Implement and Deploy IPv6

  • Have the knowledge and skills to administer, secure and troubleshoot an IPv6 network

Network technicians and engineers, administrators, application developers.

Knowledge of TCP / IP equivalent to the course “TCP / IP: IP Technologies and Services”.

2 Days.

Practical workshops:. Installation and configuration of IPv6 on hosts (Windows or Linux) and routers. Analysis of protocols with Wireshark. Design of an IPv6 addressing plan. Implementing and troubleshooting stateless configuration on routers. Implementing and troubleshooting stateful configuration (statefull / DHCP). Configuration of a DHCPv6 server and an IPv6 DNS server (Windows 2008 R2), impact on the configuration of the routers. Implementation of an automatic tunnel (6to4, ISATAP) built using routers on an existing IPv4 network. Deployment of an IPv6 IPsec tunnel between two security gateways For “remote” training, they are carried out with a Teams or Zoom type videoconferencing tool depending on the case, allowing the trainer to adapt his teaching methods.

Introduction

IPv4, 30 years of success Reasons for the questioning Emergency measures: CIDR, private addressing

Overview of the new protocol

Comparison of the format of IPv4 / IPv6 packets Chaining extension headers Major extensions: step by step (Hop-by-Hop), destination, routing, fragment, authentication (AH – Authentication Header), encryption (ESP – Encryption Security) Payload), MobilityImpact of IPv6 over TCP, UDP and ICMP

Addressing plan

Address typing, representation, lifetime Global unicast space Interface identifiers Link-local space Unique local addresses Multicast space Anycast addresses Special addresses Address allocation activities, IANA, RIRs (assignments already made)

Automatic configuration

The new attributes of the ICMP protocol in its version v6 The NDP (Neighbor Discovery) protocol. the different messages useful for the NDP protocol The different phases of an automatic stateless configuration. creation of the link-local address. duplicate address detection mechanism. construction of the unique global address
How does a station discover a suitable DNS server in stateless autoconfiguration Stateful configuration, DHCPv6

Support for IPv6 applications

DNS and DDNS. AAAA registration. the reverse resolution. server software. resolvers Telnet, SSH, TFTP, SNMP

IPv4 – Ipv6 cohabitation, transition mechanisms

Dual stack Coexistence of IPv4-only and IPv6-only nodes Address translation IPv6 interconnection achieved using tunnels built into an IPv4 network. manual tunnel. GRE tunnel. 6to4 automatic tunnel. ISATAP tunnel

First-Hop Routing Protocols (FHRP)

HSRP and GLBP

Implementing IPv6 Routing

Static routing, RIPng, OSPFv3, EIGRP for IPv6

IPv6 security

Reminder of basic concepts. Availability, Integrity, Confidentiality, Authentication, Non-repudiation Integrated mechanisms of IPsec. the concept of security association. authenticating hosts with AH. data privacy with ESP. IKE key exchange mechanism, IKE components: ISAKMP

Practical workshops:

. Installation and configuration of IPv6 on hosts (Windows or Linux) and routers (CISCO, JUNIPER). Analysis of protocols with Wireshark. Design of an IPv6 addressing plan. Implementing and troubleshooting stateless configuration on routers. Implementing and troubleshooting stateful configuration (statefull / DHCP). Configuration of a DHCPv6 server and an IPv6 DNS server (Windows 2008 R2), impact on the configuration of the routers. Implementation of an automatic tunnel (6to4, ISATAP) built using routers on an existing IPv4 network. Deploying an IPv6 IPsec tunnel between two security gateways