Cisco Public © 2013 Cisco and/or its affiliates. All rights reserved. 1 Understanding IPv6 - Addressing & Subnetting Part 3
Feb 22, 2016
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 1
Understanding IPv6 - Addressing & Subnetting Part 3
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
AgendaGlobal unicast address assignment
Stateless Address AutoconfigurationStateless DHCPStateful DHCP
Other types of addressesLink Local AddressMulticast AddressSolicited Node Multicast
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
AgendaGlobal unicast address assignment
Stateless Address AutoconfigurationStateless DHCPStateful DHCP
Other types of addressesLink Local AddressMulticast AddressSolicited Node Multicast
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
Global Unicast
Global Unicast Address Assignment
IPv6 Unnumbered
Stateless Autoconfiguration
Static EUI-64
Manual
IPv6 Address
Dynamic
DHCPv6
IPv6 unnumbered is similar to the IPv4 unnumbered.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
Stateless Autoconfig
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Stateless Address Autoconfiguration (SLAAC)
• Stateless Address Autoconfiguration (SLAAC) is an automatic method for assigning global unicast addresses to interfaces.
• No need for DHCPv6 server
NDP Router Solicitation
ipv6 unicast-routing
1
2
MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64NDP Router Advertisement
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
ipv6 unicast-routingR1
DHCPv6 Server
R1(config)# ipv6 unicast-routing
• Router Solicitation and Router Advertisement messages are about communications between a host and a router.
NDP Router AdvertisementNDP Router Solicitation “Need information from the router”
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
ipv6 unicast-routingR1
DHCPv6 Server
R1(config)# ipv6 unicast-routing
• Router Solicitation and Router Advertisement messages are about communications between a host and a router.
• Part of ICMPv6’s Neighbor Discovery Protocol
NDP Router AdvertisementNDP Router Solicitation “Need information from the router”
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
ipv6 unicast-routingR1
DHCPv6 Server
R1(config)# ipv6 unicast-routing
• Router Solicitation and Router Advertisement messages are about communications between a host and a router.
• Part of ICMPv6’s Neighbor Discovery Protocol
• Routers periodically send Router Advertisement messages or response to a Router Solicitation message from a host on the link.
NDP Router AdvertisementNDP Router Solicitation “Need information from the router”
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 10
ipv6 unicast-routingRouterA
DHCPv6 Server
• The router’s Router Advertisement can determine how the host gets its dynamic address configuration.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 11
ipv6 unicast-routingRouterA
DHCPv6 Server
• The router’s Router Advertisement can determine how the host gets its dynamic address configuration.
• ipv6 unicast-routing command enables router to send Router Advertisements.
RouterA(config)# ipv6 unicast-routing
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 12
ipv6 unicast-routingRouterA
DHCPv6 Server
NDP Router Solicitation “Need information from the router”
1
• Router Advertisements are sent periodically (Cisco default every 200 seconds)
• Or in response to a Router Solicitation message.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 13
ipv6 unicast-routing
2
RouterA
DHCPv6 Server
NDP Router Solicitation “Need information from the router”
1
• Router Advertisements are sent periodically (Cisco default every 200 seconds)
• Or in response to a Router Solicitation message.
NDP Router Advertisement
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 14
ipv6 unicast-routing
2
RouterA
DHCPv6 Server
NDP Router Solicitation “Need information from the router”
1
• The router’s Router Advertisement can determine how the host gets its dynamic address configuration.
NDP Router Advertisement “I’m everything you need (Prefix, Prefix-length, Default Gateway)”
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 15
ipv6 unicast-routing
2
RouterA
DHCPv6 Server
NDP Router Solicitation “Need information from the router”
1
• The router’s Router Advertisement can determine how the host gets its dynamic address configuration.
NDP Router Advertisement “I’m everything you need (Prefix, Prefix-length, Default Gateway)” Or“Here is my information but you need to get other information such as DNS addresses from a DHCPv6 server.”
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 16
ipv6 unicast-routing
2
RouterA
DHCPv6 Server
NDP Router Solicitation “Need information from the router”
1
• The router’s Router Advertisement can determine how the host gets its dynamic address configuration.
NDP Router Advertisement “I’m everything you need (Prefix, Prefix-length, Default Gateway)” Or“Here is my information but you need to get other information such as DNS addresses from a DHCPv6 server.”Or“I can’t help you. Ask a DHCPv6 server for all your information.”
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
NDP Router Solicitation
ipv6 unicast-routing
1 MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
NDP Router Advertisement From: FE80::1 (Link-local address)
NDP Router Solicitation
ipv6 unicast-routing
12
MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)
NDP Router Solicitation
ipv6 unicast-routing
12
MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1::
NDP Router Solicitation
ipv6 unicast-routing
12
MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
MAC: 00-19-D2-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
3
MAC: 00-19-D2-8C-E0-4C
Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
3
MAC: 00-19-D2-8C-E0-4C
Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64EUI-64 Interface ID: 02-19-D2-FF-FE-8C-E0-4C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
3
MAC: 00-19-D2-8C-E0-4C
Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64EUI-64 Interface ID: 02-19-D2-FF-FE-8C-E0-4CGlobal Unicast Address: 2001:DB8:AAAA:1:0219:D2FF:FE8C:E04C
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
3
MAC: 00-19-D2-8C-E0-4C
Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64EUI-64 Interface ID: 02-19-D2-FF-FE-8C-E0-4CGlobal Unicast Address: 2001:DB8:AAAA:1:0219:D2FF:FE8C:E04CDefault Gateway: FE80::1
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
NDP Router Advertisement From: FE80::1 (Link-local address)To: FF02::1 (All-hosts multicast)Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64
NDP Router Solicitation
ipv6 unicast-routing
12
3
MAC: 00-19-D2-8C-E0-4C
Prefix: 2001:DB8:AAAA:1:: Prefix-length: /64EUI-64 Interface ID: 02-19-D2-FF-FE-8C-E0-4CGlobal Unicast Address: 2001:DB8:AAAA:1:0219:D2FF:FE8C:E04CDefault Gateway: FE80::1
PC1> ipconfig IPv6 Address. . . . . . : 2001:DB8:AAAA:1:0219:D2FF:FE8C:E04C Default Gateway . . . . : fe80::1
RouterA
EUI-64
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
PC1> ipconfigWindows IP ConfigurationEthernet adapter Local Area Connection: IPv6 Address. . . . . . . . . : 2001:DB8:AAAA:1:0219:D2FF:FE8C:E04C
Link-local IPv6 Address . . . : fe80::50a5:8a35:a5bb:66e1%11 Default Gateway . . . . . . . : fe80::1
Windows and the Interface ID
• Windows XP and Server 2003 use EUI-64. • Windows Vista and newer do not use EUI-64; hosts create a random 64-bit
Interface ID.
The %value following the link-local address is a Windows Zone ID and not part of IPv6.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
Live DemoClient
ipv6 address autoconfig [default] / ipv6 nd autoconfig default-route
debug ipv6 nd
show ipv6 int br
show ipv6 int
show ipv6 route
See Wireshark capture 1.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
M and O bits M means = Managed
O means = Other
These bits are set in RA ( Router Advertisement) and sent to end devices
M=0 and O=0 use SLAAC and use static config for DNS config
M=0 and O=1 use SLAAC and use DHCPv6 server for DNS config
This is called Stateless DHCP as DHCP server does not maintain any binding
M=1 and O=0 use DHCPv6 server to get all the information
This is called as Stateful DHCP as the server maintains all the bindings
M=1 and O=1 Invalid
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Stateless DHCP
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 31
NDP Router Advertisement “Here is my information but you need to get other information such as DNS addresses from a DHCPv6 server.”Or“I can’t help you. Ask a DHCPv6 server for all your information.”
NDP Router Solicitation
ipv6 unicast-routing
1
RouterA
DHCPv6 Server
Stateless Addressing
2
DHCPv6 Server
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 32
ipv6 unicast-routing
1
RouterA
2 DHCPv6 Advertise Message“I’m a DHCPv6 Server.”
DHCPv6 Solicit Message“I need a DHCPv6 Server.”
DHCPv6 Server
3 DHCPv6 Information Request Message“I need some other information.
4 DHCPv6 Reply Message“Here is your other information.”
Address obtained via SLAAC
“Stateless DHCPv6”
Not always generated
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Live DemoClient
ipv6 address autoconfig [default] / ipv6 nd autoconfig default-route
sh ipv6 dhcp int f0/0
debug dhcp
Server
ipv6 dhcp pool DHCP
ipv6 nd other-config-flag
ipv6 dhcp server DHCP
sh ipv6 dhcp pool
debug ipv6 dhcp
See Wireshark capture 2.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Stateful DHCPv6
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 35
ipv6 unicast-routing
1
RouterA
2 DHCPv6 Advertise Message“I’m a DHCPv6 Server.”
DHCPv6 Solicit Message“I need a DHCPv6 Server.”
DHCPv6 Server
3 DHCPv6 Request Message“I need addressing information.
4 DHCPv6 Reply Message“Here is your address and other information.”
DHCPv6 Addressing
“Stateful DHCPv6”
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
Live DemoClient
ipv6 address dhcp
sh ipv6 dhcp int f0/0
debug dhcp
Server
ipv6 dhcp pool DHCP
ipv6 nd managed-config-flag
ipv6 dhcp server DHCP
sh ipv6 dhcp pool
debug ipv6 dhcp
See Wireshark capture 3.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
AgendaGlobal unicast address assignment
Stateless Address AutoconfigurationStateless DHCPStateful DHCP
Other types of addressesLink Local AddressMulticast AddressSolicited Node Multicast
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
IPv6 Addressing
IPv6 Address Types
MulticastUnicast Anycast
Assigned Solicited Node
Global Unicast UnspecifiedLoopback Embedded IPv4Link-Local Unique Local
FF00::/8 FF02::1:FF00:0000/104
::/128::1/1282000::/33FFF::/3
FE80::/10FEBF::/10
FC00::/7FDFF::/7
::/80
Note: There are no broadcast addresses in IPv6
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 39
Link-local Unicast Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
IPv6 Addressing
Link-Local Unicast
MulticastUnicast Anycast
Assigned Solicited Node
Global Unicast UnspecifiedLoopback Embedded IPv4Link-Local Unique Local
FF00::/8 FF02::1:FF00:0000/104
::/128::1/1282000::/33FFF::/3
FE80::/10FEBF::/10
FC00::/7FDFF::/7
::/80
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 4141
Range: FE80::/10 FEBF::/10
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 4242
Range: FE80::/10 FEBF::/10
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 43
• Used to communicate with other devices on the link.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 44
• Used to communicate with other devices on the link.• Are NOT routable off the link.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 45
• Used to communicate with other devices on the link.• Are NOT routable off the link.• An IPv6 device must have at least a link-local address.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 46
• Used to communicate with other devices on the link.• Are NOT routable off the link.• An IPv6 device must have at least a link-local address.• Used by:
• A host to communicate on the IPv6 network before it gets a global unicast address.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 47
• Used to communicate with other devices on the link.• Are NOT routable off the link.• An IPv6 device must have at least a link-local address.• Used by:
• A host to communicate on the IPv6 network before it gets a global unicast address.
• A host as the default gateway address.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 48
• Used to communicate with other devices on the link.• Are NOT routable off the link.• An IPv6 device must have at least a link-local address.• Used by:
• A host to communicate on the IPv6 network before it gets a global unicast address.
• A host as the default gateway address.• Adjacent routers to exchange routing updates.
Interface ID/64
1111 1110 10xx xxxx
FE80::/10
Remaining 54 bits10 bits 64 bits
EUI-64, Random or Manual Configuration
Link-local unicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 49
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Link-local address automatically created when (before) the global unicast address is.
Link-local address: ?
Link-local address: ?
PC-1
R2R1
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 50
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Link-local address automatically created when (before) the global unicast address is.
• FE80 + 64-bit Interface ID• EUI-64 Format or• Randomly generated
Link-local address: ?
Link-local address: ?
PC-1
R2R1
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 51
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Link-local address automatically created when (before) the global unicast address is.
• FE80 + 64-bit Interface ID• EUI-64 Format• Randomly generated
• Link-local address can also be created statically.Link-local address: ?
Link-local address: ?
PC-1
R2R1
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 52
show ipv6 interface brief command on router R1R1# show ipv6 interface briefFastEthernet0/0 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:1::1Serial0/0/0 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:A001::1Serial0/0/1 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:A003::1R1#
• Link-local address automatically created when (before) the global unicast address.
Global unicast addressLink-local unicast address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 53
show ipv6 interface brief command on router R1R1# show ipv6 interface briefFastEthernet0/0 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:1::1Serial0/0/0 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:A001::1Serial0/0/1 [up/up] FE80::203:6BFF:FEE9:D480 2001:DB8:CAFE:A003::1R1#
• Link-local address automatically created when (before) the global unicast address.
• By default, IOS will use modified EUI-64 format.
Global unicast addressLink-local unicast address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
R1# show interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up Hardware is AmdFE, address is 0003.6be9.d480 (bia
0003.6be9.d480)<output omitted for brevity>
Ethernet MAC address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
Hexadecimal
OUI24 bits
Device Identifier24 bits
Binary
Step 1: Split the MAC address
Binary
Step 2: Insert FFFE
Binary
Step 3: Flip the U/L bit
Binary
Modified EUI-64 Interface ID in Hexadecimal Notation
1111 1111 1111 1110
1111 1111 1111 1110
02 03 6B E9 D4 80FF FE
00 03 6B E9 D4 80
0000 0000 0000 0011 0110 1011 1110 1001
1101 0100 1000 0000
1110 1001
1101 0100 1000 0000
1110 1001
1101 0100 1000 0000
0000 0000 0000 0011 0110 1011
0000 0010 0000 0011 0110 1011
Modified EUI-64 Format
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
R1# show interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up Hardware is AmdFE, address is 0003.6be9.d480 (bia
0003.6be9.d480)<output omitted for brevity>
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64<output omitted for brevity>
Link-local address using EUI-64 format
Ethernet MAC address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Dynamic link-local addresses can be difficult to identify.
PC-1
R2R1
FE80::203:6BFF:FEE9:D480(EUI-64)
FE80::50A5:8A35:A5BB:66E1
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Dynamic link-local addresses can be difficult to identify.
• Routers use link-local addresses for: • Exchanging routing updates• Default gateway address for hosts
PC-1
R2R1
FE80::203:6BFF:FEE9:D480(EUI-64)
FE80::50A5:8A35:A5BB:66E1
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Dynamic link-local addresses can be difficult to identify.
• Routers use link-local addresses for: • Exchanging routing updates• Default gateway address for hosts
• Static link-local addresses are easier to remember and identify.
PC-1
R2R1
FE80::203:6BFF:FEE9:D480(EUI-64)
FE80::50A5:8A35:A5BB:66E1
FE80::1(Static)
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
Global Unicast:2001:0DB8:CAFE:1::0100
2001:0DB8:CAFE:A001::/64
2001:0DB8:CAFE:1::/64
Fa0/0
Ser 0/0/0.1
Ser 0/0/0 .2
Global Unicast:2001:0DB8:CAFE:1::1/64
• Dynamic link-local addresses can be difficult to identify.
• Routers use link-local addresses for: • Exchanging routing updates• Default gateway address for hosts
• Static link-local addresses are easier to remember and identify.
• Link-local addresses only have to be unique on the link!
PC-1
R2R1
FE80::203:6BFF:FEE9:D480(EUI-64)
FE80::50A5:8A35:A5BB:66E1
FE80::1(Static)
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
R1(config)# interface fastethernet 0/0R1(config-if)# ipv6 address fe80::1 ? link-local Use link-local address
R1(config)#
Static Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
R1(config)# interface fastethernet 0/0R1(config-if)# ipv6 address fe80::1 ? link-local Use link-local address
R1(config)# interface fastethernet 0/0 R1(config-if)# ipv6 address fe80::1 link-local R1(config-if)# exitR1(config)#
Static Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 63
R1(config)# interface fastethernet 0/0R1(config-if)# ipv6 address fe80::1 ? link-local Use link-local address
R1(config)# interface fastethernet 0/0 R1(config-if)# ipv6 address fe80::1 link-local R1(config-if)# exitR1(config)# interface serial 0/0/0R1(config-if)# ipv6 address fe80::1 link-localR1(config-if)# exitR1#
Static Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 64
R1(config)# interface fastethernet 0/0R1(config-if)# ipv6 address fe80::1 ? link-local Use link-local address
R1(config)# interface fastethernet 0/0 R1(config-if)# ipv6 address fe80::1 link-local R1(config-if)# exitR1(config)# interface serial 0/0/0R1(config-if)# ipv6 address fe80::1 link-localR1(config-if)# exitR1#R1# show ipv6 interface briefFastEthernet0/0 [up/up] FE80::1 2001:DB8:CAFE:1::1Serial0/0/0 [up/up] FE80::1 2001:DB8:CAFE:A001::1
Same link-local unicast address (best practice)
Static Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
R1# show running-config!interface FastEthernet0/0 no ip address ipv6 address FE80::1 link-local ipv6 address 2001:DB8:CAFE:1::1/64!interface Serial0/0/0 no ip address ipv6 address FE80::1 link-local ipv6 address 2001:DB8:CAFE:A001::1/64!
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
R1# ping fe80::2
Fa0/0
Global Unicast: 2001:0DB8:CAFE:1::1/64
FE80::1 2001:0DB8:CAFE:A001::/64
Ser 0/0/0.1
Ser 0/0/0 .2
R2R1FE80::1 FE80::2
Ping Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 67
R1# ping fe80::2Output Interface: ser 0/0/0 Must include exit-interface
Fa0/0
Global Unicast: 2001:0DB8:CAFE:1::1/64
FE80::1 2001:0DB8:CAFE:A001::/64
Ser 0/0/0.1
Ser 0/0/0 .2
R2R1FE80::1 FE80::2
Ping Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 68
R1# ping fe80::2Output Interface: ser 0/0/0% Invalid interface. Use full interface name without
spaces (e.g. Serial0/1)Output Interface: serial0/0/0
Must include exit-interface
Fa0/0
Global Unicast: 2001:0DB8:CAFE:1::1/64
FE80::1 2001:0DB8:CAFE:A001::/64
Ser 0/0/0.1
Ser 0/0/0 .2
R2R1FE80::1 FE80::2
Ping Link-local Address
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 69
R1# ping fe80::2Output Interface: ser 0/0/0% Invalid interface. Use full interface name without spaces
(e.g. Serial0/1)Output Interface: serial0/0/0Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to FE80::2, timeout is 2 secs:!!!!!
Must include exit-interface
Fa0/0
Global Unicast: 2001:0DB8:CAFE:1::1/64
FE80::1 2001:0DB8:CAFE:A001::/64
Ser 0/0/0.1
Ser 0/0/0 .2
R2R1FE80::1 FE80::2
Ping Link-local Address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 70
ipv6 enable commandRouter(config)# interface fastethernet 0/1
• Link-local addresses are automatically created whenever a global unicast address is configured, or when the ipv6 enable command is entered.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 71
ipv6 enable commandRouter(config)# interface fastethernet 0/1Router(config-if)# ipv6 enableRouter(config-if)# endRouter#
• Link-local addresses are automatically created whenever a global unicast address is configured, or when the ipv6 enable command is entered.
• The ipv6 enable command will:
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 72
ipv6 enable commandRouter(config)# interface fastethernet 0/1Router(config-if)# ipv6 enableRouter(config-if)# endRouter#
• Link-local addresses are automatically created whenever a global unicast address is configured, or when the ipv6 enable command is entered.
• The ipv6 enable command will:• Create a link-local address when there is no global unicast address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 73
ipv6 enable commandRouter(config)# interface fastethernet 0/1Router(config-if)# ipv6 enableRouter(config-if)# endRouter# show ipv6 interface briefFastEthernet0/1 [up/up] FE80::20C:30FF:FE10:92E1Router#
• Link-local addresses are automatically created whenever a global unicast address is configured, or when the ipv6 enable command is entered.
• The ipv6 enable command will:• Create a link-local address when there is no global unicast address
Link-local unicast address only
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 74
ipv6 enable commandRouter(config)# interface fastethernet 0/1Router(config-if)# ipv6 enableRouter(config-if)# endRouter# show ipv6 interface briefFastEthernet0/1 [up/up] FE80::20C:30FF:FE10:92E1Router#
• Link-local addresses are automatically created whenever a global unicast address is configured, or when the ipv6 enable command is entered.
• The ipv6 enable command will:• Create a link-local address when there is no global unicast address• Maintain the link-local address even when the global unicast address
is removed.
Link-local unicast address only
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 75
PC1> ipconfigWindows IP ConfigurationEthernet adapter Local Area Connection: Connection-specific DNS Suffix . : IPv6 Address. . . . . . . . . . . : 2001:db8:cafe:1::100
Link-local IPv6 Address . . . . . : fe80::50a5:8a35:a5bb:66e1%11 Default Gateway . . . . . . . . . : 2001:db8:cafe:1::1
Windows Link-local address
• Windows operating systems, Windows XP and Server 2003 use EUI-64. • Windows Vista and newer do not use EUI-64 create a random 64-bit Interface ID.
The %value following the link-local address is a Windows Zone ID and not part of IPv6.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 76
Mymac$ ifconfigen0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether c4:2c:03:2a:b5:a2 inet6 fe80::c62c:3ff:fe2a:b5a2
MAC Link-local address
• My MAC OS 10.6 uses EUI-64 but you check with your OS flavor and version.• Many Linux flavors are moving to random Interface IDs
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 77
Multicast Addresses
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 78
IPv6 Addressing
Multicast Addresses
MulticastUnicast Anycast
Assigned Solicited Node
Global Unicast UnspecifiedLoopback Embedded IPv4Link-Local Unique Local
FF00::/8 FF02::1:FF00:0000/104
::/128::1/1282000::/33FFF::/3
FE80::/10FEBF::/10
FC00::/7FDFF::/7
::/80
Similar to IPv4 multicast – one-to-many addressing
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 79
Group IDFlag1111 1111
FF00::/8
8 bits 112bits4 bits 4 bits
Scope
Flag0 Permanent, well-known multicast address assigned by IANA1 Non-permanently-assigned, “dynamically" assigned multicast address
Scope (partial list) 0 Reserved1 Interface-Local scope2 Link-Local scope5 Site-Local scope8 Organization-Local scope
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 80
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
All-nodes on this link (Assigned)
Member of these Multicast Groups
• FF02 – “2” means link-local scope
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 81
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
All-nodes on this link (Assigned)All-routers on this link: IPv6 routing enabled (Assigned)
Member of these Multicast Groups
• FF02 – “2” means link-local scope
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 82
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
All-nodes on this link (Assigned)All-routers on this link: IPv6 routing enabled (Assigned)
Solicited-node multicast address for Global Address
Member of these Multicast Groups
• FF02 – “2” means link-local scope
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 83
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
All-nodes on this link (Assigned)All-routers on this link: IPv6 routing enabled (Assigned)
Solicited-node multicast address for Link-local Unicast Address
Solicited-node multicast address for Global Address
Member of these Multicast Groups
• FF02 – “2” means link-local scope• What is Solicited node? (coming)
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 84
Enabling IPv6 RoutingR1(config)# interface fastethernet 0/0R1(config-if)# ipv6 address 2001:0db8:cafe:0001::1/64
• A router’s interfaces can be enabled for IPv6 (get an IPv6 address) like any other device on the network.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 85
Enabling IPv6 RoutingR1(config)# ipv6 unicast-routingR1# show ipv6 interface fastethernet 0/0 Joined group address(es): FF02::2
• A router’s interfaces can be enabled for IPv6 (get an IPv6 address) like any other device on the network.
• For the router to “act” as an IPv6 router it must be enabled with the ipv6 unicast-routing command.
All-routers on this link (Assigned)
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 86
Enabling IPv6 RoutingR1(config)# ipv6 unicast-routingR1# show ipv6 interface fastethernet 0/0 Joined group address(es): FF02::2
• A router’s interfaces can be enabled for IPv6 (get an IPv6 address) like any other device on the network.
• For the router to “act” as an IPv6 router it must be enabled with the ipv6 unicast-routing command.
• This enables the router to:• Send Router Advertisement messages
All-routers on this link (Assigned)
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 87
Enabling IPv6 RoutingR1(config)# ipv6 unicast-routingR1# show ipv6 interface fastethernet 0/0 Joined group address(es): FF02::2
• A router’s interfaces can be enabled for IPv6 (get an IPv6 address) like any other device on the network.
• For the router to “act” as an IPv6 router it must be enabled with the ipv6 unicast-routing command.
• This enables the router to:• Send Router Advertisement messages • Enable the forwarding of IPv6 packets.
All-routers on this link (Assigned)
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 88
Enabling IPv6 RoutingR1(config)# ipv6 unicast-routingR1# show ipv6 interface fastethernet 0/0 Joined group address(es): FF02::2
• A router’s interfaces can be enabled for IPv6 (get an IPv6 address) like any other device on the network.
• For the router to “act” as an IPv6 router it must be enabled with the ipv6 unicast-routing command.
• This enables the router to:• Send Router Advertisement messages • Enable the forwarding of IPv6 packets.• Participate in IPv6 routing protocols: RIPng, EIGRP for IPv6, OSPFv3
All-routers on this link (Assigned)
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 89
Similar to IPv4 Multicast
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 90
Identify the following IPv6 Multicast addressesFF02::2
FF02::5
FF02::6
FF02::9
FF02::A
All the routers within an link
AllSPF Routers ( OSPFv3)
AllDRs routers (OSPFv3)
All RIP Routers
All EIGRP Routers
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 91
Solicited Node Multicast
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 92
NIC: I will listen for my MAC addressIP: I listen for my IP addresses (Global and Link-local)
Global Unicast Address:Link-local Unicast Address:
MAC Unicast Address:
2001:0DB8:AAAA:0001:0000:0000:0000:0200FE80::1111:2222:3333:4444
00-19-D2-8C-E0-4C
PC-2
• Devices listen for their unicast addresses.
MACIP: Global or Link-local
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 93
NIC: I will listen for my MAC addressIP: I listen for my IP addresses (Global and Link-local)
Global Unicast Address:Link-local Unicast Address:
MAC Unicast Address:
2001:0DB8:AAAA:0001:0000:0000:0000:0200FE80::1111:2222:3333:4444
00-19-D2-8C-E0-4C
PC-2
• Devices listen for their unicast addresses.• Devices also listen for their multicast addresses…
MACIP: Global or Link-local
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 94
Solicited-node multicast addresses for PC2IP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:
Link-local Unicast Address:
MAC Unicast Address:
2001:0DB8:AAAA:0001:0000:0000:0000:0200
FE80::1111:2222:3333:4444
00-19-D2-8C-E0-4C
PC-2
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 95
Solicited-node multicast addresses for PC2
IP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:Solicited Node (Global):
Link-local Unicast Address:
MAC Unicast Address:
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200FE80::1111:2222:3333:4444
00-19-D2-8C-E0-4C
PC-2
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 96
Solicited-node multicast addresses for PC2
IP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:Solicited Node (Global):
Link-local Unicast Address:Solicited Node (Link-local):
MAC Unicast Address:
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200FE80::1111:2222:3333:4444FF02::1:FF33:4444
00-19-D2-8C-E0-4C
PC-2
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 97
Solicited-node multicast addresses for PC2
33-33-XX: is the OUI for IPv6 multicast
NIC: I will also listen for my MAC multicast addressesIP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:Solicited Node (Global):
Link-local Unicast Address:Solicited Node (Link-local):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200FE80::1111:2222:3333:4444FF02::1:FF33:4444
00-19-D2-8C-E0-4C33-33-FF-00-02-0033-33-FF-33-44-44
PC-2
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 98
Solicited-node multicast addresses for PC2
33-33-XX: is the OUI for IPv6 multicast
NIC: I will also listen for my MAC multicast addressesIP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:Solicited Node (Global):
Link-local Unicast Address:Solicited Node (Link-local):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200FE80::1111:2222:3333:4444FF02::1:FF33:4444
00-19-D2-8C-E0-4C33-33-FF-00-02-0033-33-FF-33-44-44
PC-2Broadcasts
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 99
Solicited-node multicast address
Interface IDGlobal Routing Prefix Subnet ID
128 bits
Unicast/Anycast Address
• Devices create a solicited node multicast address for their unicast (and anycast) addresses including:• Global Unicast Address• Link-local Address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 100
Solicited-node multicast address
Interface ID
FF02
24 bits
0000 0000 0000 0000 0001 FF
Global Routing Prefix Subnet ID
128 bits
Unicast/Anycast Address
Solicited-Node Multicast Address
104 bits
FF02:0:0:0:0:1:FF00::/104
• Uses the prefix: FF02:0:0:0:0:1:FF00::/104
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 101
Solicited-node multicast address
Interface ID
FF02
24 bits
0000 0000 0000 0000 0001 FF
Global Routing Prefix Subnet ID
104 bits 24 bits
Unicast/Anycast Address
Solicited-Node Multicast Address Copy
104 bits
FF02:0:0:0:0:1:FF00::/104
• Uses the prefix: FF02:0:0:0:0:1:FF00::/104 • + last 24 bits of Global or Link-local unicast address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 102
• Used as a destination address when don’t know the unicast address.• Address Resolution (“ARP”) and Duplicate Address Detection (“Gratuitous ARP”)
Solicited-node multicast address
Interface ID
FF02
24 bits
0000 0000 0000 0000 0001 FF
Global Routing Prefix Subnet ID
104 bits 24 bits
Unicast/Anycast Address
Solicited-Node Multicast Address Copy
104 bits
FF02:0:0:0:0:1:FF00::/104
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 103
• Used as a destination address when don’t know the unicast address.• Address Resolution (“ARP”) and Duplicate Address Detection (“Gratuitous ARP”)
• Same intent as a broadcast but more efficient.
Solicited-node multicast address
Interface ID
FF02
24 bits
0000 0000 0000 0000 0001 FF
Global Routing Prefix Subnet ID
104 bits 24 bits
Unicast/Anycast Address
Solicited-Node Multicast Address Copy
104 bits
FF02:0:0:0:0:1:FF00::/104
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 104
• Used as a destination address when don’t know the unicast address.• Address Resolution (“ARP”) and Duplicate Address Detection (“Gratuitous ARP”)
• Same intent as a broadcast but more efficient.• Devices process packets with their solicited node multicast address as the
destination address: IP and MAC.
Solicited-node multicast address
Interface ID
FF02
24 bits
0000 0000 0000 0000 0001 FF
Global Routing Prefix Subnet ID
104 bits 24 bits
Unicast/Anycast Address
Solicited-Node Multicast Address Copy
104 bits
FF02:0:0:0:0:1:FF00::/104
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 105
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
Solicited-node multicast address for Global Unicast Address
Last 24 bits of Global Unicast Address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 106
R1# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::203:6BFF:FEE9:D480 Global unicast address(es): 2001:DB8:AAAA:1::1, subnet is 2001:DB8:AAAA:1::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF00:1 FF02::1:FFE9:D480<output omitted for brevity>
Solicited-node multicast address for Link-local Unicast Address
Last 24 bits of Link-Local Unicast Address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 107
Router(config)# interface fastethenet 0/0Router(config-if)# ipv6 address 2001:db8:cafe:1::/64 eui-64Router# show ipv6 interface fastethernet 0/0FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::21B:CFF:FEC2:82D8 No Virtual link-local address(es): Global unicast address(es): 2001:DB8:CAFE:1:21B:CFF:FEC2:82D8, subnet is 2001:DB8:CAFE:1::/64
[EUI] Joined group address(es): FF02::1 FF02::2 FF02::1:FFC2:82D8
• NOTE: If the Global and Link-local addresses used EUI-64 the last 24 bits would be the same and there would only be one solicited node address.
Solicited-node multicast address for Global and Link-local unicast addresses
Last 24 bits of both Unicast Addresses
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 108
Solicited-node multicast addresses for PC2
33-33-XX: is the OUI for IPv6 multicast
NIC: I will also listen for my MAC multicast addressesIP: I will also listen for my IP multicast addresses (Global and Link-local)
Global Unicast Address:Solicited Node (Global):
Link-local Unicast Address:Solicited Node (Link-local):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200FE80::1111:2222:3333:4444FF02::1:FF33:4444
00-19-D2-8C-E0-4C33-33-FF-00-02-0033-33-FF-33-44-44
PC-2
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 109
Interface IDGlobal Routing Prefix104 bits
PC2’s Global Unicast Address
Subnet ID
2001:0DB8:AAAA 0001 0000:0000:00 00:0200
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 110
Interface ID
FF02 0000 0000 0000 0000 0001 FF
Global Routing Prefix104 bits 24 bits
PC2’s Global Unicast Address
PC2’s IPv6 Solicited-Node Multicast Address Copy
Subnet ID
2001:0DB8:AAAA 0001 0000:0000:00 00:0200
00:0200
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 111
Interface ID
FF02 0000 0000 0000 0000 0001 FF
Global Routing Prefix104 bits 24 bits
PC2’s Global Unicast Address
PC2’s IPv6 Solicited-Node Multicast Address Copy
PC2’s mapped solicited-node Ethernet multicast address : 33-33-FF-00-02-00
Subnet ID
2001:0DB8:AAAA 0001 0000:0000:00 00:0200
00:0200
FF-00-02-00
Copy
33-33Solicited-node Multicast address mapped to Ethernet destination MAC address
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 112
At Layer 2 and 3 I am listening for a lot of addresses.
Global Unicast Address:Solicited Node (Global):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200
33-33-FF-00-02-00
PC-2
Why Solicited Node Addresses?
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 113
At Layer 2 and 3 I am listening for a lot of addresses.
Global Unicast Address:Solicited Node (Global):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200
33-33-FF-00-02-00
PC-2
Why Solicited Node Addresses?• Broadcasts are sent to all devices.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 114
At Layer 2 and 3 I am listening for a lot of addresses.
Global Unicast Address:Solicited Node (Global):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200
33-33-FF-00-02-00
PC-2
Why Solicited Node Addresses?• Broadcasts are sent to all devices.• Devices must process all broadcast at least to layer 3.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 115
At Layer 2 and 3 I am listening for a lot of addresses.
Global Unicast Address:Solicited Node (Global):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200
33-33-FF-00-02-00
PC-2
Why Solicited Node Addresses?• Broadcasts are sent to all devices.• Devices must process all broadcast at least to layer 3.• Solicited Node Multicasts are only processed by those
devices with the matching last 24 bits (usually one device).
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 116
At Layer 2 and 3 I am listening for a lot of addresses.
Global Unicast Address:Solicited Node (Global):
MAC Unicast Address:Solicited Node (MAC):
2001:0DB8:AAAA:0001:0000:0000:0000:0200FF02::1:FF00:200
33-33-FF-00-02-00
PC-2
Why Solicited Node Addresses?• Broadcasts are sent to all devices.• Devices must process all broadcast at least to layer 3.• Solicited Node Multicasts are only processed by those
devices with the matching last 24 bits (usually one device).
• If I know the IPv6 address but not the MAC address I can send it to a solicited node addresses instead of a broadcast to everyone…
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 117
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:200
2001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 118
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:200
2001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
IPv6 Header
I know the target IPv6 Address…
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 119
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:200
2001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
Destination IPv6
FF02::1FF00:200
Source IPv6
2001:DB8:AAAA:1::100
IPv6 Header
So, I can create a Solicited Node Multicast Address…
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 120
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:200
2001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
Source MAC
00-12-34-56-78-9A
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
Destination IPv6
FF02::1FF00:200
Source IPv6
2001:DB8:AAAA:1::100
Dest. MAC
33-33-FF-00-02-00
IPv6 Header
So, I can create a Solicited Node MAC Address…
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 121
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:2002001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
NIC: That’s one of my solicited node MAC addresses.
IPv6: That’s one of my solicited node addresses.
Source MAC
00-12-34-56-78-9A
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
Destination IPv6
FF02::1FF00:200
Source IPv6
2001:DB8:AAAA:1::100
Dest. MAC
33-33-FF-00-02-00
IPv6 Header
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 122
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:2002001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
NIC: That’s one of my solicited node MAC addresses.
IPv6: That’s one of my solicited node addresses.
Source MAC
00-12-34-56-78-9A
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
Destination IPv6
FF02::1FF00:200
Source IPv6
2001:DB8:AAAA:1::100
Dest. MAC
33-33-FF-00-02-00
IPv6 Header
• Possible that multiple devices may have the same last 24 bits in their IPv6 address but only those devices would have to process up to the target.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 123
PC-1
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has 2001:DB8:AAAA:1::200 send me your Ethernet MAC address”
Address Resolution
PC-22001:DB8:AAAA:1::200 FF02::1:FF00:2002001:DB8:AAAA:1::100
MAC: 00-19-D2-8C-E0-4C 33-33-FF-00-02-00
NIC: That’s one of my solicited node MAC addresses.
IPv6: That’s one of my solicited node addresses.
Source MAC
00-12-34-56-78-9A
Ethernet ICMPv6
Target IPv6
2001:DB8:AAAA:1::200
Destination IPv6
FF02::1FF00:200
Source IPv6
2001:DB8:AAAA:1::100
Dest. MAC
33-33-FF-00-02-00
IPv6 Header
• PC-2 replies with it’s MAC address (Neighbor Advertisement Message)• More in ICMPv6 presentation!
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 124
Use of solicited-node multicasts with addressing resolution and DAD
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Before I use this address is anyone else on this link using this link-local address:FE80::50A5:8A35:A5BB:66E1?”
Duplicate Address Detection (DAD)
NDP Neighbor Solicitation MessageDestination: Solicited-node Multicast“Whoever has the IPv6 address 2001:DB8:AAAA:1::200 please send me your Ethernet MAC address”
Address Resolution
Similar to ARP in IPv4
Similar to gratuitous ARP in IPv4
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 125
Solicited Node Multicast AddressFind out solicited Node Multicast Address for the following IPv6 address
2001:DB8:CAFE:1::100
3001::1
FE80::1
FF02::1:FF00:100
FF02::1:FF00:1
FF02::1:FF00:1
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 126
Live Demosh ipv6 int f0/0
sh ipv6 neighbors
See Wireshark capture 4a and 4b for comparison with IPv4 ARP and Gratuitous ARP operations.
Cisco Public© 2013 Cisco and/or its affiliates. All rights reserved. 127
To summarize…
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 128
Global Unicast
Global Unicast Address Assignment
IPv6 Unnumbered
Stateless Autoconfiguration
Static EUI-64
Manual
IPv6 Address
Dynamic
DHCPv6
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 129
IPv6 Addressing
IPv6 Address Types
MulticastUnicast Anycast
Assigned Solicited Node
Global Unicast UnspecifiedLoopback Embedded IPv4Link-Local Unique Local
FF00::/8 FF02::1:FF00:0000/104
::/128::1/1282000::/33FFF::/3
FE80::/10FEBF::/10
FC00::/7FDFF::/7
::/80
Note: There are no broadcast addresses in IPv6
Thank you.