120 likes | 137 Views
IPv6 Operations (v6ops) WG. Margaret Wasserman IETF 56 San Francisco March 2003. v6ops WG Summary. IPv6 Operations (v6ops) Chairs: Bob Fink <bob@thefinks.com> Jun-ichiro Hagino <itojun@iijlab.net> Margaret Wasserman <mrw@windriver.com>. v6ops Summary.
E N D
IPv6 Operations (v6ops) WG Margaret Wasserman IETF 56 San Francisco March 2003
v6ops WG Summary • IPv6 Operations (v6ops) • Chairs: • Bob Fink <bob@thefinks.com> • Jun-ichiro Hagino <itojun@iijlab.net> • Margaret Wasserman <mrw@windriver.com>
v6ops Summary • Develop guidelines for the operation of a shared IPv4/IPv6 Internet • Provide guidance to operators on how to deploy IPv6 in existing IPv4 networks and new networks • Focus on operational and security concerns in shared IPv4/IPv6 environments
IPv4/IPv6 Coexistence • Focus is on IPv4/IPv6 coexistence • We have a shared IPv4/IPv6 Internet today and will for the predictable future • “Transition” is for our grandchildren
Scenarios and Analysis • Determine scenarios for IPv6 deployment in four environments: • 3GPP Cellular Networks • Unmanaged Networks • Enterprise Networks • ISP Networks • Analyze scenarios and identify needed coexistence mechanisms
3GPP Scenarios/Analysis • Documents nearly complete • Scenarios currently in WG last call • Both to be reviewed by 3GPP in April/May • Identifies need for: • Dual stack • Some type of translation mechanism for IMS subsystem -- may be SIP-specific
Unmanaged Scenarios/Analysis • Documents nearly complete • Scenarios in WG last call • Identifies need for: • Dual stack • Mechanism to traverse IPv4 NAT • Teredo and/or UDP tunneling • 6to4 and Tunnel Broker
Enterprise and ISP Efforts • Scenarios documents underway • Need more input from enterprise and ISP operators, please help!
Coexistence Mechanisms • v6ops is responsible for some existing coexistence mechanisms at PS • Transition mechanisms, SITT, NAT-PT, 6to4 • Updated to transition mechanisms underway • Starting work on SIIT/NAT-PT applicability • Work on new mechanisms will be undertaken when applicability is demonstrated by scenarios/solutions work
Security and Reliability • Running IPv4 and IPv6 together raises issues for security and reliability • Which to use when both are available? • Building secure shared IPv4/IPv6 networks • Extensive use of tunneling will present operational and security concerns • Important to understand security model and interaction between tunnels and firewalls • Some issues identified with having IPv6 on by default in dual stack nodes
Dual Stack vs. NAT-PT • Currently discussing applicability of NAT-PT vs. Dual Stack • Dual stack end-nodes are preferable in most cases -- use v4 to talk to v4, and v6 to talk to v6 • NAT-PT has scaling and operational problems of IPv4 NAT -- used only when alternative is IPv4 NAT?
Document Review • Difficulty getting adequate review for solutions/scenarios work • WG chairs are forming a review team to achieve quality document review • Need operator and security volunteers for this team