
Network

Logon information
6421A-NYC-DC1,
Virtual machine 6421A-NYC-SVR1,
and 6421A-NYC-CL1

User name Administrator

Password Pa$$w0rd
Estimated time: 30 minutes
Lab Review
• What does an ISATAP router allow an IPv6/IPv4 hybrid
node to do?
• What do you need to define on the DNS server in order for
an ISATAP router function properly?
• What does advertising a prefix do when defining a prefix
in the IPv6 router?
 What Is 6to4 Tunneling?
Field Value

IPv6 Source Address 2002:9D3C:5B7B:1::1

• Address assignment and automatic tunneling technology for
IPv6 Destination Address 2002:836B:D231:2::3
unicast
IPv6 host D traffic between IPv6/IPv4 nodes across
IPv6-only 6to4 relay
the IPv4 Internet IPv4 Source Address 157.60.91.123
IPv6/IPv4
IPv4 Destination Address 131.107.210.49

• 6to4 address:
IPv6 Internet
2002:WWXX:YYZZ:Subnet_ID:Interface_ID
6to4 router
IPv6/IPv4

• 6to4 treats the IPv4 Internet as a single IPv6

link host C Site 2
IPv4 Internet IPv6/IPv4

IPv6 host B 6to4 router

IPv6/IPv4 IPv6/IPv4
Site 1

IPv6 host A
IPv6/IPv4
Lesson 4: Transitioning from IPv4 to IPv6
• Discussion: Considerations for Migrating from IPv4 to IPv6

• Process for Transitioning to IPv6

Discussion: Considerations for Migrating from
IPv4 to IPv6
• How might applications be affected?

• What kind of network infrastructure and network services

need to be in place?
• What devices need to be upgraded?
Process for Transitioning to IPv6

1 Applications

2 DNS infrastructure

3 Upgrade hosts to IPv6/IPv4 nodes

4 Upgrade routing infrastructure for native IPv6 routing

5 Convert IPv6/IPv4 nodes to IPv6-only nodes

Lesson 5: Troubleshooting IPv6
• Methods Used to Troubleshoot IPv6

• Verifying IPv6 Connectivity

• Verifying DNS Name Resolution for IPv6 Addresses

• Verifying IPv6-based TCP Connections

Methods Used to Troubleshoot IPv6

 Verify IPv6 connectivity

 Verify DNS name resolution for IPv6 addresses

 Verify IPv6-based TCP connections

Verifying IPv6 Connectivity

 Verify configuration (IPconfig and netsh)

 Manage configuration (netsh)

 Verify reachability

 Check packet filtering

 View and manage the IPv6 routing table (route print)

 Verify router reliability (pathping)

Verifying DNS Name Resolution for IPv6 Addresses

 Verify DNS configuration

 Display and flush the DNS client resolver cache

 Test DNS name resolution with the Ping tool

 Use the Nslookup tool to view DNS server responses

Verifying IPv6-based TCP Connections

 Check for packet filtering

 Verify TCP connection establishment

Lab B: Converting the Network
• Exercise 1: Transitioning to an IPv6-Only Network

Logon information
6421A-NYC-DC1,
Virtual machine 6421A-NYC-SVR1,
and 6421A-NYC-CL1

User name Administrator

Password Pa$$w0rd
Estimated time: 30 minutes
Lab Review
• Why must you disable the ISATAP router when
transitioning to IPv6?
Module Review and Takeaways
• Review Questions

• Command-Line Tools