RFC 4193 Unique Local IPv 6 Unicast Addresses

  • Slides: 19
Download presentation
RFC 4193 - Unique Local IPv 6 Unicast Addresses Author: R. Hinden , B.

RFC 4193 - Unique Local IPv 6 Unicast Addresses Author: R. Hinden , B. Haberman Speaker: Zhi-Yu Wu 1

Outline l l l l Introduction Format Global ID Sample Code for Pseudo-Random Global

Outline l l l l Introduction Format Global ID Sample Code for Pseudo-Random Global ID Algorithm Analysis of the Uniqueness of Global IDs Renumbering and Site Merging Local Communication Global Routing 2

Introduction IPv 6 unicast address : l globally unique. l is not expected to

Introduction IPv 6 unicast address : l globally unique. l is not expected to be routable on the global Internet. l is routable inside of a more limited area such as a site l may also be routed between a limited set of sites. 3

Introduction l This document defines the format of Local IPv 6 addresses, how to

Introduction l This document defines the format of Local IPv 6 addresses, how to allocate them, and usage considerations. 4

Format 5

Format 5

Format(2) l l Prefix: FC 00: : /7 prefix to identify Local IPv 6

Format(2) l l Prefix: FC 00: : /7 prefix to identify Local IPv 6 unicast addresses. L : Set to 1 if the prefix is locally assigned. Set to 0 may be defined in the future. Global ID : 40 -bit global identifier used to create a globally unique prefix. Subnet ID : 16 -bit Subnet ID is an identifier of a subnet within the site. 6

Global ID l l Locally assigned Global IDs MUST be generated with a pseudo-random

Global ID l l Locally assigned Global IDs MUST be generated with a pseudo-random algorithm. Any network numbered using such a prefix is highly unlikely to have that address space clash with any other network that has another locally assigned prefix allocated to it. 7

Sample Code for Pseudo. Random Global ID Algorithm l l l Obtain the current

Sample Code for Pseudo. Random Global ID Algorithm l l l Obtain the current time of day in 64 -bit NTP (Network time protocol) format. Obtain an EUI-64 identifier from the system running this algorithm. Concatenate the time of day with the system-specific identifier in order to create a key. Compute an SHA-1 digest on the key , the resulting value is 160 bits. Use the least significant 40 bits as the Global ID. 8

Analysis of the Uniqueness of Global IDs l l P = 1 - exp(-N**2

Analysis of the Uniqueness of Global IDs l l P = 1 - exp(-N**2 / 2**(L+1)) Where P is the probability of collision, N is the number of interconnected Global IDs, and L is the length of the Global ID. 9

Analysis of the Uniqueness of Global IDs (Example) l The following table shows the

Analysis of the Uniqueness of Global IDs (Example) l The following table shows the probability of a collision for a range of connections using a 40 -bit Global ID field. 10

Site Border Router and Firewall Packet Filtering l l Site border routers and firewalls

Site Border Router and Firewall Packet Filtering l l Site border routers and firewalls should be configured to not forward any packets with Local IPv 6 source or destination addresses outside of the site. Site border routers should respond with the appropriate ICMPv 6 Destination Unreachable message to inform the source that the packet was not forwarded. 11

Renumbering and Site Merging l When merging multiple sites, the addresses created with these

Renumbering and Site Merging l When merging multiple sites, the addresses created with these prefixes are unlikely to need to be renumbered because all of the addresses have a high probability of being unique. 12

Local Communication l l In order for hosts to autoconfigure Local IPv 6 addresses,

Local Communication l l In order for hosts to autoconfigure Local IPv 6 addresses, routers have to be configured to advertise Local IPv 6 /64 prefixes in router advertisements, or a DHCPv 6 server must have been configured to assign them. In order for a node to learn the Local IPv 6 address of another node, the Local IPv 6 address must have been installed in a naming system (e. g. , DNS, etc. ) 13

Local Communication(2) l Nodes that are to only be reachable inside of a site:

Local Communication(2) l Nodes that are to only be reachable inside of a site: The local DNS should be configured to only include the Local IPv 6 addresses of these nodes. Nodes with only Local IPv 6 addresses must not be installed in the global DNS. 14

Local Communication(3) l Nodes that are to be limited to only communicate with other

Local Communication(3) l Nodes that are to be limited to only communicate with other nodes in the site: These nodes should be set to only autoconfigure Local IPv 6 addresses or to only receive Local IPv 6 addresses. 15

Local Communication(4) l Nodes that are to be reachable from inside of the site

Local Communication(4) l Nodes that are to be reachable from inside of the site and from outside of the site: The DNS should be configured to include the global addresses of these nodes. The local DNS may be configured to also include the Local IPv 6 addresses of these nodes. 16

Local Communication(5) l Nodes that can communicate with other nodes inside of the site

Local Communication(5) l Nodes that can communicate with other nodes inside of the site and outside of the site: These nodes should autoconfigure global addresses or receive global address. They may also obtain Local IPv 6 addresses via the same mechanisms. 17

Global Routing l l why using local addresses as globally-routed provider-independent addresses is unadvisable

Global Routing l l why using local addresses as globally-routed provider-independent addresses is unadvisable ? They are not mathematically guaranteed to be unique and are not registered in public databases. Collisions, while highly unlikely, are possible and a collision can compromise the integrity of the communications. 18

References: l l [NTP] Mills, D. , "Network Time Protocol (Version 3) Specification, Implementation

References: l l [NTP] Mills, D. , "Network Time Protocol (Version 3) Specification, Implementation and Analysis", RFC 1305, March 1992. [SHA 1] Eastlake 3 rd, D. and P. Jones, "US Secure Hash Algorithm 1 (SHA 1)", RFC 3174, September 2001. 19

IPv 6 Part 2 Unique Local Unicast AddressesIPv 6 Part 2 Unique Local Unicast Addresses
IPv 6 Part 2 Unique Local Unicast AddressesIPv 6 Part 2 Unique Local Unicast Addresses
Unique Local IPv 6 Unicast Addresses A reviewUnique Local IPv 6 Unicast Addresses A review
Unique Local IPv 6 Unicast Addresses A reviewUnique Local IPv 6 Unicast Addresses A review
Unique Local IPv 6 Unicast Addresses A reviewUnique Local IPv 6 Unicast Addresses A review
RFC RFC 2600 Internet Official Protocol Standards RFCRFC RFC 2600 Internet Official Protocol Standards RFC
IPv 6 Unique Local Addresses Update on IETFIPv 6 Unique Local Addresses Update on IETF
IPv 6 Unique Local Addresses Report on IETFIPv 6 Unique Local Addresses Report on IETF
Unicast n Multicast n Broadcast n unicast multicastUnicast n Multicast n Broadcast n unicast multicast
Unicast vs Multicast Unicast Host Router Multicast HostUnicast vs Multicast Unicast Host Router Multicast Host
Unicast vs Multicast Unicast Server Router Multicast ServerUnicast vs Multicast Unicast Server Router Multicast Server
RFC 4291 IPv 6 Adressaufbau IPv 6 AdressenRFC 4291 IPv 6 Adressaufbau IPv 6 Adressen
Lecture 8 IPv 6 Network Addresses IPv 4Lecture 8 IPv 6 Network Addresses IPv 4
ADF 4193 Low Phase Noise Fast Settling PLLADF 4193 Low Phase Noise Fast Settling PLL
Unique Community Unique Content Unique Conversations Our MissionUnique Community Unique Content Unique Conversations Our Mission
UNIQUE COMMUNITY UNIQUE CONTENT UNIQUE CONVERSATIONS About UsUNIQUE COMMUNITY UNIQUE CONTENT UNIQUE CONVERSATIONS About Us
Recommendations of Unique Local Addresses Usages draftietfv 6Recommendations of Unique Local Addresses Usages draftietfv 6
Considerations of Using Unique Local Addresses draftietfv 6Considerations of Using Unique Local Addresses draftietfv 6