Overview:

There are quantitative and qualitative benefits to operating an environment with a single IP protocol.  The operational costs of maintaining two protocols simultaneously are reduced and the simplicity of running a single protocol in the environment results.  IPv6 addressing and operations has been shown to be simpler than IPv4 subnetting.  Running IPv6-only avoids the complexity and cost of buying, operating, and troubleshooting Network Address Translation (NAT) systems.  Reducing an organization’s dependence on increasingly expensive IPv4 addresses or potentially facilitating sale of public IPv4 address resources at peak prices can be financially beneficial.  On Average, IPv6 performs better than IPv4 on the Internet and that can provide quantitative benefits for application end-user experience.  Organizations that are planning to meet a government mandate or an IPv4 Flag Day will need to learn how to design and deploy IPv6-only IT infrastructure.  This class will provide the technical training to achieve the benefits of running IPv6-only.

People Who Should Attend This Class:

Anyone in any IT department role who will be involved with the technical implementation of IPv6-only networks, systems, and services

System administrators, network administrators, helpdesk support, DevOps teams, application developers, DNS administrators, and security administrators

Class Logistics:

We will conduct these live IPv6 training classes virtually over the Internet.  The subsequent sections of this document detail the IPv6 training class agenda.  These classes will be a combination of lecture, question and answer sessions, and live demonstrations of IPv6 technology.  The goal of the class is to provide intermediate to advanced-level information on IPv6-only configuration and operations to increase the skills of your IT staff for the support and maintenance in preparation for an impending IPv6-only roll-out.

The demonstrations will use a combination of a physical lab and virtual environments.  Students will be able to view the live lecture, ask questions, and observe the live demonstrations that the instructor shows using the virtual lab environment.  The students won’t actually be performing any hands-on configurations but will be furnished with the details on the IPv6-only configurations used in the demonstration environment.

Course Outline:

Following is the agenda for the 1-day IPv6 live demonstration class.

Day 1

 

IPv6-Only Introduction – 1 Hour – 9:00AM to 10:00AM

Rationale for creating an IPv6-only network environment

Business case, motivation, and justification for running only IPv6

Operational benefits of running an IPv6-only environment

U.S. Federal Mandates and other mandates for IPv6-only networks

Opportunities for running IPv6-only environments

Requirements for IPv6-Only access networks

Challenges of running an IPv6-only environment

 

IPv6-Only Configuration without IPv4 – 2 Hours – 10:00AM to 12:00AM

Running a network with IPv6-only (configuration examples)

Running hosts with IPv6-only (configuration examples)

Methods to disable IPv4 manually or automated

Demonstration of manually disabling IPv4 in various host operating systems (Windows, Apple macOS and iOS, Linux, Android, ChromeOS, and others)

Static or dynamic IPv6 address assignment to nodes without configuring an IPv4 address (statically or using DHCP)

Disabling IPv4 in the kernel or on a specific interface

Using host-based filters to block IPv4 packets

Filtering DNS queries to prevent IPv4 communications

Methods to automate the disabling of IPv4 on end-nodes, automated configuration methods

Signaling IPv6-only in the Router Advertisement (RA)

IPv6-Only Preferred Option for DHCPv4 (RFC 8925)

Demonstration of DHCP Option 108 (Windows Server, Infoblox, ISC Kea)

 

Lunch Break - 1 Hour – 12:00PM to 1:00PM

 

IPv6-Only Configuration and DNS64/NAT64 – 2 Hours – 1:00PM to 3:00PM

Configuration management methods of IPv6-only settings

Methods of identifying IPv4 dependencies (packet capture, DNS, forensic tools, other techniques)

Options for dandling IPv4 dependencies

Handling products and services that still have IPv4 dependencies

Discussion of Stateless IP/ICMP Translation (SIIT) (Jool)

Demonstrations of DNS64 configuration (BIND, Infoblox, others)

Demonstrations of NAT64 configuration (Jool, Cisco IOS, Palo Alto Networks, Fortinet)

Demonstration of DNS64 and NAT64 using various operating systems

Discussion and demonstration of PREF64 option in the RA

 

IPv6-Only Configuration and Deployment – 2 Hours – 3:00PM to 5:00PM

Demonstrations of 464XLAT (Jool) using Apple devices, Android devices, and Linux clients with clatd

Demonstrations of NAT66 (ip6tables, Fortinet)

Demonstrations of NAT46 (Fortinet)

Demonstrations of NPTv6 (Palo Alto Networks)

Demonstrations of using forward and reverse proxies between IPv6-only and IPv4-only networks

Security of IPv6-only systems and networks

Management of IPv6-only systems and networks