IPv6 address types pART2 IPv6 address types pART2
Download as PPTX, PDF0 likes19 views
The document provides an introduction to IPv6 address types and configurations, detailing unicast, multicast, and link-local addresses, along with their assignment methods and uses. It explains the stateless address autoconfiguration process, neighbor discovery, and the importance of various ICMPv6 message types in network operations. Additionally, it outlines the structure of global unicast addresses and the role of multicast addresses in IPv6 networking.
![IPv6 Intro – Part 2
9
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
IPv6 Link-Local Unicast Address Example
R1# show ipv6 interface loopback 100
Loopback100 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8
No Virtual link-local address(es):
Global unicast address(es):
2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF18:7DE8
MTU is 1514 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ICMP unreachables are sent
ND DAD is not supported
ND reachable time is 30000 milliseconds (using 31238)
Hosts use stateless autoconfig for addresses.
R1#](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-9-320.jpg)
![IPv6 Intro – Part 2
14
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
IPv6 Global Unicast Address Example
R1# show ipv6 interface loopback 100
Loopback100 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8
No Virtual link-local address(es):
Global unicast address(es):
2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF18:7DE8
MTU is 1514 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ICMP unreachables are sent
ND DAD is not supported
ND reachable time is 30000 milliseconds (using 31238)
Hosts use stateless autoconfig for addresses.
R1#](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-14-320.jpg)
![IPv6 Intro – Part 2
19
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
IPv6 Multicast Address Example
R1# show ipv6 interface loopback 100
Loopback100 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8
No Virtual link-local address(es):
Global unicast address(es):
2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF18:7DE8
MTU is 1514 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ICMP unreachables are sent
ND DAD is not supported
ND reachable time is 30000 milliseconds (using 31238)
Hosts use stateless autoconfig for addresses.
R1#](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-19-320.jpg)
![IPv6 Intro – Part 2
43
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Verifying IPv6
Command Description
show ipv6 interface
[brief] [type number]
[prefix]
Displays the status of interfaces configured for IPv6.
• The brief keyword displays a brief summary.
• The prefix keyword displays the IPv6 neighbor
discovery prefixes that are configured on a specified
interface.
show ipv6 routers
[interface-type
interface-number]
[conflicts]
Displays IPv6 router advertisement information received
from on-link routers (those locally reachable on the link).
• The conflicts keyword displays information about
routers advertising parameters that differ from the
advertisement parameters configured for the specified
interface on which the advertisements are received.
show ipv6 neighbors
[interface-type
interface-number | ipv6-
address | ipv6-hostname
| statistics]
Displays IPv6 neighbor discovery cache information for
the specified neighbors.
• The optional statistics parameter displays
neighbor discovery cache statistics.](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-43-320.jpg)
![IPv6 Intro – Part 2
44
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Troubleshooting IPv6
Command Description
debug ipv6 nd
Displays messages associated with ICMPv6 neighbor
discovery.
• ICMPv6 neighbor discovery is the IPv6 replacement for
the IPv4 ARP.
debug ipv6 packet
[access-list access-
list-name] [detail]
Displays information associated with IPv6 packet
processing.
• When an IPv6 access list is specified, only packets
permitted by the ACL are displayed.
• The detail keyword displays more information.](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-44-320.jpg)
![IPv6 Intro – Part 2
48
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Enable IPv6 on an Interface
Configure an IPv6 address and prefix.
Router(config-if)#
ipv6 address address/prefix-length [link-local | eui-64]
Command is used to statically configure an IPv6 address and prefix on
an interface.](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-48-320.jpg)
![IPv6 Intro – Part 2
50
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Assigning a Static Link-Local Address
R2
FE80::1
R1
.2
R1# show ipv6 interface fa0/0
FastEthernet0/0 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::1 [TEN]
No global unicast address is configured
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF00:1
MTU is 1500 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ND DAD is enabled, number of DAD attempts: 1
ND reachable time is 30000 milliseconds
ND advertised reachable time is 0 milliseconds
ND advertised retransmit interval is 0 milliseconds
ND router advertisements are sent every 200 seconds
ND router advertisements live for 1800 seconds
Hosts use stateless autoconfig for addresses.
R1(config-if)#](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-50-320.jpg)
![IPv6 Intro – Part 2
52
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Assigning a Static Global Unicast Address
R2
FE80::1
2001:1::1/64
R1
.2
R1# show ipv6 interface fa0/0
FastEthernet0/0 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::1 [TEN]
Global unicast address(es):
2001:1::1, subnet is 2001:1::/64 [TEN]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF00:1
MTU is 1500 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ND DAD is enabled, number of DAD attempts: 1
ND reachable time is 30000 milliseconds
ND advertised reachable time is 0 milliseconds
ND advertised retransmit interval is 0 milliseconds
ND router advertisements are sent every 200 seconds
ND router advertisements live for 1800 seconds
Hosts use stateless autoconfig for addresses.
R1#](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-52-320.jpg)
![IPv6 Intro – Part 2
53
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Configuring an EUI-64 IPv6 Global Address
R1# config t
R1(config)# int fa0/1
R1(config-if)# ipv6 add 2001::/64 eui-64
R1(config-if)# do show ipv6 interface fa0/1
FastEthernet0/1 is administratively down, line protocol is down
IPv6 is enabled, link-local address is FE80::211:92FF:FE54:E2A1 [TEN]
Global unicast address(es):
2001::211:92FF:FE54:E2A1, subnet is 2001::/64 [EUI/TEN]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF54:E2A1
MTU is 1500 bytes
<output omitted>](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-53-320.jpg)
![IPv6 Intro – Part 2
54
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
EUI-64 IPv6 Global Address – Example 2
R1(config)# interface loopback 100
R1(config-if)# ipv6 address 2001:8:85a3:4289::/64 eui-64
<output omitted>
R1# show ipv6 interface loopback 100
Loopback100 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::21B:D5FF:FE5B:A408
Global unicast address(es):
2001:8:85A3:4289:21B:D5FF:FE5B:A408, subnet is 2001:8:85A3:4289::/64 [EUI]
Joined group address(es):
FF02::1
FF02::2
FF02::1:FF5B:A408
MTU is 1514 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ND DAD is not supported
ND reachable time is 30000 milliseconds
Hosts use stateless autoconfig for addresses.](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-54-320.jpg)
![IPv6 Intro – Part 2
62
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Enable Autoconfiguration of a Router Interface.
Enable the automatic configuration of an IPv6 address.
Router(config-if)#
ipv6 address autoconfig [default]
Enables stateless autoconfiguration which:
• Automatically configures an IPv6 address using the interface.
• Enables the IPv6 processing on the interface.
Addresses are configured depending on the prefixes
received in RA messages from other routers.](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-62-320.jpg)
![IPv6 Intro – Part 2
66
© 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Router Interface EUI-64 Example
Router’s fa0/1 interface generates its link-local address and
global unicast address
•
Router#sho ipv6 int bri
FastEthernet0/0 [administratively down/down]
FastEthernet0/1 [up/up]
FE80::201:42FF:FE44:3C02
2001:DB8::201:42FF:FE44:3C02](https://image.slidesharecdn.com/ipv6-part2-addr-types-241218045940-3970dfff/85/IPv6-address-types-pART2-IPv6-address-types-pART2-66-320.jpg)
IPv6 address types pART2 IPv6 address types pART2
- 1. © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Intro – Part 2 1 IPv6 Intro Part 2: Address Types and Application
- 2. IPv6 Intro – Part 2 2 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Objectives Describe IPv6 address types and special addresses. Describe IPv6 Unicast addresses and assignment methods. Explain the stateless autoconfiguration process. Describe IPv6 Multicast addresses and their use. Describe IPv6 subnetting and aggregation Configure and verify IPv6 addressing on networking devices.
- 3. IPv6 Intro – Part 2 3 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Address Types
- 4. IPv6 Intro – Part 2 4 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Address Space Overview Prefix Hex Value Use 0000 to 00FF •Unspecified •Loopback •IPv4-compatible 0100 to 01FF Unassigned (0.38 % of IPv6 space) 0200 to 03FF NSAP Network Service AP) 0400 to 1FFF Unassigned (~11% of IPv6 space) 2000 to 3FFF Aggregatable global unicast (12.5%) 4000 to FE7F (Huge) Unassigned (~75% of IPv6 space) FE80 to FEBF Link-local FC00 to FCFF Unique-local FF00 to FFFF Multicast Note: IPv6 Internet uses 2001::/3 which is < 2% of IPv6 address space
- 5. IPv6 Intro – Part 2 5 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Special IPv6 Addresses IPv6 Address Description ::/0 • All networks and used when specifying a default static route. • It is equivalent to the IPv4 quad-zero (0.0.0.0) ::/128 • Unspecified address and is initially assigned to a host when it first resolves its local link address ::1/128 • Loopback address of local host • Equivalent to 127.0.0.1 in IPv4 FE80::/10 • Link-local unicast address • Similar to the Windows autoconfiguration IP address of 169.254.x.x FF00::/8 • Multicast addresses All other addresses • Global unicast address
- 6. IPv6 Intro – Part 2 6 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Unicast Addresses IPv6 Unicast Address Assignment Link-local (FE80::/10) Address Assignment Static IPv6 Address Dynamic Automatically created (EUI-64 format) if a global unicast IPv6 address is configured Global Routable Address Assignment Static IPv6 Address IPv6 Unnumbered Dynamic Stateless Autoconfiguration DHCPv6
- 7. IPv6 Intro – Part 2 7 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Link-Local Unicast Address Link-local addresses play a crucial role in the operation of IPv6. They are dynamically created using a link-local prefix of FE80::/10 and a 64-bit interface identifier. 128 bits FE80 1111 1110 1000 0000 0000 0000 ... 0000 0000 0000 Interface ID /10 FE80::/10 /64
- 8. IPv6 Intro – Part 2 8 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public R2# ping FE80::202:16FF:FEEB:3D01 Output Interface: serial0/0/0 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to FE80::202:16FF:FEEB:3D01, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 31/34/47 ms IPv6 Link-Local Unicast Address When pinging another device using Cisco IOS and a link- local address, the outgoing interface must be specified.
- 9. IPv6 Intro – Part 2 9 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Link-Local Unicast Address Example R1# show ipv6 interface loopback 100 Loopback100 is up, line protocol is up IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8 No Virtual link-local address(es): Global unicast address(es): 2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI] Joined group address(es): FF02::1 FF02::2 FF02::1:FF18:7DE8 MTU is 1514 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent ND DAD is not supported ND reachable time is 30000 milliseconds (using 31238) Hosts use stateless autoconfig for addresses. R1#
- 10. IPv6 Intro – Part 2 10 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Global Unicast Address A global unicast address is an IPv6 address from the global public unicast prefix (2001::/16). These addresses are routable on the global IPv6 Internet. Global unicast addresses are aggregated upward through organizations and eventually to the ISPs.
- 11. IPv6 Intro – Part 2 11 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Global Unicast Address The global unicast address consists of: • A 48-bit global routing prefix • A 16-bit subnet ID • A 64-bit interface ID Global Routing Prefix Subnet ID Interface ID 2001 0010 0008 21B:D5FF:FE5B:A408 /23 Registry /32 ISP Prefix /48 Site Prefix /64 Subnet Prefix
- 12. IPv6 Intro – Part 2 12 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Global Unicast Address The current IANA global routing prefix uses the range that starts with binary 0010 (2000::/3). Global Routing Prefix Subnet ID Interface ID 2001 0010 0008 21B:D5FF:FE5B:A408 /23 Registry /32 ISP Prefix /48 Site Prefix /64 Subnet Prefix
- 13. IPv6 Intro – Part 2 13 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Global Unicast Address The subnet ID can be used by an organization to create their own local addressing hierarchy. Global Routing Prefix Subnet ID Interface ID 2001 0010 0008 21B:D5FF:FE5B:A408 /23 Registry /32 ISP Prefix /48 Site Prefix /64 Subnet Prefix
- 14. IPv6 Intro – Part 2 14 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Global Unicast Address Example R1# show ipv6 interface loopback 100 Loopback100 is up, line protocol is up IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8 No Virtual link-local address(es): Global unicast address(es): 2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI] Joined group address(es): FF02::1 FF02::2 FF02::1:FF18:7DE8 MTU is 1514 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent ND DAD is not supported ND reachable time is 30000 milliseconds (using 31238) Hosts use stateless autoconfig for addresses. R1#
- 15. IPv6 Intro – Part 2 15 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Multicast Addresses Multicasting is at the core of many IPv6 functions and is a replacement for the broadcast address. They are defined by the prefix FF00::/8. /16 /8 FF00::/8 128 bits F F 1111 1111 0 0 00xx xxxx Group ID
- 16. IPv6 Intro – Part 2 16 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public F F 1111 1111 0 0 00xx xxxx Group ID IPv6 Multicast Address The second octet of the address contains the prefix and transient (lifetime) flags, and the scope of the multicast address. Flags Scope 0 0 P T xxxx 8 bits Flags: • P = Prefix for unicast-based assignments • T = 0 if permanent, 1 if temporary Scope: • 1 (0001) = Node • 2 (0010) = Link • 5 (0101) = Site • 8 (1000) = Organization • E (1110) = Global /16 /8 128 bits
- 17. IPv6 Intro – Part 2 17 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Multicast Address The multicast addresses FF00:: to FF0F:: are permanent and reserved. Flags Scope 0 0 P T xxxx 8 bits Flags: • P = Prefix for unicast-based assignments • T = 0 if permanent, 1 if temporary Scope: • 1 (0001) = Node • 2 (0010) = Link • 5 (0101) = Site • 8 (1000) = Organization • E (1110) = Global /16 /8 128 bits F F 1111 1111 0 0 00xx xxxx Group ID
- 18. IPv6 Intro – Part 2 18 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Reserved IPv6 Multicast Addresses Reserved Multicast Address Description FF02::1 • All nodes on a link (link-local scope). FF02::2 • All routers on a link. FF02::9 • All routing information protocol (RIP) routers on a link. FF02::1:FFxx:xxxx • All solicited-node multicast addresses used for host autoconfiguration and neighbor discovery (similar to ARP in IPv4). • The xx:xxxx is the far right 24 bits of the corresponding unicast or anycast address of the node. FF05::101 • All Network Time Protocol (NTP) servers.
- 19. IPv6 Intro – Part 2 19 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Multicast Address Example R1# show ipv6 interface loopback 100 Loopback100 is up, line protocol is up IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8 No Virtual link-local address(es): Global unicast address(es): 2001:8:85A3:4290:222:55FF:FE18:7DE8, subnet is 2001:8:85A3:4290::/64 [EUI] Joined group address(es): FF02::1 FF02::2 FF02::1:FF18:7DE8 MTU is 1514 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent ND DAD is not supported ND reachable time is 30000 milliseconds (using 31238) Hosts use stateless autoconfig for addresses. R1#
- 20. IPv6 Intro – Part 2 20 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Solicited-Node Multicast Addresses The solicited-node multicast address (FF02::1:FF) is used for: • Neighbor discovery (ND) process • Stateless address autoconfiguration The Neighbor discovery (ND) process is used to: • Determine the local-link address of the neighbor • Determine the routers on the link and default route • Keep track of neighbor reachability • Send network information from routers to hosts
- 21. IPv6 Intro – Part 2 21 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Neighbor Discovery ICMPv6 Packet Types Neighbor Discovery uses four ICMPv6 packet types ICMPv6 Message Type Description Neighbor Solicitation (NS) 135 • Sent by a host to determine the link-layer address of a neighbor. • Used to verify that a neighbor is still reachable. • An NS is also used for Duplicate Address Detection (DAD). Neighbor Advertisement (NA) 136 • A response to a NS message. • A node may also send unsolicited NA to announce a link-layer address change. Router Advertisement (RA) 134 • RAs contain prefixes that are used for on-link determination or address configuration, a suggested hop limit value and MTU value. • RAs are sent either periodically, or in response to a RS message. Router Solicitation (RS) 133 • When a host is booting it sends out an RS requesting routers to immediately generate an RA rather than wait for their next scheduled time.
- 22. IPv6 Intro – Part 2 22 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Neighbor Solicitation Example ICMPv6 Neighbor Solicitation (NS) is similar to IPv4 ARP. For Host A to send a packet to Host B it needs the MAC address of Host B. A B ICMP type: 135 (NS) Source: A Destination: Solicited-node multicast of B (FF02::1:FFxx.xxxx) Data: Link-layer address of A Query: What is your link-layer address?
- 23. IPv6 Intro – Part 2 23 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Neighbor Advertisement Example Each destination node that receives the NS responds with an ICMPv6 message type 136, NA, including Host B. A B ICMP type: 136 (NA) Source: B Destination: A Data: Link-layer address of B A B A and B can now exchange packets on this link.
- 24. IPv6 Intro – Part 2 24 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Stateless Address Autoconfiguration (SLAAC) Every IPv6 system is able to build its own unicast global address. • Enables new devices to easily connect to the Internet. • No configuration or DHCP server is required. IPv6 Router - sends network info on local link. • IPv6 prefix • Default IPv6 route IPv6 Hosts - listen on local link and configure themselves. •IP Address (EUI-64 format) •Default route
- 25. IPv6 Intro – Part 2 25 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Stateless Address Autoconfiguration IPV6 Host IPV6 Router Router sends network info (IPV6 Prefix and Default IPv6 Route) Local Link MAC Address 00:14:BF:7A:3C:E5 Autoconfiguration Address (IPv6 Prefix + Link-Layer EUI Address) RA An IPv6 address must be configured on the router gateway interface.
- 26. IPv6 Intro – Part 2 26 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Ethernet EUI-64 IPv6 Addresses The first 64 bits are the network portion of the address and are statically specified or learned via SLAAC. The interface ID (second 64-bits) is the host portion of the address and is automatically generated by the router or host device. The interface ID on an Ethernet link is based on the 48-bit MAC address of the interface with an additional 16-bit 0xFFFE inserted in the middle of the MAC address.
- 27. IPv6 Intro – Part 2 27 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public EUI-64 IPv6 Interface Identifier 48-bit MAC Address 64-bit IPv6 EUI-64 Interface ID
- 28. IPv6 Intro – Part 2 28 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Stateless Autoconfiguration Process A ICMP type: 133 (RS) Source: :: Destination: All routers multicast address (FF02::2) Query: Please send RA R1 A R1 ICMP type: 134 (RA) Source: R1 link-local address Destination: All nodes multicast address (FF02::1) Data: Options, prefixes, lifetime, …
- 29. IPv6 Intro – Part 2 29 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Stateless Autoconfiguration Process Host A creates an IPv6 address using the RA supplied by the router. Host A verifies that it’s new IPv6 address is unique using DAD process. ICMP type: 135 (NS) Source: :: Destination: Solicited-node address of A Data: Link-layer address of A Query: What is your link-layer address? A B
- 30. IPv6 Intro – Part 2 30 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Subnetting and Aggregation
- 31. IPv6 Intro – Part 2 31 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Subnetting Overview Not the same as IPv4 IPv6 does NOT use subnet masks CIDR notation is used • IPv6 address is in Hex • Network mask is in decimal Number of subnet bits set to 1 define network prefix All other bits are for nodes There are no reserved addresses (network or broadcast) 2001:25:12:AB12:3456:DFB5:712:45FF/64
- 32. IPv6 Intro – Part 2 32 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Prefix Length, Allocation of Bits Example: 2001:DB8:0:2F00:2AA:FF:FE28:9C5A/64 Prefix length (total number of network bits) is 64 16 subnet bits allow 65,535 LANs Usually 64 bits are used for hosts in IPv6
- 33. IPv6 Intro – Part 2 33 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Subnetting with Global Unicast Addresses The global routing prefix is assigned to a service provider by IANA (/32). The site level aggregator (SLA) is assigned by the ISP (/48). The LAN ID represents individual subnets within the customer site and is administered by the customer (/64).
- 34. IPv6 Intro – Part 2 34 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Subnetting with Global Unicast Addresses Default Subnets • /23 Registry • /32 ISP Prefix • /48 Site Prefix • Bits 49 to 64 are for subnets • 2^16 = 65,535 subnets available • /64 Default Subnet prefix • Bits 65 to 128 for Hosts • Host bits are either statically assigned, EUI-64, DHCP or random number generated. 2001 0DB8 0001 0001 Interface ID /23 Registry /32 ISP /48 Site /64 Subnet 64 bits
- 35. IPv6 Intro – Part 2 35 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Subnetting with Global Unicast Addresses IPv6 prefix # of Subnets # of Hosts 2001:520:1:1::3FFF /128 1 1 2001:520:0:1:: /64 (default prefix for subnet) 1 2^64 2001:520:0:: /48 (default Site prefix) 2^16 2^64 per subnet • 61 Global Network bits and 64 Host bits • No more “bit borrowing” as with IPv4 • 2^64 hosts possible in a single broadcast domain • Autoconfiguration will take care of most of them • VLANs become the method of isolation
- 36. IPv6 Intro – Part 2 36 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Address Hierarchy Internet Registries Tier-1 Provider Tier-2 Provider Tier-n Provider Organizations Sites Hosts • Large address space • Allows for multiple levels
- 37. IPv6 Intro – Part 2 37 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Address Aggregation Large prefix assigned to an organization • Can handle even the largest networks ISPs summarize routes • All customer prefixes into one prefix • Make it available to the Internet Aggregation provides: • Efficient routing • Scalable routing • Fewer routes in global IPV6 routing table
- 38. IPv6 Intro – Part 2 38 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Customer A1 Customer A2 ISP A AS 60000 2001:051A::/35 2001:051A:A1::/48 2001:051A:A2::/48 Routing Table 2001:051A:A1::/48 AS 60000 2001:051A:A2::/48 AS 60000 Global Routing Table 2001:051A::/35 Aggregation Example
- 39. IPv6 Intro – Part 2 39 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Subnetting Global Addresses 2001:05a8::0/32 Subnets the ISP can create: • 2^16 = 65,536 • 2001:05a8:0001::0 – 2001:05a8:ffff::0/48
- 40. IPv6 Intro – Part 2 40 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Subnetting Global Addresses Customer now has 16 network bits with which to create 2^16 networks (or 2^8 if ISP used /56) 2001:05a8:0001:0001::0 – 2001:05a8:0001:ffff::0/64 2001:05a8:94ad:0001::0 – 2001:05a8:94ad:ffff::0/64 2001:05a8:b002:0001::0 – 2001:05a8:b002:ffff::0/64 2001:05a8:ffff:0001::0 – 2001:05a8:ffff:ffff::0/64
- 41. IPv6 Intro – Part 2 41 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Subnetting Global Addresses Apply 1 of these /64 prefixes to a router interface • 2001:05a8:0001:00a1::0 /64 Hosts per subnet (a /64 is a single host) • 2001:05a8:0001:00a1::1 – 2001:05a8:01a1:00a1:FFFF:FFFF:FFFF:FFFF/64
- 42. IPv6 Intro – Part 2 42 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Implementing IPv6
- 43. IPv6 Intro – Part 2 43 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Verifying IPv6 Command Description show ipv6 interface [brief] [type number] [prefix] Displays the status of interfaces configured for IPv6. • The brief keyword displays a brief summary. • The prefix keyword displays the IPv6 neighbor discovery prefixes that are configured on a specified interface. show ipv6 routers [interface-type interface-number] [conflicts] Displays IPv6 router advertisement information received from on-link routers (those locally reachable on the link). • The conflicts keyword displays information about routers advertising parameters that differ from the advertisement parameters configured for the specified interface on which the advertisements are received. show ipv6 neighbors [interface-type interface-number | ipv6- address | ipv6-hostname | statistics] Displays IPv6 neighbor discovery cache information for the specified neighbors. • The optional statistics parameter displays neighbor discovery cache statistics.
- 44. IPv6 Intro – Part 2 44 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Troubleshooting IPv6 Command Description debug ipv6 nd Displays messages associated with ICMPv6 neighbor discovery. • ICMPv6 neighbor discovery is the IPv6 replacement for the IPv4 ARP. debug ipv6 packet [access-list access- list-name] [detail] Displays information associated with IPv6 packet processing. • When an IPv6 access list is specified, only packets permitted by the ACL are displayed. • The detail keyword displays more information.
- 45. IPv6 Intro – Part 2 45 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Enable IPv6 Routing Enable the forwarding of IPv6 unicast datagrams. Router(config)# ipv6 unicast-routing This command is required before configuring any form of IPv6 routing (static or dynamic). Also required to support autoconfiguration of end devices. The no ipv6 unicast-routing command disables IPv6 routing capabilities of the router.
- 46. IPv6 Intro – Part 2 46 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Enable CEF for IPv6 Enable Cisco Express Forwarding (CEF) for IPv6 (CEFv6). Router(config)# ipv6 cef An optional command, CEFv6 is an advanced Layer 3 IP switching technology for the forwarding of IPv6 packets. • It is required for some other IPv6 features to operate. • When enabled, network entries in the IPv6 routing table are reflected in the Forwarding Information Bases (FIBs). • The IPv6 adjacency tables maintain Layer 2 next-hop addresses for all entries that are in each FIB.
- 47. IPv6 Intro – Part 2 47 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Unicast Address Assignment Link-local (FE80::/10) Address Assignment Static IPv6 Address Dynamic Automatically created (EUI- 64 format) if a global unicast IPv6 address is configured Global Routable Address Assignment Static IPv6 Address IPv6 Unnumbered Dynamic Stateless Autoconfigur ation DHCPv6 Configuring IPv6 Unicast Addresses
- 48. IPv6 Intro – Part 2 48 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Enable IPv6 on an Interface Configure an IPv6 address and prefix. Router(config-if)# ipv6 address address/prefix-length [link-local | eui-64] Command is used to statically configure an IPv6 address and prefix on an interface.
- 49. IPv6 Intro – Part 2 49 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning a Link-Local Address Link-local addresses are created: • Automatically using EUI-64 • Manually by specifying an interface ID (as in this example) The prefix mask is not required because they are not routed. R2 R1 .2 R1(config)# interface fa0/0 R1(config-if)# ipv6 address FE80::1 ? link-local use link-local address R1(config-if)# ipv6 address FE80::1 link-local R1(config-if)# end R1#
- 50. IPv6 Intro – Part 2 50 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning a Static Link-Local Address R2 FE80::1 R1 .2 R1# show ipv6 interface fa0/0 FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::1 [TEN] No global unicast address is configured Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds ND router advertisements are sent every 200 seconds ND router advertisements live for 1800 seconds Hosts use stateless autoconfig for addresses. R1(config-if)#
- 51. IPv6 Intro – Part 2 51 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning a Static Global Unicast Address Global Unicast IPv6 addresses are assigned by omitting the link- local parameter. R2 R1 .2 R1(config)# ipv6 unicast-routing R1(config)# interface fa0/0 R1(config-if)# ipv6 address 2001:1::1/64 R1(config-if)# FE80::1
- 52. IPv6 Intro – Part 2 52 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning a Static Global Unicast Address R2 FE80::1 2001:1::1/64 R1 .2 R1# show ipv6 interface fa0/0 FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::1 [TEN] Global unicast address(es): 2001:1::1, subnet is 2001:1::/64 [TEN] Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds ND router advertisements are sent every 200 seconds ND router advertisements live for 1800 seconds Hosts use stateless autoconfig for addresses. R1#
- 53. IPv6 Intro – Part 2 53 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Configuring an EUI-64 IPv6 Global Address R1# config t R1(config)# int fa0/1 R1(config-if)# ipv6 add 2001::/64 eui-64 R1(config-if)# do show ipv6 interface fa0/1 FastEthernet0/1 is administratively down, line protocol is down IPv6 is enabled, link-local address is FE80::211:92FF:FE54:E2A1 [TEN] Global unicast address(es): 2001::211:92FF:FE54:E2A1, subnet is 2001::/64 [EUI/TEN] Joined group address(es): FF02::1 FF02::2 FF02::1:FF54:E2A1 MTU is 1500 bytes <output omitted>
- 54. IPv6 Intro – Part 2 54 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public EUI-64 IPv6 Global Address – Example 2 R1(config)# interface loopback 100 R1(config-if)# ipv6 address 2001:8:85a3:4289::/64 eui-64 <output omitted> R1# show ipv6 interface loopback 100 Loopback100 is up, line protocol is up IPv6 is enabled, link-local address is FE80::21B:D5FF:FE5B:A408 Global unicast address(es): 2001:8:85A3:4289:21B:D5FF:FE5B:A408, subnet is 2001:8:85A3:4289::/64 [EUI] Joined group address(es): FF02::1 FF02::2 FF02::1:FF5B:A408 MTU is 1514 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ND DAD is not supported ND reachable time is 30000 milliseconds Hosts use stateless autoconfig for addresses.
- 55. IPv6 Intro – Part 2 55 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning Multiple IPv6 Addresses Interfaces can have multiple IPv6 addresses assigned to them. These addresses can be used simultaneously. What would happen if we configured 2 different IPv4 addresses and 2 different IPv6 addresses on the same interface? R2 R1 .2 R1(config)# interface fa0/0 R1(config-if)# ip address 10.20.20.1 255.255.255.0 R1(config-if)# ip address 10.10.10.1 255.255.255.0 R1(config-if)# ipv6 address 2001:1::1/64 R1(config-if)# ipv6 address 2002:1::1/64 R1(config-if)# end R1# FE80::1 2001:1::1/64
- 56. IPv6 Intro – Part 2 56 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning Multiple IPv6 Addresses The second IPv4 entry replaced the first entry. However, both IPv6 addresses have been assigned to the Fa0/0 interface. R2 R1 .2 R1# show run interface fa0/0 Building configuration... Current configuration : 162 bytes ! interface FastEthernet0/0 ip address 10.10.10.1 255.255.255.0 duplex auto speed auto ipv6 address 2001:1::1/64 ipv6 address 2002:1::1/64 ipv6 address FE80::1 link-local end R1# 10.10.10.1/24 FE80::1 2001:1::1/64 2001:2::1/64
- 57. IPv6 Intro – Part 2 57 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Unicast Address Assignment Link-local (FE80::/10) Address Assignment Static IPv6 Address Dynamic Automatically created (EUI- 64 format) if a global unicast IPv6 address is configured Global Routable Address Assignment Static IPv6 Address IPv6 Unnumbered Dynamic Stateless Autoconfigur ation DHCPv6 Configuring IPv6 Unnumbered Addresses
- 58. IPv6 Intro – Part 2 58 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Enable IP Unnumbered Enable IPv6 on an interface without an explicit IPv6 address. Router(config-if)# ipv6 unnumbered interface-type interface-number
- 59. IPv6 Intro – Part 2 59 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning IPv6 Unnumbered Interfaces S0/0/0 R1(config)# interface loopback 10 R1(config-if)# ipv6 address 2001:1::10/64 R1(config-if)# exit R1(config)# R1(config)# interface s0/0/0 R1(config-if)# ipv6 unnumbered loopback 10 R1(config-if)# no shut R1(config-if)# R1 Lo10: 2001:1::10/64 R2
- 60. IPv6 Intro – Part 2 60 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Assigning IPv6 Unnumbered Interfaces R1# show ipv6 interface s0/0/0 Serial0/0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::222:55FF:FE18:7DE8 No Virtual link-local address(es): Interface is unnumbered. Using address of Loopback10 No global unicast address is configured Joined group address(es): FF02::1 FF02::2 FF02::1:FF18:7DE8 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds (using 16238) Hosts use stateless autoconfig for addresses. R1# S0/0/0 R1 Lo10: 2001:1::10/64 R2
- 61. IPv6 Intro – Part 2 61 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public IPv6 Unicast Address Assignment Link-local (FE80::/10) Address Assignment Static IPv6 Address Dynamic Automatically created (EUI- 64 format) if a global unicast IPv6 address is configured Global Routable Address Assignment Static IPv6 Address IPv6 Unnumbered Dynamic Stateless Autoconfigur ation DHCPv6 Configuring IPv6 Unicast Addresses
- 62. IPv6 Intro – Part 2 62 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Enable Autoconfiguration of a Router Interface. Enable the automatic configuration of an IPv6 address. Router(config-if)# ipv6 address autoconfig [default] Enables stateless autoconfiguration which: • Automatically configures an IPv6 address using the interface. • Enables the IPv6 processing on the interface. Addresses are configured depending on the prefixes received in RA messages from other routers.
- 63. IPv6 Intro – Part 2 63 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Alter the Neighbor Detection Timeframe Alter the neighbor detection parameter. Router(config-if)# ipv6 nd reachable-time milliseconds Specifies the number of milliseconds that a remote IPv6 node is considered reachable. Enables a router to detect unavailable neighbors more quickly.
- 64. IPv6 Intro – Part 2 64 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Statically Add a Neighbor Add a neighbor router to the neighbor discovery cache. Router(config)# ipv6 neighbor ipv6-address interface-type interface- number hardware-address
- 65. IPv6 Intro – Part 2 65 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public R1(config)# ipv6 unicast-routing R1(config)# int fa0/1 R1(config-if)# ipv6 addr 2001:db8::/64 eui-64 R1(config-if)# ipv6 enable R1(config-if)# no shut Router EUI-64 Autoconfig Example Only the network part of the address is supplied in the ipv6 address command
- 66. IPv6 Intro – Part 2 66 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Router Interface EUI-64 Example Router’s fa0/1 interface generates its link-local address and global unicast address • Router#sho ipv6 int bri FastEthernet0/0 [administratively down/down] FastEthernet0/1 [up/up] FE80::201:42FF:FE44:3C02 2001:DB8::201:42FF:FE44:3C02
- 67. IPv6 Intro – Part 2 67 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Good Practice in IPv6 Addressing Hosts should have globally routable addresses created with stateless autoconfiguration • Use 2001 prefix • Use /64 EUI-64 to create them Serial links between routers should not use globally routable addresses • Use FC00 (Unique-local) prefix and static addressing • Use a prefix length /64 • However, the prefix length could also be, for example, /112
- 68. IPv6 Intro – Part 2 68 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public Resources http://www.iana.org/numbers/ http://www.cisco.com/go/ipv6 IP address tools (which also support IPv6): IPAT http://nethead.de/index.php/ipat ipv6gen http://techie.devnull.cz/ipv6/ipv6gen/ freeipdb http://home.globalcrossing.net/~freeipdb/
- 69. IPv6 Intro – Part 2 69 © 2007 – 2010, Cisco Systems, Inc. All rights reserved. Cisco Public
Editor's Notes
- #1: This is the second of 2 PowerPoint presentations that introduce IPv6. The two presentations combined provide information on the purpose and benefits of IPv6 as well as an explanation of the 128-bit addressing structure. NOTE: Most of the slides have notes that provide additional detail and background information. These can be used for student handouts, if desired, and can also be used as lecture points for the instructor.
- #2: This objectives of this lesson are to provide additional details on IPv6 address types with a focus on unicast and multicast addresses. This lesson describes methods of address assignment including stateless autoconfiguration. IPv6 subnetting and address aggregation are also discussed. The final section provides information on configuration and verification of IPv6 on networking devices.
- #3: This section provides additional details on IPv6 address types with a focus on unicast and multicast addresses.
- #4: As we have seen in Lesson 1, the IPv6 address space is very large. The first four Hexadecimal digits of the prefix help to classify the various blocks of IPv6 addresses. The ability to identify an address type by its prefix is essential to understanding IPv6. In the table, the prefixes highlighted in red are important ones to remember. The largest block of assignable addresses, from Hex 2000 to Hex 3FFF, is known as the aggregatable global unicast range which represents approximately 12.5% of the total IPv6 address space. From this range, only addresses from 2001::/3 are currently being assigned by IANA for public use on IPv6 Internet. This is less than 2% of the total IPv6 address space.
- #5: Some of the special IPv6 addresses and prefixes are similar to IPv4. The ones shown here are particularly useful to remember. For example, IPv6 address ::/0 is analogous to IPv4 quad zero address 0.0.0.0 0.0.0.0, for use in defining static default routes. IPv6 address ::1/128 is analogous to IPv4 local host loopback address 127.0.0.1.
- #6: As with IPv4, Unicast is the largest and most important category of IPv6 addresses. The two most important address types in this category are Link-local and Global Routable addresses. Link-local addresses are used for communication between devices on a particular link. Global routable addresses are assigned to end devices for communication over the Internet. Each of these can be created either statically or dynamically as we will see later in this presentation. Note that every device or interface that has a Global routable address will also have a Link-local address.
- #7: Link-local addresses play an important role in the operation of IPv6. They are used for automatic address configuration, neighbor discovery, router discovery, and by many routing protocols. Packets with a link-local destination must stay on the link where they have been generated. Routers that could forward them to other links are not allowed to do so because there has been no verification of uniqueness outside the context of the origin link. Although link-local addresses are not routable they are often used by routing protocols for neighbor communication and updates.
- #8: When communicating using a link-local address, the outgoing interface must be specified because every IPv6 interface is connected to FE80::/10. For example, if you ping the neighbor’s link-local address, you will be asked to input the interface from which you wish to ping. Note that just enabling IPv6 on a router interface (Ethernet or Serial) and/or assigning the interface an IPv6 routable unicast address automatically creates an EUI link-local address. Link-local addresses can also be created statically using IOS commands.
- #9: The output from the show ipv6 interface command displays the Link-local address, which begins with FE80. The global unicast address, which begins with 2001, is also displayed. Global unicast addresses will be covered next.
- #10: A global unicast address is an IPv6 address from the global public unicast prefix (2001::/16). These addresses are routable on the global IPv6 Internet. The structure enables aggregation of routing prefixes to reduce the number of routing table entries in the global routing table. Global unicast addresses are aggregated upward through organizations and eventually to the ISPs. Additional information on IPv6 address subnetting and aggregation is provided later in this lesson.
- #11: The routable global unicast address typically consists of three parts: The first 48 bits of the address is the global routing prefix, which is assigned by an ISP and is derived from a /32 ISP prefix. The next 16 bits is the subnet ID (/49 thru /64), which may be use internally by an organization to subdivide its networks. The remaining 64 bits of the address is the device interface ID, typically in EUI-64 bit format, which will be discussed later.
- #12: The current IANA global routing prefix uses the range that starts with binary 0010 (2000::/3). Addresses with a prefix of 2000::/3 (0010) to E000::/3 (1110) are required to have 64-bit interface IDs in the extended universal identifier (EUI)-64 format. IPv6 prefix allocation is defined by policies at IANA and the regional registries.
- #13: The subnet ID can be used by an organization to create their own local addressing hierarchy. This 16-bit field allows up to 65,536 individual subnets. This number of subnets is comparable to an IPv4 network address such as 10.0.0.0/8 with 16 bits of subnetting using a /24 mask, however the IPv4 network/subnet combination will allow only 256 hosts per subnet and the IPv6 combination allows a huge number of hosts per subnet (2 to the 64th power).
- #14: In the sample output from the show ipv6 interface command, the /48 address assigned by the ISP is 2001:8:85A3, represented by three 16-bit fields. Note that the second 16-bit field in the output (with a value of Hex 0008) has the three leading zeros suppressed. The subnet number is Hex 4290 (which translates to the 17,040th subnet decimal) The interface address is 222:55FF:FE18:7DE, which is the EUI-64 host portion of the address. Also note that the /64 subnet is also clearly identified as highlighted in the output in green.
- #15: Multicasting is key to many IPv6 functions and performs a similar function as with IPv4. With IPv6 it is also a replacement for the broadcast address. IPv6 multicast addresses are defined by the prefix FF00::/8. An interface may belong to any number of multicast groups.
- #16: The first octet of a multicast address is always Hex FF or decimal 255 (eight binary ones). The second octet of the address contains the prefix and transient (lifetime) flags, and the scope of the multicast address.
- #17: The multicast addresses FF00:: to FF0F:: have the T flag set to 0 and are therefore permanent and reserved. For example, a multicast address starting with FF02::/16 is a permanent address. The last 4 bits of the /16 prefix represent the scope. For example, the scope of FF05 is site specific (Decimal 5 is binary 0101) and is used by Network Time Protocol (NTP) with IPv6.
- #18: Some examples of reserved IPv6 multicast address are listed here. IPv6 multicast address FF02::9 represents all RIP routers on a link. This is analogous to IPv4 multicast address 224.0.0.9 for RIPv2 routers. Address FF02::1:FFxx:xxxx is a solicited-node multicast addresses and is used for host autoconfiguration and neighbor discovery. It serves a function similar to ARP in IPv4.
- #19: With the solicited-node multicast addresses FF02::1:FFxx:xxxx, xx:xxxx is the far right 24 bits of the corresponding unicast or anycast address of the node. In the output shown, the value Hex 18:7DE8, which is the last 24 bits of the EUI-64 interface ID, is appended to the solicited-node multicast address (FF02::1:FF). Note that, when an IPv6 address is configured on the R1 interface, the interface automatically joins the “All Nodes” multicast group (FF02::1) and the “All Routers” multicast group (FF02::2).
- #20: The solicited-node multicast address (FF02::1:FF) is used for the neighbor discovery (ND) process and stateless address autoconfiguration. The Neighbor discovery (ND) process is a very important function in IPv6. It is used to determine the local-link address of a neighbor, the routers on the link and default route. It actively keeps track of neighbor reachability and sends network information from routers to hosts.
- #21: Neighbor Discovery (ND) uses four ICMPv6 packet types as described in the table: Neighbor Solicitation (NS) and Neighbor Advertisement (NA) ICMPv6 messages are used to determine link-layer addresses, neighbor reachability and for duplicate address detection (DAD). Router Solicitation (RS) and Router Advertisement (RA) ICMPv6 messages are used between hosts and routers to communicate prefixes and facilitate on-link determination or address configuration.
- #22: ICMPv6 Neighbor Solicitation (NS) is similar to IPv4 ARP in that it is used when resolving an IPv6 address to a MAC address. In the example, Host A needs to send a packet to Host B but needs the MAC address of host B. Host A sends a Neighbor Solicitation (ICMPv6 message type 135) on the link. The source address is the IPv6 unicast address of the source node, Host A.
- #23: Each destination node that receives the NS responds with an ICMPv6 NA message type 136. The source address of this message is the IPv6 address of the responding node, and the destination address is the IPv6 address of the original source node (which sent the NS). The data portion includes the link-layer address of the destination node (Host B). The two devices can now communicate on the link because they know each other’s link-layer addresses.
- #24: Stateless address autoconfiguration (SLAAC) offers new functionality in IPv6. Every IPv6 system is able to build its own unicast global address. This enables new devices such as cellular phones, wireless devices, home appliances, and home networks, to easily connect to the Internet. No configuration or DHCP server is required (other than the IPv6 address of the gateway router interface). An IPv6 router periodically sends network information on the local link using a Router Advertisement (RA). This includes the IPv6 prefix and default IPv6 route for use by hosts when autoconfiguring. IPv6 workstations and servers listen on the local link and configure themselves with an IPv6 Address and a default route. The IPv6 address is created by appending the host link-layer (MAC Address) in EUI-64 (Extended Unique Identifier) format to the /64 prefix sent by the router.
- #25: Shown here is a basic illustration how Autoconfiguration enables a host to configure its own IPv6 address (and default gateway) using a Router Advertisement (RA). The IPv6 host builds its IPv6 global unicast address by combining the prefix sent from the router and its Link-layer EUI-64 Address For stateless autoconfiguration to work, the router gateway interface IPv6 address must be pre-configured and unicast routing must be enabled on the interface. Note that when an IPv6 host is booting it sends out a Router Solicitation (RS) requesting routers to immediately generate an RA rather than wait for the next scheduled RA.
- #26: With EUI-64 IPv6 addresses the first 64 bits are the network portion of the address and are either specified statically or learned via stateless autoconfiguration. The interface ID (second 64-bits) is the host portion of the address and is automatically generated by the router or host device. The interface ID on an Ethernet link is based on the 48-bit MAC address of the interface with an additional 16-bit 0xFFFE inserted in the middle of the MAC address. This creates an extended unique identifier referred to as the EUI-64 format. EUI-64 addresses can be generated on IPv6 router interfaces and on IPv6 hosts.
- #27: The EUI-64 standard inserts a 16-bit Hex value FFFE in the middle at the 24th bit of the MAC address to create a unique 64-bit interface identifier. The seventh bit in the high-order byte is set to 1 to indicate the uniqueness of the interface ID.
- #28: This graphic provides some additional information on how the Host/Router stateless autoconfiguration process works. When Host A boots up, it sends a router solicitation (RS) message to the “All Routers” multicast address (FF02::2) requesting a router advertisement (RA). Router R1 on the link responds with an RA to the “All Nodes” multicast address (FF02::1) so that Host A has the information it needs to autoconfigure its IPv6 address. The prefix included in the RA is used as the /64 prefix for the host address. The interface ID used is the EUI-64 format interface ID for the host.
- #29: The host now creates an IPv6 address using the RA supplied by the router, as well as a link-local address and a solicited-node address. Next it needs to verify that it’s new IPv6 address is unique on the link using the Duplicate Address Detection (DAD) process. DAD is used during the autoconfiguration process to ensure that no other device is using the autoconfiguration address. During the DAD phase, Host A sends an NS to query if another node on the link has the same IPv6 address. If a node responds to the request, it means that the IPv6 address is already in use, and Host A needs to be manually configured.
- #30: This section provides basic information on IPv6 subnetting and address aggregation.
- #31: IPv6 subnetting is based on the network address assigned by the ISP and the needs of the organization to subdivide that space. In this example, The network address assigned to the organization is 2001:0025:0012 (the first 48 bits). The leading zeros are suppressed in the address. The site prefix is /48 decimal and the site prefix plus subnets (AB12) is /64. IPv6 uses the same notation as CIDR in IPv4. There are no subnet masks, only a slash (/) and a decimal number representing the number of bits in the network/subnet. In addition, there are no reserved subnet addresses (network or broadcast) with IPv6 so it is not necessary to account for the first and last address on a subnet when determining the number of valid host addresses (no more n^2 – 2).
- #32: IPv6 uses CIDR notation, as does IPv4, to identify the prefix length. The normal prefix length (total number of network bits) for an IPv6 address is 64. The rightmost 16 bits of the prefix (/49 to /64) allow for 65,535 LANs.
- #33: The global routing prefix (/32) is assigned to a service provider by the Internet Assigned Numbers Authority (IANA). The next 16 bits is the SLA or site level aggregator and is a /48 network address assigned to a customer by their service provider. The SLA can be viewed as a subnet ID from the ISPs perspective. The 16-bit LAN ID represents individual networks within the customer site and is administered by the customer. The total network ID is comprised of the Global prefix (32 bits), The SLA (16 bits) and the LAN subnet ID (16 bits) resulting in a prefix length of /64. The remaining 64 bits are the Interface ID and represent an individual host on a subnet or LAN.
- #34: This slide summarizes the prefix lengths and subnet/host structure of a standard IPv6 global unicast address.
- #35: The first three bits are fixed (001) which results in 61 Global Network bits and 64 Host bits. You do NOT get to “borrow” host bits any more (nor is it necessary, due to the huge IPv6 address space) 2^64 hosts are theoretically possible in a single broadcast domain. With autoconfiguration it is not necessary to configure them. Host devices can be moved around and will automatically generate their EUI-64 addresses. VLANs become the method of isolation.
- #36: The large IPv6 address space is hierarchical by design which allows for multiple levels, greatly facilitating address assignment and aggregation.
- #37: The IPV6 address space is huge and hierarchical. A prefix can be assigned to an organization that can handle the entire network, even for very large organizations, and still have plenty of room for future growth. ISPs summarize routes so that all customer prefixes can be aggregated into one prefix and made available to the Internet. Aggregation provides efficient and scalable routing and fewer routes in the global IPV6 routing table with an enforced hierarchical VLSM model.
- #38: In this example, all subnets of the /48 networks assigned to Customers A1 and A2 can be summarized by ISP A to a single /35 network address to be advertised to the Internet. Note that if the customer changes their provider, they must change the IPv6 Prefix.
- #39: In this example, an ISP has been assigned a /32 address by the regional registry. This leaves 16 SLA bits which yields 65,535 /48 networks that can be assigned to various customer sites.
- #40: The customer can subdivide the 16 bits as desired to number their internal /64 subnets. Several examples are shown here. For a smaller organization, the ISP might assign a /56 prefix instead of a /64, which would still allow the customer to create 256 subnets (2^8 = 256).
- #41: Applying one of these /64 subnet prefixes to a router interface allows the router to provide it to hosts on the subnet link so they can autoconfigure their IPv6 addresses.
- #42: This section provides an examples IPv6-related commands that can be used to configure and verify IPv6 implementations.
- #43: Many IPv6 show commands are available to verify IPv6 implementations. Most of them are similar to their IPv4 counterparts with the only difference being the replacement of the keyword “ip” with “ipv6” in the command. For example, the IPv6 version of the IPv4 show ip interface command is show ipv6 interface.. The IPv4 show ip route command becomes show ipv6 route. Some useful IPv6 show commands are listed here. Note that the commands show ipv6 routers and show ipv6 neighbors are unique to IPv6.
- #44: Several useful IPv6 debug commands are also available to verify IPv6 implementations.
- #45: The Cisco IOS ipv6 unicast routing command is required before implementing either static or dynamic routing with IPv6 global unicast addresses. The command is not needed before configuring IPv6 interface addresses. It is also required for the interface to provide stateless auto-configuration. Configuring no ipv6 unicast-routing disables the IPv6 routing capabilities of the router and the router acts as an IPv6 end-station.
- #46: The command ipv6 cef enables express forwarding and improves overall packet processing performance. It is disabled by default.
- #47: Link-local and global unicast addresses can be assigned statically or dynamically. This section covers manual assignment of these addresses.
- #48: To configure a global or link-local address on a router interface use the ipv6 address command. You may manually configure a specific global or link-local unicast address or allow the IOS to generate it by specifying eui-64. The link-local parameter configures the address as the link-local address on the interface. The omission of the link-local parameter configures the address as the global unicast IPv6 address on the interface. The eui-64 parameter completes a global IPv6 address automatically using an EUI-64 format interface ID.
- #49: Link-local addresses are created: Automatically using the EUI-64 format if the interface has IPv6 enabled on it or a global IPv6 address configured. Manually by specifying an interface ID. Manually configured interface IDs are easier to remember than EUI-64 generated IDs. Note that the prefix mask is not required on link-local addresses because they are not routed. This example configures a manual Link-local address of FE80::1 (actually FE80:0:0:0:0:0:0:1).
- #50: The output from the show ipv6 interface command confirms the link-local address previously configured and that no IPv6 global unicast is configured yet.
- #51: Global Unicast IPv6 addresses are assigned manually by omitting the link-local parameter. For example, IPv6 address 2001:1::1/64 is configured on R1’s Fast Ethernet 0/0 interface. The entire address is manually configured and the EUI-64 format was not used. Note that, if an IPv6 global address is configured first or if ipv6 is simply enabled on the router interface, an EUI-64 Link-local address (FE80) will automatically be created.
- #52: The output from the show ipv6 interface command confirms that a static IPv6 global unicast address is now configured on the F0/0 interface.
- #53: In this IPv6 global unicast example, a 64-bit prefix is assigned and the Link-local interface ID is generated automatically using EUI-64. Configuring a global unicast IPv6 address on an interface also automatically generates a link-local interface (EUI-64) address.
- #54: In this example, a /64 prefix is provided and the interface ID is generated automatically using EUI-64.
- #57: In this section, we configure an IPv6 global unicast address on an interface statically using the address of another interface.
- #58: This feature is similar to its IPv4 counterpart. It enables IPv6 processing on an interface without assigning an explicit IPv6 address to the interface. The unnumbered interface will use the IPv6 address of the interface specified by the interface-type interface-number parameters as the source address of traffic from the configured interface. The interface specified in the command must be in the “up” state.
- #59: IPv6 supports unnumbered interfaces to enable IPv6 processing on an interface without assigning an explicit IPv6 address to the interface. In this example, a loopback interface is created and configured with an IPv6 address. The Serial 0/0/0 interface is then configured to use the IPv6 address of the loopback interface.
- #60: The output confirms that the Serial 0/0/0 interface uses the IPv6 address from interface loopback 10.
- #61: In this section, we configure a router interface to support stateless autoconfiguration of hosts on the local link.
- #62: In this example, the router interface can autoconfigure itself by appending its IPv6 interface identifier (in EUI-64 format) to the local link 64-bit prefix received from another router on the link. (Optional) If the default keyword is used it causes a default route to be installed using that default router. The keyword can be specified only on one interface.
- #63: This feature enables a router to detect unavailable neighbors more quickly. The milliseconds parameter (from 0 to 3,600,000) configures the amount of time that a neighbor waits before sending an update to the router. Default is 0 milliseconds (unspecified time) in router advertisements and 30,000 (30 seconds) for the neighbor discovery activity. Caution: A very short time may consume more network bandwidth and processing resources.
- #64: This command statically configures an entry in the IPv6 neighbor discovery cache, mapping the IPv6 address to the hardware address on an interface.
- #65: A router interface IPv6 address can be configured using the autoconfig option (if another router on the link that can provide the prefix) or by specifying the /64 prefix and letting the router autoconfigure its IP address (as shown here) using EUI-64. When configuring the interface, only the network portion is supplied in the command. Autoconfiguration is normally used on interfaces that have MAC addresses. The ipv6 enable command automatically configures an IPv6 link-local unicast address on the interface while also enabling the interface for IPv6 processing.
- #66: The router automatically generates its link-local address (FE80). The globally routable address is generated by stateless autoconfiguration (2001). Note that the show command includes “ipv6”