第二章 IPv6/IPv4 轉換技術

1. 第二章IPv6/IPv4轉換技術

2. 章節目錄 • 簡介 • IPv4/IPv6 雙重架構機制(Dual Stack) • 通道機制(Tunnel) • 位址協定轉換機制(Translator) • 參考文獻

3. 簡介

4. 簡 介

5. NGtrans 規劃之轉換機制

6. 轉換機制比較

7. IPv4/IPv6 雙重架構機制(Dual Stack)

8. IPv4/IPv6雙重架構機制

9. 簡易雙重架構機制 • RFC1933->RFC2893(Standard)

10. 簡易雙重架構機制 • IPv4 Stack功能啟動，而IPv6功能關閉(即IPv4-only node) • IPv6 Stack功能啟動，而IPv4功能關閉(即IPv6-only node) • IPv4 Stack及IPv6 Stack功能皆啟動(node具組態切換功能)

11. 簡易雙重架構機制+Tunneling 6over4 • RFC 1933 • RFC 3056 • RFC 3053 IPv4 IPv6 IPv6 6to4 IPv4 IPv6 IPv6 Tunnel Broker IPv4 IPv4/ IPv6 IPv6

12. DSTM雙重架構機制 • DSTM雙重架構機制係確保IPv4之應用能於IPv6網路上運作

13. DSTM雙重架構機制 • Draft-ietf-ngtrans-dstm-08.txt

14. DSTM雙重架構機制 • 一IPv6 node與一IPv4 node互通時,其先取得一暫用之IPv4位址(DSTM伺服器提供) • 此暫用之IPv4位址係由DNS及DHCPv6協調產生 • 傳送時藉由動態通道技術包裝IPv4封包

15. DSTM雙重架構機制

16. DSTM雙重架構機制運作(v6  v4) 一個應用之封包傳送由A node(IPv6)至C node(IPv4) A node要求DSTM伺服器給予一IPv4 Source位址 DSTM伺服器回覆A node暫用之IPv4 address位址及DSTM Gateway的IPv6位址 A node 產生IPv4封包

17. DSTM雙重架構機制運作(v6  v4) 一個A node至B node的通道建立(送IPv6封包)。 B node拆除IPv6封包頭，然後將此IPv4封包送給C node。 B node記錄A node的IPv4與IPv6位址，然後Mapping在它的 RoutingTable中。

18. DSTM雙重架構機制 DNS Server Global Internet DHCPv6 Server IPv4 Routing Intranet Company ABC IPv4 Host Z IPv6 Routing DSTM Router IPv4 Router Intranet ABC IPv6/IPv4 DFZ IPv6/IPv4 Host X Dynamic Tunnel Interface DHCPv6 Client IPv4 Router IPv4 Routing - Host X從DHCPv6伺服器 取得IPv4-Mapped 位址及 DSTM伺服器的端點位置 - Host X can now communicate with IPv4 to Hosts Y and Z End-2-End. IPv4 Host Y

19. DNS Server Global Internet DHCPv6 Server IPv4 Routing Intranet Company ABC IPv4 Host Z DSTM IPv6 Routing Domain DSTM Router IPv4 Router Intranet ABC IPv6/IPv4 DFZ IPv6/IPv4 Host X Dynamic Tunnel Interface DHCPv6 Client IPv4 Router IPv4 Routing - Host X obtains IPv4-Mapped Address, Port Range, and TEP for DSTM Router, from DHCPv6 Server. - Host X can now communicate with IPv4 to Hosts Y and Z End-2-End. - DSTM Router can now use a single address for multiple IPv6/IPv4 Hosts within the DSTM IPv6 Routing Domain. IPv4 Host Y DSTM雙重架構機制 + Port Range

20. DNS Server Global Internet DHCPv6 Server IPv4 Routing Intranet Company ABC IPv4 Host Z DSTM IPv6 Routing Domain DSTM Router IPv4 Router Intranet ABC IPv6/IPv4 DFZ IPv6/IPv4 Host X Dynamic Tunnel Interface 6to4 Dynamic Interface DHCPv6 Client IPv4 Router IPv4 Routing Host X obtains IPv4-Mapped Address and Port Range only. TEP is not needed as 6to4 address is used to communicate to DSTM Router. IPv4 Host Y DSTM雙重架構機制6to4

21. SA= 200.4.5.6 DA= 100.0.1.1 SA= 100.0.1.1 DA= 200.4.5.6 200.4.5.6 IPv4 Only 100.0.0.1 SA= 200.4.5.6 DA= 100.0.1.1 SA= 100.0.1.1 DA= 200.4.5.6 100.0.1.1 = 2002:100.0.0.1::2:2 SA= 200.4.5.6 DA= 100.0.1.1 SA= 2002:200.4.5.6:: DA= 2002:100.0.0.1::2:2 SA= 200.4.5.6 DA= 100.0.1.1 SA= 2002:200.4.5.6:: DA= 2002:100.0.0.1::2:2 IPv6 Only Routing DHCPv6+ 100.0.1.1 IPv4? SA= 2002:100.0.0.1::2:2 DA= 2002:200.4.5.6:: SA= 100.0.1.1 DA= 200.4.5.6 SA= 2002:100.0.0.1::2:2 DA= 2002:200.4.5.6:: SA= 100.0.1.1 DA= 200.4.5.6 SA= 100.0.1.1 DA= 200.4.5.6 SA= 200.4.5.6 DA= 100.0.1.1 2002:100.0.0.1::2:2 Dual stack Node DSTM雙重架構機制+ 6to4

22. DSTM Server DHCPv6+DNS Server Global Internet IPv4 Routing Intranet Company ABC IPv4 Host Z DSTM IPv6 Routing Domain DSTM Router IPv4 Router Intranet ABC IPv6/IPv4 DFZ IPv6/IPv4 Host X Dynamic Tunnel Interface 6to4 Dynamic Interface DHCPv6 Client IPv4 Router IPv4 Routing - Host Y and Z can now do DNS Lookup for Host X that has only IPv6 address. - DNS Y or Z query will go to DSTM Server - DSTM server will assign Host X an IPv4 address and return Host Y or Z back that address IPv4 Host Y DSTM雙重架構機制IPv4 Query to IPv6 Address

23. DSTM Server Mechanisms and Extensions IPv6 Services IPv6 Network IPv6 Network IPv6 Router SIIT-MIPv6-WLAN-3G Router/Gateway IPv6 Hosts IPv4 Network IPv4 Services IPv4 Router End-2-End Communications DSTM雙重架構機制3G and WLAN Network

24. DSTM雙重架構機制應用 Roaming Scenario • Giving IPv4 addresses to visitors can become expensive: • Visited Network offers IPv6 connectivity only • Home network offers connection to the v4 world via DSTM • to Corporate Intranet • to Global Internet 802.11 Y Home Net ed0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 inet6 fe80::200:c0ff:fe11:cba0%ed0 prefixlen 64 scopeid 0x1 inet6 3ffe:305:1002:4:200:c0ff:fe11:cba0 prefixlen 64 inet6 2001:660:282:4:200:c0ff:fe11:cba0 prefixlen 64 ether 00:00:c0:11:cb:a0 gif0: flags=8011<UP,POINTOPOINT,MULTICAST> mtu 1280 inet6 fe80::200:c0ff:fe11:cba0%gif0 --> :: prefixlen 64 inet 192.108.119.197 --> 192.108.119.199 netmask 0xffffffff physical address inet6 3ffe:305:1002:4:200:c0ff:fe11:cba0 --> 3ffe:305:1002:1:200:c0ff:fe85:cba0

25. DSTM雙重架構機制建置 • BSD « INRIA » • DSTM gateway • DSTM server (RPC) • Client: manual conf, dynamic conf • BSD Kame • Client: Manual Configuration • Linux • Client: Manual Configuration • Windows : ?

26. DSTM機制之freeware軟體

27. 通道機制(Tunnel)

28. 通道機制

29. 通道機制封包格式

30. 通道之協定運作

31. 通道機制 • 手動建置(Manually Configured) • 半自動建置(Semi-automated) • 全自動建置(Automated)

32. 通道機制-手動建置

33. 通道機制-全自動建置

34. 6over4通道機制封包格式

35. 6over4通道機制

36. 6over4通道機制

37. 6to4自動通道機制

38. 6to4封包格式

39. 6to4自動通道機制

40. 6to4自動通道機制-Interface

41. 6to4自動通道機制 Routing Table

42. 通道代理者(Tunnel Broker)機制

43. 通道代理者機制運作 1)使用者聯結Tunnel Broker進行註冊事宜 (registration procedure) 2) 使用者再次聯結Tunnel Broker，提供使用者端點資訊(包括：IP位址、作業系統、IPv6支援軟體等) 3) Tunnel Broker建置網路端點、DNS伺服器及使用者端點組態 4) 通道建置完成，使用者可以直接連至IPv6網路

44. 通道代理者機制運作

45. 通道代理者機制運作 (1)

46. 通道代理者機制運作(2)

47. 通道代理者(Tunnel Broker)機制 Implementation

48. 通道代理者機制服務

49. 通道代理者機制服務

50. 通道代理者(Tunnel Broker)機制Scripts and Parameters