[afripv6-discuss] Configuring a 6to4 Relay in Cisco

JORDI PALET MARTINEZ jordi.palet at consulintel.es
Tue Jun 12 14:11:24 SAST 2007 

Hi Mohamed,

Yes, of course, count on me !

I will say the steps are:

1) Calculate the size of the prefix you need for the AfriNIC request (number
of customers each type, such as broadband/others, cellular, etc.) and grow
expectations in the short term (1-2 years) and then do the actual request.

2) Contact your existing upstreams to check if they can offer IPv6, or
otherwise, make sure that when you change the contracts, request that as a
MUST. Of course, we can always arrange service via third party networks, but
should be less and less required. In Mauritius you can even get native IPv6
from at least one carrier.

3) Make an inventory of the equipment in your network, including memory and
firmware versions, to double check that everything already supports IPv6, or
can be upgraded to. It should not be a showstopper, and even if some
equipment doesn't support IPv6, it should be feasible to use alternatives.

I think this are the major preliminary steps and can be done in just a few
days, then it is already a question of setting it up !

I will suggest that you start now, so we can may be have it ready at least
for a trial during 2007. Then you can make a full deployment in 2008.

Regards,
Jordi




> De: Mohamed Lemine Ould Mohamed Vadel <leminef at mauritel.mr>
> Responder a: <leminef at mauritel.mr>
> Fecha: Tue, 12 Jun 2007 11:02:36 -0000
> Para: <jordi.palet at consulintel.es>, IPv6 in Africa
> <afripv6-discuss at afrinic.net>
> Asunto: Re: RE : Re: RE : [afripv6-discuss] Configuring a 6to4 Relay in Cisco
> 
> Hello Jordi, Thank you for this very important initiative.
> I am the administrator of the network ISP of Maurinania.
> Since the last meeting of Afrinic I am convinced of the necessity of putting
> its network in IPv6.
> I would want your supports and your assistance to prepare this migration
> towards the IPv6. A migration which I plan before the end of year 2008.
> what you advise me to begin?
> Thank you in advance.
> 
> ----------------------------------------
> Mohamed Lemine Ould Mohamed Fadel
> Chef Centre Internet/ADSL
> Tel: +222 525 32 43
> Mob: +222 658 63 27
> Fax: +222 525 73 58
> Mauritel - Mauritanie
> ----------------------------------------
> ----- Original Message -----
> From: "JORDI PALET MARTINEZ" <jordi.palet at consulintel.es>
> To: <afripv6-discuss at afrinic.net>
> Sent: Sunday, June 10, 2007 8:11 AM
> Subject: Re: RE : Re: RE : [afripv6-discuss] Configuring a 6to4 Relay in
> Cisco
> 
> 
>> Hi Herve,
>> 
>> In this case, I think the IPv6 prefix request must be done by the
>> University/organization instead of by a single department. I guess you're
>> not yet an AfriNIC member ?
>> 
>> Are you the network administrator for the full organization ?, otherwise,
>> let's get in touch with him to start the process.
>> 
>> Other issues to start working on this will be:
>> 1) Who provides you the transit (one or several ISPs and which ones) ?
>> 2) What routing equipment (and others) you have, including software
>> versions, in order to make sure that they support IPv6, or otherwise look
>> for alterntives ?
>> 3) Do you have at least one public IPv4 address (it will be much easier in
>> case we need to arrange tunneling)?
>> 
>> Regards,
>> Jordi
>> 
>> 
>> 
>> 
>>> De: hervé TYPAMM <typamm at yahoo.fr>
>>> Responder a: <typamm at yahoo.fr>
>>> Fecha: Sat, 9 Jun 2007 18:43:01 +0200 (CEST)
>>> Para: <jordi.palet at consulintel.es>, "IPv6 in Africa
>>> <afripv6-discuss at afrinic.net>" <afripv6-discuss at afrinic.net>
>>> Asunto: RE : Re: RE : [afripv6-discuss] Configuring a 6to4 Relay in Cisco
>>> 
>>> Jordi,
>>> My network is not big. It's a Computer High school
>>> network (www.esiba.edu)and we have about 50 computers.
>>> 
>>> 
>>> Hervé
>>> 
>>> 
>>> --- JORDI PALET MARTINEZ <jordi.palet at consulintel.es>
>>> a écrit :
>>> 
>>>> Hi Herve,
>>>> 
>>>> That's easy. Let's try first to understand how big
>>>> is your network.
>>>> 
>>>> What kind of customers you connect and number of
>>>> each (residential,
>>>> enterprises, cellular phones, etc.). Which that we
>>>> can make an estimation of
>>>> the size of the prefix you need and then we can
>>>> start with the form.
>>>> 
>>>> Regards,
>>>> Jordi
>>>> 
>>>> 
>>>> 
>>>> 
>>>>> De: hervé TYPAMM <typamm at yahoo.fr>
>>>>> Responder a: <typamm at yahoo.fr>
>>>>> Fecha: Sat, 9 Jun 2007 15:52:04 +0200 (CEST)
>>>>> Para: <jordi.palet at consulintel.es>, "IPv6 in
>>>> Africa
>>>>> <afripv6-discuss at afrinic.net>"
>>>> <afripv6-discuss at afrinic.net>
>>>>> Asunto: RE : [afripv6-discuss] Configuring a 6to4
>>>> Relay in Cisco
>>>>> 
>>>>> Thank you Jordi for this initiative. I need help
>>>> in
>>>>> order to acquire my IPv6 prefix from AfriNIC
>>>>> 
>>>>> Hervé
>>>>> 
>>>>> 
>>>>> 
>>>>> 
>>>>> --- JORDI PALET MARTINEZ
>>>> <jordi.palet at consulintel.es>
>>>>> a écrit :
>>>>> 
>>>>>> This info provides the steps requires in order to
>>>>>> configure your Cisco box
>>>>>> as a 6to4 Relay.
>>>>>> 
>>>>>> In order to proceed, you need to have a public
>>>> IPv4
>>>>>> address on that router,
>>>>>> your own IPv6 prefix (provided by AfriNIC in this
>>>>>> case) and IPv6 transit.
>>>>>> 
>>>>>> And of course, the router need to have an IOS
>>>>>> supporting IPv6 (including
>>>>>> 6to4 support).
>>>>>> 
>>>>>> If you need help in order to acquire your IPv6
>>>>>> prefix from AfriNIC, let us
>>>>>> know and we can help even with the request form.
>>>>>> 
>>>>>> Similarly, we are able to help in making sure you
>>>>>> have the right IOS version
>>>>>> (and to configure it) and you can get IPv6
>>>> transit
>>>>>> (native or tunneling)
>>>>>> either from your upstream, or alternatively, if
>>>>>> that's not possible, we will
>>>>>> be able to provide free IPv6 transit to third
>>>> party
>>>>>> networks.
>>>>>> 
>>>>>> Regards,
>>>>>> Jordi
>>>>>> 
>>>>>> 
>>>>>> Details of the example configuration
>>>>>> =====================================
>>>>>> 
>>>>>> The examples below is assuming that the public
>>>> IPv4
>>>>>> address in the WAN
>>>>>> interface of the router is 192.1.2.3. You should
>>>>>> replace that with the right
>>>>>> information for your own case, same with other
>>>> data
>>>>>> used in the examples.
>>>>>> 
>>>>>> Also, you need to understand how to calculate the
>>>>>> 6to4 IPv6 address for your
>>>>>> router. This is done using the IPv4 address and
>>>> the
>>>>>> IPv6 6to4 prefix.
>>>>>> 
>>>>>> The 6to4 prefix 2002::/16 is taking the first 16
>>>>>> bits. Then the bits 17 to
>>>>>> 48 are the nibble notation for your IPv4 address.
>>>> So
>>>>>> in our example it will
>>>>>> be:
>>>>>> 
>>>>>> 192 = c0
>>>>>> 1 = 01
>>>>>> 2 = 02
>>>>>> 3 = 03
>>>>>> 
>>>>>> So consequently:
>>>>>> 2002:c001:0203::/48
>>>>>> 
>>>>>> We will use the first address of the prefix for
>>>> the
>>>>>> WAN interface, so
>>>>>> 2002:c001:0203::1/128
>>>>>> 
>>>>>> Also, the anycast address for 6to4 is:
>>>> 192.88.99.1
>>>>>> Following the same example as above, in IPv6 will
>>>>>> be:
>>>>>> 2002:c058:6301::/128
>>>>>> 
>>>>>> For our example using a Loopback, we use
>>>> 192.3.2.3,
>>>>>> which in IPv6 will be
>>>>>> 2002:0c03:0203::/128
>>>>>> 
>>>>>> We show below two options for the 6to4 Relay. One
>>>>>> basic configuration and
>>>>>> another using the anycast address for 6to4. You
>>>> just
>>>>>> need to configure one
>>>>>> of them (A or B).
>>>>>> 
>>>>>> 
>>>>>> A) Example configuration of a basic 6to4 Relay
>>>>>> =================================================
>>>>>> 
>>>>>> This relay will only be reachable for hosts or
>>>>>> routers with a manual
>>>>>> configuration pointing to it.
>>>>>> 
>>>>>> A1) Enable IPv6 in the router
>>>>>> 
>>>>>> ipv6 unicast-routing
>>>>>> 
>>>>>> A2) Ethernet0/0 interface configuration
>>>> (obviously
>>>>>> you can use another
>>>>>> interface)
>>>>>> 
>>>>>>  interface Ethernet0/0
>>>>>>   description 6to4 Relay Service
>>>>>>   ip address 192.1.2.3 255.255.255.0
>>>>>> 
>>>>>> A3) ³tunnel 6to4² virtual interface
>>>>>> 
>>>>>>   interface Tunnel2002
>>>>>>   description 6to4 Relay Interface
>>>>>>   no ip address
>>>>>>   no ip redirects
>>>>>>   ipv6 address 2002:c001:0203::1/128
>>>>>>   tunnel source Ethernet0/0
>>>>>>   tunnel mode ipv6ip 6to4
>>>>>> 
>>>>>> A4) 6to4 prefix route
>>>>>> 
>>>>>>   ipv6 route 2002::/16 Tunnel2002
>>>>>> 
>>>>>> 
>>>>>> B) Example configuration of a 6to4 Relay with
>>>>>> anycast support
>>>>>> 
>>>>> 
>>>> 
>>> ===============================================================
>>>>>> 
>>>>>> B1) Enable IPv6 in the router
>>>>>> 
>>>>>> ipv6 unicast-routing
>>>>>> 
>>>>>> B2) We use the loopback (recommended), but you
>>>> could
>>>>>> use an Ethernet
>>>>>> Interface or any other one
>>>>>> 
>>>>>>   interface Loopback0
>>>>>>    description 6to4 Anycast Relay Service
>>>>>>    ip address 192.88.99.1 255.255.255.0 secondary
>>>>>>    ip address 192.3.2.3 255.255.255.255
>>>>>>    ipv6 address 2002:c003:0203::1/128
>>>>>>    ipv6 mtu 1480
>>>>>>    no ipv6 mfib fast
>>>>>> 
>>>>>> Note: When using IPv4 anycast addresses is
>>>>>> recommended to configure
>>>>>> explicitly the BGP/OSPF ID with a unicast
>>>> address,
>>>>>> otherwise, the router may
>>>>>> take by default the anycast address as the ID.
>>>>>> 
>>>>>> B3) ³tunel 6to4² virtual interface
>>>>>> 
>>>>>>   interface Tunnel2002
>>>>>>    description anycast 6to4 Relay Interface
>>>>>>    no ip address
>>>> 
>>> === message truncated ===
>>> 
>>> 
>>> 
>>> 
>>> 
____________________________________________________________________________>>>
_
>>> Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo!
>>> Mail
>> 
>> 
>> 
>> 
>> **********************************************
>> The IPv6 Portal: http://www.ipv6tf.org
>> 
>> Bye 6Bone. Hi, IPv6 !
>> http://www.ipv6day.org
>> 
>> This electronic message contains information which may be privileged or
>> confidential. The information is intended to be for the use of the
>> individual(s) named above. If you are not the intended recipient be aware
>> that any disclosure, copying, distribution or use of the contents of this
>> information, including attached files, is prohibited.
>> 
>> 
>> 
>> 
>> _______________________________________________
>> afripv6-discuss mailing list
>> afripv6-discuss at afrinic.net
>> https://lists.afrinic.net/mailman/listinfo.cgi/afripv6-discuss
> 




**********************************************
The IPv6 Portal: http://www.ipv6tf.org

Bye 6Bone. Hi, IPv6 !
http://www.ipv6day.org

This electronic message contains information which may be privileged or confidential. The information is intended to be for the use of the individual(s) named above. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, including attached files, is prohibited.

More information about the afripv6-discuss mailing list