IPv6 in Practice - A Unixer's Guide to the Next Generation Internet

Preface

In the Beginning there was—Frustration

What This Book is Not About But Why You Might Want to Read It Anyway

The Unixen Considered

How to Read This Book

Security Considerations

Typographic Conventions

Acknowledgments

About the Author

Contents

Part I Getting Started

1 A Quick Overview of IPv6

1.1 Terminology: IP, IPv4, IPv6 and the Internet

1.2 The " IPv6 Sales Pitch”

1.3 IPv6 and the TCP/IP Stack

2 Preparing for IPv6

2.1 Obtaining Our Own IPv6 Address Prefix

2.2 Setting Up Our Test Environment

2.3 Security Precautions

2.4 Kernel IPv6 Support

2.5 Packet Filter Considerations

3 IPv6 Address Basics

3.1 Size Matters

3.2 Address Notation

3.3 Scopes

3.4 Unicast Addresses

3.5 Multicast Addresses

3.6 Anycast Addresses

3.7 Inside IPv6: The IPv6 Headers

3.8 Address Allocation Policy and the Routing Table Problem

3.9 References

3.10 Packet Filter Considerations

4 Address Configuration

4.1 Static Address Con.guration

4.2 Inside IPv6: Neighbor Discovery (ND)

4.3 Stateless Address Autoconfiguration (SAC)

4.4 Mixing Static and Automatic Configuration

4.5 Inside IPv6: Autoconfiguration Details

4.6 Testing and Debugging

4.7 Packet Filter Considerations

5 IPv6 and the Domain Name System (DNS)

5.1 Getting Started

5.2 IPv6 Addresses in the DNS

5.3 Open Issues

5.4 Packet Filter Considerations

6 Essential Network Services

6.1 Levels of IPv6 Support

6.2 The Inetd Super Daemon

6.3 Basic Debugging—Tools and Procedures

6.4 The Secure Shell (OpenSSH)

6.5 Time Synchronization with the Network Time Protocol ( NTP)

6.6 Event Logging with Syslog

6.7 E-mail: The Simple Mail Transfer Protocol (SMTP)

6.8 The World Wide Web: HTTP and HTTPS

6.9 The Network File System (NFS)

6.10 Other Services

6.11 Packet Filter Considerations

7 Unicast Routing Basics

7.1 Hosts and ICMPv6 Redirects

7.2 Inside IPv6: ICMPv6 Redirect Protocol Details

7.3 Static Routing

7.4 Dynamic Routing with RIPng

7.5 Testing and Debugging

7.6 Inside IPv6: RIPng Protocol Details

7.7 Routing Architecture Strategies

7.8 Mixing Static and Dynamic Routing

7.9 Inside IPv6: Maximum Transmission Unit (MTU) Improvements

7.10 Packet Filter Considerations

Part II IPv4/IPv6 Interoperation

8 Interoperation Concepts

8.1 Dual Stack Configuration and Operation

8.2 Interoperation Problems

8.3 Dual Stack Everything

8.4 Dual Stack Servers Only

8.5 Connecting to Foreign IPv4-only Servers

8.6 Packet Filter Considerations

9 Application Level Gateways

9.1 Domain Name Service (DNS)

9.2 Network Time Protocol (NTP)

9.3 Syslog

9.4 Simple Mail Transfer Protocol (SMTP)

9.5 Hypertext Transfer Protocol (HTTP)

9.6 Packet Filter Considerations

10 Protocol Translation

10.1 Protocol Translation Concepts

10.2 Setting Up a Protocol Translator

10.3 Operational Issues

10.4 Packet Filter Considerations

Part III Tunnels and Related Topics

11 Tunnel Basics

11.1 Concepts and Terminology

11.2 Tunnel Types

11.3 Common Scenarios

11.4 Operational Issues

11.5 Security Considerations

11.6 Choosing the Proper Tunnel

12 IP-in-IP Encapsulation

12.1 Configured and Automatic (6in4) Tunnels

12.2 6to4 Tunnels

12.3 Tunneling Over IPv6 Networks

12.4 6over4 Tunnels

12.5 The Intra-site Automatic Tunnel Addressing Protocol ( ISATAP)

12.6 Packet Filter Considerations

13 Other Tunneling Methods

13.1 GRE

13.2 Teredo

13.3 OpenVPN

13.4 Packet Filter Considerations

14 Advanced Tunneling Issues

14.1 Tunnel Brokers

14.2 Tunnels and NAT Gateways

14.3 Nested Tunnels and Tunnel Loops

14.4 Tunnel Parameter Tuning

14.5 Mixing Tunnels and Native Connectivity

15 The Point-to-Point Protocol (PPP)

15.1 Implementations and Installation

15.2 Basic Configuration

15.3 Adding Routable Addresses and Static Routes

15.4 Dynamic Routing Across PPP Links

15.5 PPP and Autoconfiguration

15.6 Beyond a Single Interface: Operational Issues

15.7 Packet Filter Considerations

Part IV Additional Base Features

16 More on Addresses

16.1 Site-local and Unique-local Addresses

16.2 IPv4-mapped IPv6 Addresses

16.3 Dynamically Changing Interface IDs

16.4 Address Selection Algorithms

16.5 Stateless Autoconfiguration Tuning

16.6 The Router Renumbering Protocol

17 Advanced Routing with Quagga

17.1 The Quagga Routing Framework

17.2 RIPng Revisited

17.3 Open Shortest Path First (OSPF), version 3

17.4 Beyond RIP and OSPF

17.5 Packet Filter Considerations

18 Multicasts Beyond the Link-local Scope

18.1 A Closer Look at Multicasts

18.2 Protocol Independent Multicast—Dense Mode ( PIM- DM)

18.3 Protocol Independent Multicast—Sparse Mode ( PIM- SM)

18.4 Multicast Address Allocation

18.5 Operational Issues

18.6 Packet Filter Considerations

18.7 Advanced Topics and Further Reading

19 The Dynamic Host Configuration Protocol ( DHCPv6)

19.1 Installation

19.2 Stateless DHCPv6

19.3 Address Management with DHCPv6

19.4 DHCPv6 Across Subnet Borders

19.5 Interoperation Problems

19.6 Conceptual Security Aspects

19.7 Packet Filter Considerations

20 Bridging the DNS Gap

20.1 From Autoconfiguration to the DNS

20.2 Solution Strategies

20.3 A Preliminary Implementation

20.4 Operational Issues

20.5 Future Work

Part V New Functionalities

21 IP Security (IPsec)

21.1 Basic Concepts

21.2 Open Problems

21.3 Packet Filter Considerations

22 Mobile IPv6 (MIPv6)

22.1 Concepts

22.2 Open Problems

22.3 Further Reading

23 Quality of Service (QoS)

23.1 Concepts

23.2 Is It Necessary?

23.3 Further Reading

Part VI Architectural and Operational Topics

24 Renumbering Procedures

24.1 Preparations

24.2 Soft Renumberings with a Grace Period

24.3 Emergency Renumberings

24.4 Changing the Internet Service Provider

25 Multi-homing

25.1 Multi-homed Networks

25.2 Multi-homed Hosts

A Crash Course: DNS & BIND

A.1 Domain Name System (DNS) Basics

A.2 The BIND Name Server

A.3 Common Pitfalls

B Assigned Numbers and Addresses

B.1 Addresses and Address Pre.xes

B.2 Transport Layer Port Numbers

B.3 ICMPv6 Types

B.4 Protocol Numbers in Next Header Field

B.5 Ethernet

References

Index