Documente Academic
Documente Profesional
Documente Cultură
Contents:
Module Overview
Lesson 1:
Overview of IPv6
Lesson 2:
IPv6 Addressing
Lesson 3:
Lesson 4:
Lab:
Implementing IPv6
Module Review and Takeaways
Module Overview
IPv6 is a technology that helps the Internet support a growin
g user base and an increasingly large number of IP-enabled
devices.IPv4 has been the underlying Internet protocol for al
most thirty years. Its robustness, scalability, and limited feat
ure set is nowchallenged by the growing need for new IP add
resses. This is due in large part to the rapid growth of new n
etwork-aware devices.
This module discusses the features and benefits of IPv6, how
IPv6 affects IPv4 networks, and how to integrate IPv6 into IP
v4networks by using various transition technologies.
Objectives
After completing this module, you will be able to:
Describe the features and benefits of IPv6.
Describe IPv6 addressing.
Describe IPv6 coexistence with IPv4.
Describe IPv6 transition technologies.
Lesson Objectives
After completing this lesson, you will be able to:
Describe the benefits of IPv6.
Describe the differences between IPv4 and IPv6.
Describe the IPv6 address format.
Benefits of IPv6
End-to-End Communication
Extensibility
IPv6 has been designed so that developers can extend it wit
h much fewer constraints than IPv4. As a network administra
tor, you willnot be extending IPv6, but programs that you pur
chase may take advantage of this to enhance IPv6 functional
ity.
IPv6
Fragmentation is
IGMP is replaced
rtisement messa
.
Uses host
(A) resource records in the DNS to map host names to IPv4 addresses.
Uses pointer (PTR) resource records in the IN-
Uses pointer
(PTR) resource re
Must support a 1
0010
8421
0+0+2+0=2
Compressing Zeros
on
(::); thisfurther simplifies the IPV6 notation. The computer re
cognizes "::" and substitutes it with the number of blocks ne
cessary to make theappropriate IPv6 address.
In the following example, the address is expressed using zer
o compression:
2001:DB8::2F3B:2AA:FF:FE28:9C5A
To determine how many 0 bits are represented by the "::", yo
u count the number of blocks in the compressed address, su
btract thisnumber from 8, and then multiply the result by 16.
Using the previous example, there are 7 blocks. Subtract 7 fr
om 8, and thenmultiply the result
(1) by 16. Thus, there are 16 bits or 16 zeros in the address
where the double colon is located.
You can use zero compression only once in a given address. I
f you use it twice or more, then there is no way to show how
many 0bits are represented by each instance of the double c
olon (::).
To convert an address into binary, use the reverse of the met
hod described previously:
1. Add in 0s using zero compression.
2. Add leading 0s.
3. Convert each bit that is set to l (one) into its binary equivalent.
Lesson Objectives
After completing this lesson, you will be able to:
Describe the structure of IPv6 addresses.
Describe the structure of global unicast addresses.
Describe unique local unicast addresses.
Each IPv6 address is 128 bits long. The prefix is the part of t
he address that indicates the bits that have fixed values, or t
hat are thesubnet prefixs bits. This is equivalent to the netw
ork ID for IPv4 addresses.
Prefixes for IPv6 subnets, routes, and address ranges are exp
ressed in the same way as IPv4 Classless Interdomain Routin
g (CIDR)notations.
An IPv6 prefix is written in address/prefix-length notation. Fo
r example, 2001:DB8::/48 and 2001:DB8:0:2F3B::/64 are IPv
6 addressprefixes.
Note: IPv6 uses prefixes instead of a subnet
mask.
When a unicast IPv6 address is assigned to a host, the prefix
is 64 bits long. The remaining 64 bits are allocated to the int
erfaceidentifier, which uniquely identifies the host on that ne
twork. The interface identifier can be either randomly genera
ted, assigned byDHCPv6, or based on the media access cont
rol
(MAC) address of the network. By default, the host bits are g
enerated randomlyunless assigned by DHCPv6.
0.0.0.0
Loopback address
127.0.0.1
Autoconfigured addresses
169.254.0.0/16
Broadcast address
255.255.255.255
Multicast addresses
224.0.0.0/4
All IPv6 hosts have a link-local address that is used for comm
unication only on the local subnet. The link-local address is g
eneratedautomatically, and is non-routable. In this way, linklocal addresses are similar to IPv4 APIPA addresses. However
, a link-localaddress is an essential part of IPv6 communicati
on.
Link-local addresses are used for communication in many sc
enarios where IPv4 would have used broadcasts. For exampl
Zone ID
Regardless of the number of network interfaces in the host,
each IPv6 host has a single link-local address. If the host has
multiplenetwork interfaces, the same link-local address is re
used on each interface. To make it possible for hosts to ident
ify link-localcommunication on each unique network interfac
e, a zone ID is added to the link-local address.
A zone ID is used in the following format:
Address%zone_ID
Each sending host determines the zone ID that it will associa
te with each interface. There is no negotiation of zone ID bet
ween hosts.For example, on the same network, host A might
use 3 for the zone ID on its interface, and host B might use 6
for the zone ID on itsinterface.
Each interface in a Windows-based host is assigned a unique
interface index, which is an integer. In addition to physical n
etworkcards, interfaces also include loopback and tunnel int
erfaces. Windows-based IPv6 hosts use the interface index o
f an interface as thezone ID for that interface.
In the following example, the interface ID for the network int
erface is 3.
fe80::2b0:d0ff:fee9:4143%3
Types of Autoconfiguration
Stateful Configuration
With stateful configuration, organizations can control how IP
v6 addresses are assigned using DHCPv6. If there are any sp
ecific scopeoptions that you need to configuresuch as the I
Pv6 addresses of DNS serversthen a DHCPv6 server is nec
essary.
When IPv6 attempts to communicate with a DHCPv6 server,
it uses multicast IPv6 addresses. This is different from IPv4,
which usesbroadcast IPv4 addresses.
1.
2.
Lesson Objectives
After completing this lesson, you will be able to:
Describe IP node types.
Precedence
Label
Des
::1/128
50
IPv6
::/0
40
Defau
::ffff:0:0/96
10
IPv4
2002::/16
6to4
2001::/32
Tered
FC00::/7
13
Uniqu
Prefix
Precedence
Label
Des
::/96
IPv4
fec0::/10
11
Site l
3ffe::/16
12
6Bon
On LON-DC1, in Server Manager, open the DNS tool and browse to the
In DNS Manager, verify that IPv6 addresses have been registered dyna
Create a new host record in Adatum.com with the following settings:
o Name: WebApp
o IP address: FD00:AAAA:BBBB:CCCC::A
Lesson Objectives
What Is ISATAP?
You can initiate ISATAP tunneling in many ways, but the simp
lest way is to configure an ISATAP host record in DNS that res
olves tothe IPv4 address of the ISATAP router. Windows hosts
that can resolve this name automatically begin using the spe
cified ISATAProuter. By using this method, you can configure
ISATAP for several computers simultaneously.
You can also define ISATAP name resolution in a hosts file, bu
t this is not recommended because it is difficult to manage.
Note: By default, DNS servers on Windows Server 2008 or n
ewer Windows Server operating systems have a global query
block list that prevents ISATAP resolution, even if the host re
cord is created and properly configured. You need to removeI
SATAP from the global query block list in DNS if you are usin
g an ISATAP host record to configure ISATAP clients.
Other ways you can configure hosts with an ISATAP router ar
e:
Use the Windows PowerShell cmdlet Set-NetIsatapConfiguration -Rou
Use Netsh Interface IPv6 ISATAP Set Router x.x.x.x.
Configure the ISATAP Router Name Group Policy setting.
Note: All ISATAP nodes are connected to a single IPv6 subnet. This mean
y Domain Services (AD DS) site, which may not be desirable.
As such, you should use ISATAP only for limited testing. For i
ntranet-wide deployment, you should instead deploy native I
Pv6support.
What Is 6to4?
What Is Teredo?
(16 bits). There are a number of options that describe the communication
Obscured external port
(16 bits). This is the external port used for communication by the NAT de
AT device from translating it.
Obscured external IP address
(32 bits). This is the external IP address of the NAT device. It is obscured
What Is PortProxy?
Objectives
Lab Setup
Virtual machines
20410C-LON-DC1
20410C-LON-RTR
20410C-LON-SVR2
User name
Adatum\Administra
Password
Pa$$w0rd
For this lab, you will use the available virtual machine enviro
nment. Before beginning the lab, you must complete the foll
owing steps:
1. On the host computer, click Start, point to Administrative Tools, and
2. In Hyper-V Manager, click 20410C-LON-DC1, and in the Actions pan
3. In the Actions pane, click Connect. Wait until the virtual machine start
4. Sign in using the following credentials:
o User name: Administrator
o Password: Pa$$w0rd
o Domain: Adatum
5. Repeat steps 2 to 4 for 20410C-LON-RTR and 20410C-LON-SVR2.
Scenario
For the first step in configuring the test lab, you need to con
figure LON-DC1 as an IPv4-only node, and LON-SVR2 as an IP
v6-onlynode. You also need to configure LON-RTR to support
IPv6 routing by adding a network to an interface on the IPv6
network, and byenabling router advertisements. The router a
dvertisements allow the IPv6 clients on the IPv6 network to o
btain the correct IPv6network automatically through stateles
s configuration.
The main tasks for this exercise are as follows:
1. Verify IPv4 routing.
2. Disable IPv6 on LON-DC1.
3. Disable IPv4 on LON-SVR2.
4. Configure an IPv6 network on LON-RTR.
5. Verify IPv6 on LON-SVR2.
Task 1: Verify IPv4 routing
1. On LON-SVR2, open a Windows PowerShell prompt.
2. Ping LON-DC1 to verify that IPv4 is routing through LON-RTR.
3. Use the ipconfig command to verify that LON-SVR2 has only a link-loc
4. Use the Get-NetIPAddress cmdlet to view the network configuration a
Task 2: Disable IPv6 on LON-DC1
1. On LON-DC1, in Server Manager, select Local Server, and then select
ons window.
2. In the Network Connections window, open the Ethernet Properties d
ke LON-DC1 an IPv4-only host.
Task 3: Disable IPv4 on LON-SVR2
1. On LON-SVR2, in Server Manager, select Local Server, and then selec
ons window.
2. In Network Connections window, open the Ethernet Properties dialog
SVR2 an IPv6-only host.
Task 4: Configure an IPv6 network on LON-RTR
1. On LON-RTR, open Windows PowerShell.
2. Configure a network address that will be used on the IPv6 network by u
NetRoutecmdlet to add an IPv6 network on Ethernet 2 to the local ro
3.
Allow clients to obtain the IPv6 network access automatically from LON
enable router advertisements on Ethernet 2:
Scenario
After configuring the infrastructure for an IPv4-only network
and an IPv6-only network, you need to configure LON-RTR as
an ISATAProuter to support communication between the IPv4
only nodes and the IPv6-only nodes.
To configure LON-RTR as an ISATAP router, you need to enabl
e the IPv4 interface as the ISATAP router. Then you configure
an IPv6network on the ISATAP interface and enable advertisi
ng of the network route that includes that network. ISATAP cl
ients will obtainthe IPv6 network automatically from the adv
ertisements.
To enable ISATAP automatically on clients, you need to creat
e an ISATAP host record in DNS. Clients that can resolve this
nameautomatically become ISATAP clients. To allow clients t
o resolve this name, you must remove ISATAP from the globa
l query block liston the DNS server.
The main tasks for this exercise are as follows:
1. Add an ISATAP host record to DNS.
2. Enable the ISATAP router on LON-RTR.
3. Remove ISATAP from the Global Query Block List.
4. Enable LON-DC1 as an ISATAP client.
5. Test connectivity.
Task 1: Add an ISATAP host record to DNS
1. On LON-DC1, in Server Manager, open the DNS tool.
2. Add an ISATAP host record in the Adatum.com domain that resolves to
he ISATAP router.
Task 2: Enable the ISATAP router on LON-RTR
1. On LON-RTR, configure the IP address of the Ethernet adapter as the I
NetIsatapConfiguration cmdlet to enable ISATAP:
2.
3.
4.
5.
6.
1.
ping 2001:db8:0:2:0:5efe:172.16.0.10
2. Use the Server Manager to modify the properties of TCP/IPv6 on the Eth
preferred DNS server.
3. Use the ping command to test connectivity to LON-DC1.
Note: A ping from LON-DC1 to LON-SVR2 does not respond because th
Results: After completing this exercise, you will have config
ured an ISATAP router on LON-RTR to allow communication b
etweenan IPv6only network and an IPv4only network.
Prepare for the next module
After you finish the lab, revert the virtual machines to their i
nitial state.
To do this, complete the following steps.
1. On the host computer, start Hyper-V Manager.
2. In the Virtual Machines list, right-click 20410C-LON-DC1, and then c
3. In the Revert Virtual Machine dialog box, click Revert.
4. Repeat steps 2 and 3 for 20410C-LON-SVR1, 20410C-LON-RTR and
Lab Review Questions
Question: Did you configure IPv6 statically or dynamically i
n this lab?
Question: Why did you not need to configure LON-DC1 with
the IPv4 address of the ISATAP router?
Best Practices