IPv6 Essentials Other resources from O’Reilly Related titles IPv6 Network Administration Cisco Cookbook™ TCP/IP Network BGP Administration Essential SNMP Cisco IOS in a Nutshell JUNOS Cookbook™ oreilly.com oreilly.com is more than a complete catalog of O’Reilly books. You’llalsofindlinkstonews,events,articles,weblogs,sample chapters, and code examples. oreillynet.comistheessentialportalfordevelopersinterestedin openandemergingtechnologies,includingnewplatforms,pro- gramming languages, and operating systems. Conferences O’Reillybringsdiverseinnovatorstogethertonurturetheideas thatsparkrevolutionaryindustries.Wespecializeindocument- ing the latest tools and systems, translating the innovator’s knowledge into useful skills for those in the trenches. Visit conferences.oreilly.com for our upcoming events. Safari Bookshelf (safari.oreilly.com) is the premier online refer- ence library for programmers and IT professionals. Conduct searchesacrossmorethan1,000books.Subscriberscanzeroin on answers to time-critical questions in a matter of seconds. Read the books on your Bookshelf from cover to cover or sim- ply flip to the page you need. Try it today for free. SECOND EDITION IPv6 Essentials Silvia Hagen Beijing • Cambridge • Farnham • Köln • Paris • Sebastopol • Taipei • Tokyo IPv6 Essentials, Second Edition by Silvia Hagen Copyright © 2006, 2002 O’Reilly Media, Inc. All rights reserved. Printed in the United States of America. Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O’Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (safari.oreilly.com). For more information, contact our corporate/institutional sales department: (800) 998-9938 [email protected]. Editor: Tatiana Apandi and Mike Loukides Indexer: John Bickelhaupt Production Editors: Reba Libby and Cover Designer: Hanna Dyer Genevieve d’Entremont Interior Designer: David Futato Copyeditor: Reba Libby Illustrators: RobertRomanoandJessamynRead Proofreader: Genevieve d’Entremont Printing History: May 2006: Second Edition. July 2002: First Edition. Nutshell Handbook, the Nutshell Handbook logo, and the O’Reilly logo are registered trademarks of O’ReillyMedia,Inc.IPv6Essentials,theimageofarigatellasnail,andrelatedtradedressaretrademarks of O’Reilly Media, Inc. Manyofthedesignationsusedbymanufacturersandsellerstodistinguishtheirproductsareclaimedas trademarks. Where those designations appear in this book, and O’Reilly Media, Inc. was aware of a trademark claim, the designations have been printed in caps or initial caps. While every precaution has been taken in the preparation of this book, the publisher and author(s) assume no responsibility for errors or omissions, or for damages resulting from the use of the information contained herein. This book uses RepKover™, a durable and flexible lay-flat binding. ISBN: 0-596-10058-2 [M] Table of Contents Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ix 1. Why IPv6? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 The History of IPv6 3 What’s New in IPv6? 4 Why Do We Need IPv6? 5 Common Misconceptions 8 When Is It Time for IPv6? 10 IPv6 Around the World 12 IPv6 Status and Vendor Support 15 References 16 2. The Structure of the IPv6 Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 General Header Structure 17 The Fields in the IPv6 Header 18 Extension Headers 22 References 34 3. IPv6 Addressing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35 The IPv6 Address Space 35 Address Types 36 Address Notation 37 Prefix Notation 38 Global Routing Prefixes 39 Global Unicast Address 40 Special Addresses 44 Link- and Site-Local Addresses 48 Anycast Address 49 v Multicast Address 51 Required Addresses 56 Default Address Selection 57 References 58 4. ICMPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60 General Message Format 60 ICMP Error Messages 64 ICMP Informational Messages 69 Processing Rules 70 The ICMPv6 Header in a Trace File 71 Neighbor Discovery (ND) 73 Autoconfiguration 87 Network Renumbering 91 Path MTU Discovery 92 Multicast Listener Discovery (MLD) 93 Multicast Router Discovery (MRD) 98 References 99 5. Security with IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101 General Security Concepts 101 General Security Practices 102 IPsec Basics 103 IPv6 Security Elements 108 Overview of New IPsec RFCs 115 Interaction of IPsec with IPv6 Elements 116 IPv6 Security “Gotchas” 116 Enterprise Security Models for IPv6 122 References 124 6. Quality of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128 QoS Basics 128 QoS in IPv6 Protocols 130 Using QoS 135 References 135 7. Networking Aspects. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137 Layer 2 Support for IPv6 137 Detecting Network Attachment (DNA) 145 References 146 vi | Table of Contents 8. Routing Protocols. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 148 The Routing Table 149 RIPng 152 OSPF for IPv6 (OSPFv3) 163 BGP-4 Support for IPv6 201 Additional Routing Protocols for IPv6 214 References 222 9. Upper-Layer Protocols. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224 UDP/TCP 224 DHCP 226 DNS 242 SLP 247 FTP 248 Telnet 250 Web Servers 250 References 252 10. Interoperability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255 Dual-Stack Techniques 255 Tunneling Techniques 256 Network Address and Protocol Translation 278 Comparison 284 Integration Scenarios 286 Case Studies 288 What Is Missing? 301 Security Aspects 305 Applications 305 Cost of Introduction 306 Vendor Support 308 References 310 11. Mobile IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 314 Overview 315 The Mobile IPv6 Protocol 319 ICMPv6 and Mobile IPv6 326 Mobile IPv6 Communication 329 Security 336 Extensions to Mobile IPv6 337 References 339 Table of Contents | vii 12. Get Your Hands Dirty . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341 Linux 341 BSD 343 Sun Solaris 347 Macintosh 348 Microsoft 350 Cisco Router 354 Applications 359 Description of the Tests 359 A. RFCs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 365 B. IPv6 Resources . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 378 C. Recommended Reading . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 406 Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407 viii | Table of Contents