mobile ipv6 in freebsd bsdcan 2006 · mobile ipv6 in freebsd student assistant of christian vogt...
TRANSCRIPT
![Page 1: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/1.jpg)
Mobile IPv6 in FreeBSD
Student assistant of
Christian [email protected]
Institute of TelematicsUniversität Karlsruhe (TH)
DeveloperFreeBSD
BSDCan 2006
![Page 2: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/2.jpg)
Mobile IPv6Overview
● Introduction– Motivation– Application
● Basic Operations– Tunnel– Route Optimization– Problems
● Enhancements– Early Binding Updates– Credit-Based Authorization– Proactive Handoffs
● More Problems● Implementations
![Page 3: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/3.jpg)
Mobility and ReachabilityAnytime and Anywhere
mobile.laiers.netaka
2001:affe::4711
2001:cafe::0815 2001:beef::42
![Page 4: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/4.jpg)
Challenges:Unauthenticated redirection
![Page 5: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/5.jpg)
Challenges:Unauthorized Redirection
![Page 6: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/6.jpg)
Basics (1)Tunnel
● Home Agent listens on Home Address● Mobile Node registers from Care-of Address ● HA keeps “binding” between CoA and HoA● Signaling over tunnel secured w/ IPSEC● Data over tunnel can also be secured
![Page 7: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/7.jpg)
Basics (2)Route Optimization
● MN registers CoA w/ Correspondent Node● CN has to make sure that
– MN is the “owner” of the HoA– MN is at the CoA
● CN sends packets to CoA directly● MN replies from CoA● HoA available for upper layers through
– Destination Option MN => CN– Routing Header CN => MN– No requirements from transportation nodes
![Page 8: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/8.jpg)
4RTT
3RTT
BindingUpdate
BindingAck
c/o Test Init Home Test Init
Home Test
c/o Test
BindingUpdate
BindingAck
Basic Operation
![Page 9: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/9.jpg)
4RTT
3RTT
BindingUpdate
BindingAck
Home Test
c/o Test
BindingUpdate
BindingAck
Paralell
Optimistic MIP
![Page 10: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/10.jpg)
4RTT
3RTT
BindingUpdate
BindingAck
Home Test
c/o Test
BindingUpdate
BindingAck
Paralell
2RTT
3RTT
Optimistic MIP
![Page 11: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/11.jpg)
EnhancementEarly Binding Updates
● Speed things up
● Binding Update w/ HA can happen in parallel● Home Test can happen anytime
● No relation to CoA● Just need a “fresh” (valid) token
● Allow a “short” time of uncertainty about reachability at CoA
Can send Binding Update right away
![Page 12: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/12.jpg)
proactive
Home Test Init
Home Test
BindingUpdate
BindingAck
Early Binding Updates
EarlyBindingUpdate
EarlyBindingAck
Binding Update/Ack with HA
c/o Test Init
c/o Test
![Page 13: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/13.jpg)
proactive
Home Test Init
Home Test
BindingUpdate
BindingAck
Early Binding Updates
EarlyBindingUpdate
EarlyBindingAck
Binding Update/Ack with HA
c/o Test Init
c/o Test
parallel
1RTT
Unverified c/o address
![Page 14: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/14.jpg)
Early Binding Updates
● No IANA requirements
● Early Binding Update = Binding Update w/o c/o-Test Token (all zero)– CN supporting EBU can reply– CN not supporting EBU will either see a
corrupted or timed out c/o-Test Token and reply with a NACK
![Page 15: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/15.jpg)
Credit-Based Authorization
● No Amplification, no fun
● Grant credit for every packet the MN sends● Consume credit for every packet sent to an
unverified CoA● Stop sending when credit runs out
● Credit aging● Asymmetric protocols (TCP)● Spot Checks
![Page 16: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/16.jpg)
Proactive Handoffs
● Figure out possible prefix/address before handoff
● Signal CN from old CoA● Do the switch as soon as CN acknowledges
● Needs L2 support● Late alpha stage, might be subject to change
![Page 17: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/17.jpg)
Problems
● L2 handoff delay● Router/Prefix discovery● Duplicate Address Detection (DAD)
![Page 18: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/18.jpg)
Router discovery
● Router send Router Advertisements periodically
● Default interval too big● MobileIP extension available, but still ~70ms
● Passive waiting not suitable
![Page 19: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/19.jpg)
Duplicate Address Detection
● Need (at least) unique link-local address before sending a Router Solicitation
● IPv6 auto configuration requires DAD before use of addresses
● Takes a long time
● Optimistic DAD (RFC 4429) improves the situation
● Still, router won't reply right away– See “Detecting Network Attachment” in IETF for
further reading
![Page 20: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/20.jpg)
Implementations
● KAME snapshots– Conservative
● Institute of Telematicshttp://www.tm.uka.de/~chvogt/ebucba/– Optimistic MIP– Early Binding Updates– Credit Based Authorization– Proactive Handoffs (TBD)– Currently GPLed :-(
![Page 21: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/21.jpg)
Further Reading
● http://www.tm.uka.de/itm/projects.php?id=10– draft-vogt-mobopts-simple-ebu-00– draft-vogt-mobopts-simple-cba-00– vogt-2006-delay-analysis...
● RFC 3775
● /usr/src/...– Sooner or later
![Page 22: Mobile IPv6 in FreeBSD BSDCan 2006 · Mobile IPv6 in FreeBSD Student assistant of Christian Vogt chvogt@tm.uka.de Institute of Telematics Universität Karlsruhe (TH) Max Laier mlaier@FreeBSD.org](https://reader031.vdocument.in/reader031/viewer/2022022108/5c01718d09d3f2377a8d45f6/html5/thumbnails/22.jpg)
Acknowledgments
● Christian Vogt– Code, work, proof-reading, everything
● Ralf Beck, Daniel Jungbluth andConstantin Schimmel
● SixXS.net● FreeBSD Foundation
– Travel
● You