A status report from a brief test of IPv6 support (including DHCPv6 and SLAAC) in OpenBSD, FreeBSD, Debian, Ubuntu, Fedora compared with Windows 7 and OS/X
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
The Status of IPv6 and Open Source/Free Operating systems
1. CONFIGURATION OF IPV6
Examples from various operating systems
oej@edvina.net Twitter: oej Twitter: ipv6friday
foss-sthml.se meeting January 25th 2012
onsdag 25 januari 12
2. This is the year we launch
the new Internet.
Do not stay behind!
onsdag 25 januari 12
3. IPv6 basics
128 bit 128 bit
address address
• Larger IP packet headers - IP address 128 bits instead of 32
• All TCP/UDP protocols behave like before
• Protocols that embedd IP address will have to support the new formats
• Subnetting like before with CIDR prefixes
onsdag 25 januari 12
4. A common enterprise model
48 bit 16 bit 64 bit
prefix subnet device
65536 networks!
ISP get /32
Enterprise /48 or /54
onsdag 25 januari 12
5. Dual stack
IPv4 IPv6
The IPv4 The IPv6
Internet Internet
onsdag 25 januari 12
6. TWO highways to the same
destination
IPv4 IPv4
IPv6 IPv6
onsdag 25 januari 12
10. Multiple addresses
per interface
Link local address based on MAC (FE80::)
Site local address - ULA FDxx
Global address based on network prefix and MAC
Global address based on network prefix and random data
Link local multicast addresses
Service specific multicast address
Loopback address (only for loopback interface)
onsdag 25 januari 12
11. Different views in OS/X
Network
configuration shows
only IPv4
Advanced shows
ONE IPv6 address
ifconfig
onsdag 25 januari 12
12. Distributing IPv6 addresses
Local Link (FE80::) - automatically
Global based on RA prefix - automatic (SLAAC)
Based on MAC address
Based on random data for privacy (temporary address)
Global based on DHCP - automatic (SLAAC)
Static - manual configuration
onsdag 25 januari 12
13. DHCPv6
INFORMATION DNS, SIP gateway, NTP server etc
OBJECTS
DYNAMIC
Random address from a range
IP ADDRESS
PRIVACY ENHANCED Managed temporary privacy-enhanced
IP ADDRESS Address
STATIC Static address based on device identifier
IP ADDRESS
onsdag 25 januari 12
14. DHCPv6 for ISP’s
NETWORK Network prefix, subnet mask
PROVISIONING router
onsdag 25 januari 12
15. DUID = Device Identifier
SYSTEM DUID - Device Unique Identifier
IF
IF IAID - Interface Adapter Identifier
IF
In IPv4 DHCP the MAC
is the system!
onsdag 25 januari 12
16. Where are they?
DUID
IAID Only shown in Microsoft
ETH0 Windows 7. I can’t find it
easily in any other system.
IAID
Required to set up static
WLAN0 DHCPv6 address
management.
onsdag 25 januari 12
17. Various options
RA + SLAAC RA
SLAAC + DHCPv6 + DHCPv6
• Announce a prefix and a • RA tells device to use • RA tells device to get IP and
router with SLAAC and fetch more more options in DHCPv6
RADVD or RTSOL support options in DHCPv6
• Device sends DUID+IAID
• MAC or temporary • DNS address, NTP server
• Better management - log in
• Simple, but not much control • Better management, but still DHCP server
not much control
• Where is the DUID?
onsdag 25 januari 12
18. Privacy enhanced
• ”Welcome back. You’re using a
MacBook Pro 10th generation
from Sollentuna, Sweden.”
• Why should I let everyone see my
MAC address? And that I use
multiple devices?
• All systems support this. Windows
enable it by default. No other
system has it in the UI.
onsdag 25 januari 12
19. STATUS REPORT
Playing with different operating systems
onsdag 25 januari 12
20. Disclaimer
• I’ve tested these systems as a beginner, just spending an
hour or so on each
• I want it to be that easy.
• After 15 years of IPv6 it should just work
• I might have missed some basic stuff
- but someone like me should
not be able to do that.
• Feedback is always positive!
onsdag 25 januari 12
21. TEST focus
• Can I install a desktop O/S over IPv6?
• Can I add and install packages over IPv6?
• Can I configure it with combinations of Router Solicitation/
Adverts and DHCPv6?
• How ready are we to run IPv6 single stack?
onsdag 25 januari 12
22. Test network
IPv6
LAN
Sheeva
Plug
IPv4
Internet Home IPv4
Gateway LAN
Tunnel
Broker
IPv6
Internet
onsdag 25 januari 12
23. Top of the line: Windows 7
• Microsoft has
implemented IPv6
throughout the O/S
• The O/S doesn’t work
properly without IPv6
• Server-side support is
improving, but doesn’t
cover all of the product
line
onsdag 25 januari 12
24. Installation over IPv6
• OpenBSD with router solicitations, do not use DHCPv6
• FreeBSD - found an IPv6 address, but did not succeed
• Maybe use a FTP/HTTP client that is single stack?
• Debian, Ubuntu - don’t know. I could not select addresses at
installation, it just started automatically somehow. Could not test
on IPv6 only network.
• I had to enable dual stack for installation on all systems
onsdag 25 januari 12
25. OpenBSD 5
• Stateless Autoconfiguration
• DHCPv6 - there are ports, but not integrated
• Very hard to find any documentation or information
• ftp.openbsd.org has no IPv6, mirrors have
onsdag 25 januari 12
26. FreeBSD 9.0
• Support for SLAAC
• Complicated to get support for DHCPv6
• No easy configuration
• IPv6 in sysinstall
• IPv6 in installer, but can’t install over IPv6 (port system distributed)
• ftp.freebsd.org has two IPv6 addresses
• System config supports ra + dhcpv6
onsdag 25 januari 12
27. FreeBSD 9
• NO dhcpv6 options in network configuration
• Only router advertisments
• No privacy address in network configuration
• Most of the ports servers do not support IPv6 - maybe through
proxy
• The install gets IPv6 address through SLAAC, saves it as static in
config. Bad.
onsdag 25 januari 12
29. Fedora 15
• No support for privacy address in user interface
• Good attempt at configuration, but broken
• Nothing is saved in ifcfg-eth0
• You can set if IPv4 or IPv6 or both are required for the system to
indicate ”Connected to network”
onsdag 25 januari 12
31. Debian
• DHCP for IPv4 and autoconf for Ipv6 overwrite /etc/resolv.conf
• Only Ipv6 name server, but dhcp ipv4 address
• ftp.se.debian.org supports IPv6 so for me, package installation
worked over IPv6 only
onsdag 25 januari 12
32. Ubuntu 11.10
• Default installation use IPv4 and installs only IPv4 even if IPv6 is available
• Same network app as Fedora
• Supports IPv6 in a good way
• No UI support for IPv6 temporary addresses
• If dual stack, only IPv4 is shown in UI
onsdag 25 januari 12
35. OS/X
What does this
mean?
Where’s the DUID?
(This is assigned by DHCPv6)
onsdag 25 januari 12
36. Summary
• Seems like most systems started with SLAAC and thought ”We’re
done!”
• Confusion on RA+DNS, RA+DHCPv6, DHCPv6 without RA
• Bad support for privacy addresses
• Most of the stuff exist in all kernels, but sysctl is not for normal
users
onsdag 25 januari 12
37. The end
...or is it the
beginning?
It’s embarrassing to see that the
free operating systems are
doing so badly in this area.
onsdag 25 januari 12