Thoroughly revised and expanded, this second edition adds sections on MPLS, Security, IPv6, and IP Mobility and presents solutions to the most common configuration problems.
Organizations are increasingly transitioning to IPv6, the next generation protocol for defining how devices of all kinds communicate over networks. Now fully updated, IPv6 Fundamentals offers a thorough, friendly, and easy-to-understand introduction to the knowledge and skills you need to deploy and operate IPv6 networks. Leading networking instructor Rick Graziani explains all the basics simply and clearly, step-by-step, providing all the details you’ll need to succeed. You’ll learn why IPv6 is necessary, how it was created, how it works, and how it has become the protocol of choice in environments ranging from cloud to mobile and IoT. Graziani thoroughly introduces IPv6 addressing, configuration options, and routing protocols, including EIGRP for IPv6, and OSPFv3 (traditional configuration and with address families). Building on this coverage, he then includes more in-depth information involving these protocols and processes. This edition contains a completely revamped discussion of deploying IPv6 in your network, including IPv6/IPv4 integration, dynamic address allocation, and understanding IPv6 from the perspective of the network and host. You’ll also find improved coverage of key topics such as Stateless Address Autoconfiguration (SLAAC), DHCPv6, and the advantages of the solicited node multicast address. Throughout, Graziani presents command syntax for Cisco IOS, Windows, Linux, and Mac OS, as well as many examples, diagrams, configuration tips, and updated links to white papers and official RFCs for even deeper understanding. Learn how IPv6 supports modern networks encompassing the cloud, mobile, IoT, and gaming devices Compare IPv6 with IPv4 to see what has changed and what hasn’t Understand and represent IPv6 addresses for unicast, multicast, and anycast environments Master all facets of dynamic IPv6 address allocation with SLAAC, stateless DHCPv6, and stateful DHCPv6 Understand all the features of deploying IPv6 addresses in the network including temporary addresses and the privacy extension Improve operations by leveraging major enhancements built into ICMPv6 and ICMPv6 Neighbor Discovery Protocol Configure IPv6 addressing and Access Control Lists using a common topology Implement routing of IPv6 packets via static routing, EIGRP for IPv6, and OSPFv3 Walk step-by-step through deploying IPv6 in existing networks, and coexisting with or transitioning from IPv4
To support future business continuity, growth, and innovation, organizations must transition to IPv6, the next generation protocol for defining how computers communicate over networks. IPv6 Fundamentals provides a thorough yet easy-to-understand introduction to the new knowledge and skills network professionals and students need to deploy and manage IPv6 networks. Leading networking instructor Rick Graziani explains all the basics simply and clearly, one step at a time, providing all the details you''ll need to succeed. Building on this introductory coverage, he then introduces more powerful techniques that involve multiple protocols and processes and provides hands-on resources you can rely on for years to come. You''ll begin by learning why IPv6 is necessary, how it was created, and how it works. Next, Graziani thoroughly introduces IPv6 addressing, configuration options, and routing protocols, including RIPng, EIGRP for IPv6, and OSPFv3. You''ll learn how to integrate IPv6 with IPv4, enabling both protocols to coexist smoothly as you move towards full reliance on IPv6. Throughout, Graziani presents all the IOS command syntax you''ll need, offering specific examples, diagrams, and Cisco-focused IPv6 configuration tips. You''ll also find links to Cisco white papers and official IPv6 RFCs that support an even deeper understanding. Rick Graziani teaches computer science and computer networking courses at Cabrillo College. He has worked and taught in the computer networking and IT field for nearly 30 years, and currently consults for Cisco and other leading clients. Graziani''s recent Cisco Networking Academy Conference presentation on IPv6 Fundamentals and Routing drew a standing audience and the largest virtual audience for any session at the event. He previously worked for companies including Santa Cruz Operation, Tandem Computers, and Lockheed. � Understand how IPv6 overcomes IPv4''s key limitations � Compare IPv6 with IPv4 to see what has changed and what hasn''t � Represent IPv6 addresses, including subnet addresses � Enable IPv6 on router interfaces using static, dynamic, EUI-64, unnumbered, SLAAC, and DHCPv6 approaches � Improve network operations with ICMPv6 and Neighbor Discovery Protocol � Configure IPv6 addressing and Access Control Lists using a common topology � Work with IPv6 routing tables and configure IPv6 static routes � Compare, configure, and verify each IPv6 IGP routing protocol � Implement stateful and stateless DHCPv6 services � Integrate IPv6 with other upper-level protocols, including DNS, TCP, and UDP � Use dual-stack techniques to run IPv4 and IPv6 on the same device � Establish coexistence between IPv4 and IPv6 through manual, 6to4, or ISATAP tunneling � Promote a smooth transition with NAT64 (Network Address Translation IPv6 to IPv4) � This book is part of the Cisco Press Fundamentals Series. Books in this series introduce networking professionals to new networking technologies, covering network topologies, sample deployment concepts, protocols, and management techniques.
"By building IPv6 into Cisco IOS software, we are enabling continued growth of the Internet and its expansion into new applications and capabilities in a way that maintains compatibility with existing Internet services." -- Stephen Deering, Cisco Fellow and lead designer of the protocol Internetworking Protocol (IP) addresses are the unique numeric identifiers required of every device connected to the Internet. Two years ago, in response to the exponential increase in demand for new IP addresses, the Internet Engineering Task Force finalized its revision on IP addressing, called IP Version 6 and key hardware vendors such as Cisco and major Internet Service Providers like AOL announced plans to migrate to IP Version 6. That is now happening. Cisco Systems began incorporating Internet Protocol version 6 (IPv6) in its Cisco IOS Software in June, 2001. Cisco is currently the only major networking vendor to deliver IPv6 across multiple platforms. This book provides complete coverage of IPv6 strategies, configuration scenarios, and techniques to successfully deploy an IPv6 addressing and subnetting scheme on your network. - Increasing the IP address size from 32 bits to 128 bits - Supporting more levels of addressing hierarchy - Supporting an increased number of addressable nodes - Supporting simpler auto-configuration of addresses - Improving the scalability of multicast routing by adding a "scope" field to multicast addresses - Use a new "anycast address" to send a packet to any one of a group of nodes
IPv6 Security Protection measures for the next Internet Protocol As the world’s networks migrate to the IPv6 protocol, networking professionals need a clearer understanding of the security risks, threats, and challenges this transition presents. In IPv6 Security, two of the world’s leading Internet security practitioners review each potential security issue introduced by IPv6 networking and present today’s best solutions. IPv6 Security offers guidance for avoiding security problems prior to widespread IPv6 deployment. The book covers every component of today’s networks, identifying specific security deficiencies that occur within IPv6 environments and demonstrating how to combat them. The authors describe best practices for identifying and resolving weaknesses as you maintain a dual stack network. Then they describe the security mechanisms you need to implement as you migrate to an IPv6-only network. The authors survey the techniques hackers might use to try to breach your network, such as IPv6 network reconnaissance, address spoofing, traffic interception, denial of service, and tunnel injection. The authors also turn to Cisco® products and protection mechanisms. You learn how to use Cisco IOS® and ASA firewalls and ACLs to selectively filter IPv6 traffic. You also learn about securing hosts with Cisco Security Agent 6.0 and about securing a network with IOS routers and switches. Multiple examples are explained for Windows, Linux, FreeBSD, and Solaris hosts. The authors offer detailed examples that are consistent with today’s best practices and easy to adapt to virtually any IPv6 environment. Scott Hogg, CCIE® No. 5133, is Director of Advanced Technology Services at Global Technology Resources, Inc. (GTRI). He is responsible for setting the company’s technical direction and helping it create service offerings for emerging technologies such as IPv6. He is the Chair of the Rocky Mountain IPv6 Task Force. Eric Vyncke, Cisco Distinguished System Engineer, consults on security issues throughout Europe. He has 20 years’ experience in security and teaches security seminars as a guest professor at universities throughout Belgium. He also participates in the Internet Engineering Task Force (IETF) and has helped several organizations deploy IPv6 securely. Understand why IPv6 is already a latent threat in your IPv4-only network Plan ahead to avoid IPv6 security problems before widespread deployment Identify known areas of weakness in IPv6 security and the current state of attack tools and hacker skills Understand each high-level approach to securing IPv6 and learn when to use each Protect service provider networks, perimeters, LANs, and host/server connections Harden IPv6 network devices against attack Utilize IPsec in IPv6 environments Secure mobile IPv6 networks Secure transition mechanisms in use during the migration from IPv4 to IPv6 Monitor IPv6 security Understand the security implications of the IPv6 protocol, including issues related to ICMPv6 and the IPv6 header structure Protect your network against large-scale threats by using perimeter filtering techniques and service provider—focused security practices Understand the vulnerabilities that exist on IPv6 access networks and learn solutions for mitigating each This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks. Category: Networking: Security Covers: IPv6 Security
An Essential Guide to Understanding and Implementing IP Routing Protocols Cisco''s authoritative single-source guide to IP routing protocols for enterprise and service provider environments Service providers and large enterprises are converging on a common IP infrastructure that supports rapid deployment of high-value services. Demand is soaring for highly skilled IP network engineers who can implement and run these infrastructures. Now, one source combines reliable knowledge about contemporary IP routing protocols and expert hands-on guidance for using them with Cisco IOS, IOS XE, and IOS XR operating systems. After concisely reviewing the basics, three Cisco experts fully explain static routing, EIGRP, OSPF, IS-IS, and BGP routing protocols. Next, they introduce advanced routing with policies and redistribution, sophisticated BGP-based traffic engineering, and multicast. They present comprehensive coverage of IPv6, from its multicast implementation to its completely revamped address structure. Finally, they discuss advanced high availability techniques, including fast routing convergence. IP Routing on Cisco IOS, IOS XE, and IOS XR presents each protocol conceptually, with intuitive illustrations, realistic configurations, and appropriate output. To help IOS users master IOS XE and IOS XR, differences in operating systems are explicitly identified, and side-by-side feature command references are presented. All content fully aligns with Learning@Cisco, providing efficient self-study for multiple Cisco Career Certifications, including CCNA®/CCNP®/CCIE® Service Provider, CCIE Routing & Switching, Cisco IOS XR Specialist Certification, and the routing components of several additional Cisco Certifications. Brad Edgeworth, CCIE No. 31574 (R&S & SP) has been with Cisco since 2011 as Systems Engineer and Technical Leader. Formerly a network architect and consultant for various Fortune® 500 companies, his 18 years of IT experience includes extensive architectural and operational work in enterprise and service provider environments. He is a Cisco Live distinguished speaker presenting on IOS XR. Aaron Foss, CCIE No. 18761 (R&S & SP), a High Touch Engineer with the Cisco Focused Technical Support (FTS) organization, works with large service providers to troubleshoot MPLS, QoS, and IP routing issues. He has more than 15 years of experience designing, deploying, and troubleshooting IP networks. Ramiro Garza Rios, CCIE No. 15469 (R&S, SP, and Security), Senior Network Consulting Engineer with Cisco Advanced Services, plans, designs, implements, and optimizes next-generation service provider networks. Before joining Cisco in 2005, he was Network Consulting and Presales Engineer for a Cisco Gold Partner in Mexico, where he planned and deployed both enterprise and service provider networks. Foreword by Norm Dunn, Senior Product Manager, Learning@Cisco Global Product Management, Service Provider Portfolio Understand how IOS®, IOS XE, and IOS XR operating systems compare Master IPv4 concepts, addressing structure, and subnetting Learn how routers and routing protocols work, and how connected networks and static routes behave from the router''s perspective Work with EIGRP and distance vector routing Deploy basic and advanced OSPF, including powerful techniques for organizing routing domains, path selection, and optimization Compare IS-IS with OSPF, and implement advanced IS-IS multilevel routing, optimization, and path selection Make the most of BGP and route manipulation, including IOS/IOS XE route maps and IOS XR''s highly scalable Route Policy Language Use advanced policy-based route manipulation and filtering Implement route redistribution: rules, potential problems, and solutions Leverage BGP communities, summaries, and other router conservation techniques Discover how IPv6 changes IP address and command structure Establish highly efficient multicast routing in IPv4 and IPv6 environments Systematically improve network availability and operational uptime through event driven detection and fast routing convergence
This is a guide to deploying IPv6 in any campus, WAN/branch, or data center environment. It shows the reader how to review, compare, and choose the right IPv6 implementation options, how to to understand IPv6 services and the features that make them possible, and how to plan, deploy and manage IPv6 services in IPv4 networks.
This work provides a guide to the configuration of Cisco routers, from tasks for beginners to advanced operations. A collection of detailed "how-to" instructions are presented, which will be of use to all professionals and students who engage with Cisco routers in the field or in the lab. The guide starts with the simple step-by-step task of connecting the router and performing basic configuration, before building up to complex and sensitive operations such as router IOS upgrade and Site-to-Site VPNs.
If you’re ready to join the move to IPv6, this comprehensive guide gets you started by showing you how to create an effective IPv6 address plan. In three example-driven sections—preparation, design, and maintenance—you’ll learn principles and best practices for designing, deploying, and maintaining an address plan far beyond what’s possible with IPv4 networks. During the course of the book, you’ll walk through the process of building a sample address plan for a fictional company. Enterprise IT network architects, engineers, and administrators will see firsthand how IPv6 provides opportunities for creating an operationally efficient plan that’s scalable, flexible, extensible, manageable, and durable. Explore IPv6 addressing basics, including representation, structure, and types Manage risks and costs by using a three-phase approach for deploying IPv6 Dig into IPv6 subnetting methods and learn how they differ from IPv4 Determine the appropriate size and type of the IPv6 allocation you require Apply current network management tools to IPv6 Use IPv6 renumbering methods that enable greater network scale and easier integration Implement policies and practices to keep IPv6 addresses reachable