Hanoi, 05/2012 A A Agenda Agenda d d 1. CPTs network - - PowerPoint PPT Presentation

hanoi 05 2012 a a agenda agenda d d
SMART_READER_LITE
LIVE PREVIEW

Hanoi, 05/2012 A A Agenda Agenda d d 1. CPTs network - - PowerPoint PPT Presentation

Dec 24, 2022 211 likes •459 views

THE TECHNI CAL SOLUTI ONS TO THE TECHNI CAL SOLUTI ONS TO MI GRATE MI GRATE I PV6 MI GRATE MI GRATE I PV6 I PV6 I N NETWORK OF CPT I PV6 I N NETWORK OF CPT I N NETWORK OF CPT I N NETWORK OF CPT Hanoi, 05/2012 A A Agenda Agenda d d

slide-1
SLIDE 1

THE TECHNI CAL SOLUTI ONS TO THE TECHNI CAL SOLUTI ONS TO MI GRATE MI GRATE I PV6 I PV6 I N NETWORK OF CPT I N NETWORK OF CPT MI GRATE MI GRATE I PV6 I PV6 I N NETWORK OF CPT I N NETWORK OF CPT

Hanoi, 05/2012

slide-2
SLIDE 2

A d A d Agenda Agenda

1. CPT’s network infrastructure and ability to migrate IPv6 2. Technical solutions for IPv6 migration in CPT 3 Deploying IPv6 testing with CPT Network 3. Deploying IPv6 testing with CPT Network 4. Some problems associated solutions to migrate IPv6 5. IPv6 Action Plan of CPT

slide-3
SLIDE 3

CPT’s network infrastructure & Ability to migrate Ability to migrate IPv6

slide-4
SLIDE 4

CPT Network

slide-5
SLIDE 5

Cisco’s network elements and Cisco’s network elements and I Pv6 I Pv6 features features

  • Core Router : Cisco 7600 series
  • Core Switch: Cisco 6500 series
  • Firewall: Firewall Services Module (FWSM on 6500)
  • Access/Aggr/Ref Router: Cisco 7600 series
  • Man Switch: Cisco 6500 series

6 Add i Cisco IPv6 + IPv6 Addressing + IPv6 Repackaging + IPv6 Switching Cisco IPv6 Features + IPv6 Switching + IPv6 Routing + IPv6 Security + ...

slide-6
SLIDE 6

Cisco Cisco 65xx 65xx switches & switches & I Pv6 I Pv6 features features

  • IPv6 Repackaging
  • IPv6 Repackaging
  • IPv6 VPN over MPLS: IPv6 VPN over MPLS (6VPE) Operation
  • Encrypting IPv6 Traffic
  • EIGRP for IPv6: OSPF for IPv6 (OSPFv3) and RIP for IPv6 (RIPng)
slide-7
SLIDE 7

Ci Ci 76 76 & I P 6 I P 6 f Cisco Cisco 76xx 76xx & & I Pv6 I Pv6 features features

HTTP Access over IPv6 (Management) Multicast IPv6 Enhancements Tunneling of IPv4 and IPv6 Packets VPN MPLS IP 6 VPN P id Ed (6VPE) MPLS IPv6 Routing: OSPF for IPv6 (OSPFv3) and RIP for IPv6 (RIPng) VPN over MPLS: IPv6 VPN Provider Edge (6VPE) over MPLS . . .

slide-8
SLIDE 8

Technical solutions for IPv6 migration in CPT

slide-9
SLIDE 9

Requirements and technical solutions Requirements and technical solutions

  • 1. Requirements:
  • Do not break the existing structure of the network infrastructure

Do not break the existing structure of the network infrastructure

  • Provide services conveniently and efficiently
  • Separate IPv6 traffic of each customer

Separate IPv6 traffic of each customer

  • 2. Technical solutions proposed:

) T l 6RD a) Tunnel: 6RD b) DualStack: 6VPE

slide-10
SLIDE 10

b About About 6RD 6RD

Defined in RFC 5969 Tunneling IPv6 through available IPv4 network infrastructure. Includes components: 6RD Boder relay & 6RD resident gateway Includes components: 6RD Boder relay & 6RD resident gateway (CE), tunnel will be created between two network elements: 6RD BR & 6RD RG.

slide-11
SLIDE 11

Tunnel Tunnel-6RD 6RD solution for solution for CPT’s CPT’s Network Network Tunnel Tunnel 6RD 6RD solution for solution for CPT s CPT s Network Network

slide-12
SLIDE 12

E l t i T l E l t i T l 6RD 6RD Evaluate using Tunnel Evaluate using Tunnel-6RD 6RD

  • Keep the original network design, deploy IPv6 conveniently
  • Must to add 6RD Border Relay in core areas use access
  • Must to add 6RD Border Relay in core areas, use access

routers, man switches in each province as 6RD Resident Gateway

  • Create policies on 6RD BR to separate IPv6 traffic between

agencies and departments

  • The IGR routers is configured IPv6 EBGP to connect to IPv6

network of VNPT

slide-13
SLIDE 13

About 6VPE

2001:0420:: 2001:0620:: V6 and v4

MP-iBGP sessions 6VPE

145.95.0.0 2001:0620:: 145.96.0.0

P P

V6 and V4 V6 and v4

6VPE 6VPE

192.254.10.0 2001:0421:: V6 and v4

P P

V6 d 4 CE 192 76 10 0 2001:0621:: Dual Stack IPv4-IPv6 routers Dual Stack IPv4-IPv6 routers Dual Stack IPv4-IPv6 routers Dual Stack IPv4-IPv6 routers V6 and v4 v4 v4 CE

6VPE 6VPE

192.76.10.0 CE IPv4 MPLS

  • (RFC 2547bis) IPv6 VPN (6VPE) activities similar to IPv4 MPLS VPN
  • IPv6 packets are sent and received from 6VPE router to 6VPE router via IPv4 LSP’s (IPv4 Label

Switched Path)

  • Some notes of 6VPE :
  • Do not change the MPLS core
  • Support for IPv4 & IPv6 VPN on the same Interface

C fi IP 6 VPN i il t IP 4 VPN

  • Configure IPv6 VPN similar to IPv4 VPN
  • IPv6 routing table for each separate customer.
slide-14
SLIDE 14

6VPE 6VPE solution for

solution for CPT’s CPT’s Network Network

6VPE 6VPE solution for

solution for CPT s CPT s Network Network

slide-15
SLIDE 15

E l t i E l t i 6VPE VPE Evaluate using Evaluate using 6VPE VPE

  • Separate IPv6 traffic of each customer into corresponding VRF

Must to upgrade IOS for all equipment that running DualStack

  • Must to upgrade IOS for all equipment that running DualStack
  • Enable 6VPE function for PE routers, configure to define the
  • VRF. To connect to internet, It required to add import and export

values of the internet VRF to VRF defined

  • The IGR routers is configured IPv6 EBGP to connect to IPv6

network of VNPT.

slide-16
SLIDE 16

Deploying IPv6 testing with CPT Network

slide-17
SLIDE 17

Tunnel Test with solution Tunnel Test with solution 6RD 6RD Tunnel Test with solution Tunnel Test with solution-6RD 6RD

slide-18
SLIDE 18

S h i l i S h i l i Some technical issues Some technical issues

) T l 6RD a) Tunnel-6RD:

  • Required to configure, manage and operate a lot of the Tunnels if

d l d 6RD IP 6 h h l k deployed 6RD IPv6 on the whole network

  • The routing table on the 6RD BR will be very large and complex

b) 6VPE:

  • Must to upgrade IOS for all router/switch that be running DualStack

+ Router 76xx (>60): IOS 12.2SR => IOS 12.2(33)SRB + Switch 65xx (>20): IOS 12.2SX => IOS 12.2(33)SXI

slide-19
SLIDE 19

IPv6 Action Plan of CPT

slide-20
SLIDE 20

I Pv6 I Pv6 Action Plan of VNPT Action Plan of VNPT

Year Nation schedule VNPT Schedule 2011 Preparation Preparation 2012 2013 2014 p

Starting

Preparation Testing 2014 2015 2016

Starting

Service Providing 2017 2018 Migrating 2019 2020 completing

slide-21
SLIDE 21

IPv6 IPv6 Action Plan of CPT Action Plan of CPT IPv6 IPv6 Action Plan of CPT Action Plan of CPT

Year

Quarter

Tasks

2011

  • Test with 6RD solution

2012

Q1

  • Set up the task force on IPv6 CPT
  • Complete the IPv6 action plan

Q2 Q3

  • Install IPv6 servers: Web, Mail, DNS ...
  • Connect to IPv6 network of VNPT from 03 core areas of CPT

network

Q4

2013

Q1 Q2

  • Test with 6VPE solution (stage-1): upgrade IOS for some PE in

0 3 North area, deploy 6VPE testing and evaluate the results

Q3 Q4

  • Test with 6VPE solution (stage-2): upgrade IOS for all PE in North

area, deploy 6VPE testing and evaluate the results

Q1 Q2

, p y g 2014

Q2 Q3

  • Test with 6VPE solution (stage-3): upgrade IOS for all

routers/switches that be running DualStack in whole network of CPT, deploy 6VPE testing and evaluate the results

Q4 Q1

deploy 6VPE testing and evaluate the results 2015

Q2 Q3

  • Provide IPv6 services

Q4

2016 2016

  • Completing

2017

slide-22
SLIDE 22

l i l i Conclusion Conclusion

CPT can provide IPv6 services in future:

1. Internet service 2. Internet value-added services : Web, Mail, DNS ... 3. Virtual private network services (IPv6 -VPN) 4. Audio and video services: Videoconferencing, VoIP, MyTV … 5. Data transmission services 6 D t t i (h ti i t li ti ) 6. Datacenter services (hosting, virtualization server ...) 7. IPv6 services of VNPT 8 National/international IPv6 services 8. National/international IPv6 services.

slide-23
SLIDE 23

THANK YOU! THANK YOU!