0827_1040_1220_5.ppt
TRANSCRIPT
IPv6 Update
Windows® Networking & CommunicationsMicrosoft Corporation
2 2
Agenda
• Enabling new engaging experiences• Today’s networking challenges• IPv6 and transitional technologies• Microsoft’s IPv6 status and roadmap
3 3
Deliver New Engaging Experiences
Real-Time Communications (RTC)• Instant messaging, voice, video• Real-time game play / collaboration
Collaboration• Project workspaces solving a need• Sharing your files with other people
Shared experiences• Concert, company meeting, class• Distribution of product updates
Pervasive Collaborative Computing!
4 4
Today’s Networking Challenges
• Development and deployment of these new experiences is difficult
• End-to-end connectivity is broken• Network address translators (NATs) are widely deployed in
networks• Homes, WiFi hotspots, enterprises, branch offices
• Networks have a mix of private and public IP addresses• Firewalls prevent end-to-end connectivity• Users and applications becoming more mobile
• Developers implement custom solutions• Application development is restricted and expensive• Use client/server model rather than peer connectivity• Complicated workarounds and manual configuration
• IT and network administrators engineer expensive point solutions• Deploy specialized relays and gateways to enable communication
between applications and/or computers
5 5
IPv6 Addresses These Challenges
• Enables end-to-end connectivity• More public addresses worldwide• Improved allocation for ISPs to provision many public
addresses• Eliminates need for NATs and private addresses• Restores connectivity as appropriate
• Security for end-to-end trustworthy networking• Temporary addresses provide privacy across multiple
sessions• Authenticated, authorized, tamper proof, private
Communication• IPSec enables host-based authentication and security at
the IP layer to augment edge-based security or obscurity
• Mobile• No need for additional infrastructure or server-side routing
6 6
Misconceptions About IPv6
• IPv6 security concepts are vastly different from current practices
• Reasons for IPv6 have been eliminated by the development of NATs
• Requires a wholesale network upgrade from the current network infrastructure
Businesses Taking a “Wait-and-See” Attitude – Until Now…
7 7
IPv6: Where is the Market Today?
• “In 2005, all Sony products will be IPv6-enabled.”• – Mario Tokoro, Corp Exec VP, Sony Corp, March 2003
• Customers• Noticeable increased interest in IPv6 in over the past 3 months• Department of Defense
• Announced IPv6 migration starting in Oct 2003, completing in 2008
• Independent hardware vendors• Hardware vendors have the most-complete solutions• Routers with v6 – Hitachi, NEC, Fujitsu, Juniper, Cisco, Foundry• Infrastructure
• Firewalls – CheckPoint, NetScreen• Co-existence tunneling technologies available
• 6to4, ISATAP, Teredo• Devices – Nokia Communicator, Ericsson Bluetooth phone
• Independent software vendors• OS support available – Microsoft, Apple, Novell, SCO, Sun, Linux, BSD, etc.• Applications – Emerging
• Network service providers• Commercial services in Europe, Asia - NTT• Trails in Asia – Japan Telecom, KDDI, JENS, Chita, AboveNet Japan, KPN; Australia
– Telstra; U.S. – Verio• R&D underway for mobile carriers worldwide
8 8
Moving From v4 to v6
Deployment Method Description
Deployment Requirement
Relative Cost
Today’s Availability
Option A
Independently deploy IPv6-based consumer and knowledge worker applications
IPv6-enabled applications, hosted Teredo service
~0IPv6-enabled applications are limited
Option B
Deploy transition technologies into existing v4 infrastructure
ISATAP, 6to4 $$HW & SW support
available
Option C
Dual-stackInfrastructure upgrade
$$$HW support
available
Option D
Native IPv6IPv6 connectivity
$$$$
Connectivity is available in
Asia & Europe,
limited in U.S.
9 9
IPV6 Transition Technology Overview
• 6to4 tunneling• Provides IPv6 connectivity over the public IPv4 Internet• IPv6 traffic tunneled within IPv4• 6to4 addresses can be provided by routers, home gateway
devices, Windows ICS or by the host itself• ISATAP
• Provides IPv6 connectivity over IPv4 intranets• IPv6 tunneled within IPv4• Provides corporations with a central location to provision IPv6
addresses to IPv4 hosts• Can serve as a router between native IPv6 hosts and ISATAP
tunneled IPv6 users• Teredo
• Provides IPv6 connectivity when clients are behind a IPv4 NAT• IPv6 tunneled over UDP/IPv4• Runs only in unmanaged networks today• Uses servers to facilitate the creation of global IPv6 addresses
for Teredo clients
10 10
v4/v6 Co-Existence Strategy
v4 Internet
NAT
v66to4
v6
v4+ISATAP Enterprise
6to4 v6 Enterprise
ISATAP Router6to4 Router
ISATAP Router6to4 Router 6to4 Router
6to4 Router
6to4 RelayISATAP
Teredo Relay
6to4 RelayISATAP
Teredo Relay
v6
v6
NAT
Native v6 Enterprise6to4 Relay
6to4 Relay
v66to4 IDG
6to4 IDG
Teredo
v4 Enterprise V4-v6 Dual
Stack Enterprise
v6 Internet
11 11
Deploying IPv6 With Windows
• Multiple techniques are required to cover all deployment scenarios
• Microsoft is shipping automatic transition technologies today• Windows 2003 Server with ISATAP
• Provides centralized deployment of IPv6 connectivity throughout corporate network
• Windows XP SP1• Native, ISATAP and 6to4 connectivity• 6to4 and Teredo for unmanaged networks
• Simple installation and configuration to enable basic deployment
• Microsoft is working with network equipment providers to support these technologies in their hardware
12 12
Microsoft IPv6 Status• Operating system support
• Windows® XP SP1 and Windows Server 2003• Windows CE .NET, Pocket PC (2003), Windows Embedded SP1• Windows XP Advanced Networking Pack – IPv6 NAT traversal
(Teredo), IPv6 host firewall
• Developer support• Peer-to-peer SDK• Winsock, HTTP, RPC, DPlay• Visual Studio® & .Net Framework, DCOM• IPv6 application porting tools and guidelines
• Applications support• IIS 6.0, IE 6.0, Windows Media Server & Client, File Sharing
(Windows 2003), DNS Server (client on Windows 2003)• MSN Messenger file sharing • 3 Degrees www.threedegrees.com
• Built on P2P SDK and requires IPv6 connectivity
13 13
Microsoft IPv6 Deployment
Native v6 indicated by circles• Also in Cambridge, U.K.
ISATAP available in all buildings and all locations
• Native and ISATAP can communicate via ISATAP routers
• Microsoft publicly hosts Teredo servers on the Internet
14 14
Microsoft IPv6 Roadmap
Now Next Future
Sce
nari
os
•Developers:•Peer to peer applications for consumers
•Developers:•Peer to peer collaborative applications for knowledge workers
•Developers:•Peer to peer and all core infrastructure
•Enterprise connectivity•Anywhere access•Remote management•Mobility
•Client based transition:•6to4, Teredo NAT Traversal
•Public Teredo service
•Centralized transition:•ISATAP/Teredo server
•Client based transition, now +:
•Firewall Traversal•Full IPSec
•IPv6 Home gateways•6to4/Teredo relay
•Centralized transition :•ISATAP/Teredo server
•Native adoption:•Dual stack•6to4
•IPv6 Home gateways•6to4/Teredo/NativeD
eplo
ym
en
t m
eth
ods
Sce
nari
os
Deplo
ym
en
t m
eth
ods
15 15
IPv6 Partnerships• Microsoft staff
• Communicate the IPv6 message• Identify qualified customers• Help IPv6 team to connect and
engage dialogue with customers• Provide feedback to the IPv6
team• Become a Microsoft IPv6 expert
• Developers• Investigate peer-to-peer and
IPv6 as components for new development
• Develop IP-agnostic applications using new APIs
• Augment existing solutions with new capabilities
• Enterprises• Deploy IPSec• Deploy transition technologies• Use IPv6-enabled equipment and
applications for new deployments• Reduce/Remove NATs• Do not blindly block IPv6 traffic
• Service providers, carriers• Deploy transition technologies• Reduce/Remove NATs• Use IPv6-enabled equipment for
new deployments• Conduct native v6 trials and
provide native v6 connectivity• Require IPv6 capability for new
RFPs
16 16
Key Message: Don’t Wait
• Native IPv6 environment is NOT a prerequisite for achieving v6 benefits
• Application developers can use IPv6 NOW
• IPv4 will exist for a long time• Tunneling technologies enable IPv4
and IPv6 to co-exist
17 17
IPv6 Developer Support
• “IPv6 Guide for Windows Sockets Applications”http://msdn.microsoft.com/library/default.asp?url=/library/en-us/
winsock/winsock/ipv6_guide_for_windows_sockets_applications_2.asp
• Topics covered• Changing data structures• Function calls• Use of hard-coded IPv4 addresses• User interface issues• Underlying protocols
• Utility for IPv6-compliance• Checkv4
18 18
Tools and Resources• Tools:
• All standard command-line utilities support IPv6 (Ping, TraceRT etc.)
• NetSh – all IPv6, ISATAP configuration options• SMS Network Monitor
• Resources:• “Understanding IPv6” book by Joseph Davies
• MSPress; ISBN 0-7356-1245-5• Microsoft.com IPv6 site
• http://www.microsoft.com/ipv6 • IPv6/IPv4 coexistence and migration whitepaper
• http://www.microsoft.com/windowsserver2003/technologies/ipv6/ipv6coexist.mspx
19 19
More Information on IPv6
• Send feedback on Microsoft IPv6 implementations:• [email protected]
• Key IETF standards information:• Microsoft supports (by RFC)
• http://www.microsoft.com/windowsserver2003/technologies/ipv6/ipv6rfc.mspx
• IPv6 specification (ipngwg)• RFC 2460, 2463. 2373 - IPv6 protocol
ftp://ftp.isi.edu/in-notes/rfc2460.txt & 2463.txt & 2373.txt,
• IPv6 transition tools (ngtrans/v6ops)• RFC 3056 - Connection of IPv6 Domains via IPv4 Clouds (6to4)
ftp://ftp.isi.edu/in-notes/rfc3056.txt • Internet Draft - Tunneling IPv6 over UDP through NATs (Teredo)
http://www.ietf.org/internet-drafts/draft-huitema-v6ops-teredo-00.txt
• Internet Draft - Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) ftp://ftp.isi.edu/internet-drafts/draft-ietf-ngtrans-isatap-05.txt