Difference between revisions of "IPv6: Routing Overview"

From OnnoWiki
Jump to navigation Jump to search
Line 15: Line 15:
 
/48 prefiks dapat dialokasikan ke organisasi yang memberikan keuntungan memiliki hingga /64 prefiks subnet, yaitu 65535 sub-jaringan, masing-masing memiliki 264 host. Awalan /64 dapat ditetapkan ke koneksi point-to-point di mana hanya ada dua host (atau perangkat berkemampuan IPv6) pada sebuah link.
 
/48 prefiks dapat dialokasikan ke organisasi yang memberikan keuntungan memiliki hingga /64 prefiks subnet, yaitu 65535 sub-jaringan, masing-masing memiliki 264 host. Awalan /64 dapat ditetapkan ke koneksi point-to-point di mana hanya ada dua host (atau perangkat berkemampuan IPv6) pada sebuah link.
  
==Rangkuman Umum Subnetting IPv6==
+
==Summarization dan Agregasi di IPv6==
  
We’ve mentioned summarization as well as its synonym aggregation (both sometimes referred to as supernetting) at different times in the previous chapters. It’s a subject that should already be familiar to us from designing, building, and running IPv4 networks. But it’s probably a good idea to review it in the context of our current IPv6 subnetting discussion.
+
Summarization serta agregasi, keduanya kadang-kadang disebut sebagai supernetting. Ini adalah subjek yang seharusnya sudah tidak asing lagi bagi kita dari merancang, membangun, dan menjalankan jaringan IPv4. Tetapi mungkin ada baiknya untuk meninjaunya dalam konteks diskusi subnetting IPv6 kami saat ini.
  
Simply stated, summarization is the combining of smaller networks into larger ones. Recall that only contiguous networks of the same size (i.e., bit length) can be summarized:
+
Secara sederhana, summarization adalah penggabungan jaringan yang lebih kecil menjadi jaringan yang lebih besar. Ingatlah bahwa hanya jaringan yang berdekatan dengan ukuran yang sama (yaitu, panjang bit) yang dapat diringkas:
  
 
  /64 + /64 = /63
 
  /64 + /64 = /63
 
  /63 + /63 = /62
 
  /63 + /63 = /62
 
  /62 + /62 = /61
 
  /62 + /62 = /61
 +
dst  ..
  
etc.
+
Summarization memberikan banyak keuntungan:
Summarization provides multiple benefits:
 
  
* It reduces the total number of routes (and routing table entries) that routers in the network must learn and keep state information on. This is by far the most important benefit of network aggregation. By reducing the number of routes that routers must learn and keep track of, memory and CPU resources are preserved, potentially delaying costly router upgrades or replacement. A reduced number of routes can also lead to faster convergence and improved performance of the network as fewer network prefixes mean that updates between routers can be sent and processed faster.
+
* Ini mengurangi jumlah total rute (dan entri tabel routing) yang harus dipelajari oleh router dalam jaringan dan menyimpan informasi status. Sejauh ini, ini adalah manfaat paling penting dari agregasi jaringan. Dengan mengurangi jumlah rute yang harus dipelajari dan dilacak oleh router, memori dan sumber daya CPU dipertahankan, berpotensi menunda peningkatan atau penggantian router yang mahal. Pengurangan jumlah rute juga dapat menyebabkan konvergensi yang lebih cepat dan peningkatan kinerja jaringan karena lebih sedikit prefiks jaringan berarti bahwa pembaruan antar router dapat dikirim dan diproses lebih cepat.
  
* It can reduce the administrative overhead associated with tracking address assignments. Aggregation can reduce the number of entries in network management and IPAM systems, reducing the amount of overall data network operations personnel and process must track and potentially reducing operational expenditures.
+
* Ini dapat mengurangi biaya administrasi yang terkait dengan penetapan alamat pelacakan. Agregasi dapat mengurangi jumlah entri dalam manajemen jaringan dan sistem IP Address Management (IPAM), mengurangi jumlah keseluruhan personel operasi jaringan data dan proses harus melacak dan berpotensi mengurangi pengeluaran operasional.
  
* It can help create well-defined network and administrative boundaries that allow us to simplify security policy and improve operations performance. Often, network aggregation correlates to well-defined administrative boundaries. This can greatly simplify the definition and configuration of security policy through ACLs and policy documentation. It can also improve network operations efficiency, leading to faster isolation and resolution of issues and problems on the network.
+
* Ini dapat membantu menciptakan jaringan yang terdefinisi dengan baik dan batasan administratif yang memungkinkan kita untuk menyederhanakan kebijakan keamanan dan meningkatkan kinerja operasi. Seringkali, agregasi jaringan berkorelasi dengan batas administratif yang terdefinisi dengan baik. Ini dapat sangat menyederhanakan definisi dan konfigurasi kebijakan keamanan melalui ACL dan dokumentasi kebijakan. Ini juga dapat meningkatkan efisiensi operasi jaringan, yang mengarah ke isolasi dan penyelesaian masalah dan masalah di jaringan dengan lebih cepat.
 +
 
 +
 
 +
 
 +
 
 +
 
 +
==Nibble Boundaries==
  
Nibble Boundaries
 
 
A nibble is 4 bits. Since IPv6 addresses are expressed using hexadecimal characters, subnetting exclusively in multiples of four bits has several important benefits for address planning (and operations).
 
A nibble is 4 bits. Since IPv6 addresses are expressed using hexadecimal characters, subnetting exclusively in multiples of four bits has several important benefits for address planning (and operations).
  

Revision as of 12:01, 12 November 2022

Sumber: https://www.tutorialspoint.com/ipv6/ipv6_subnetting.htm

Di IPv4, alamat dibuat di kelas-kelas. Alamat IPv4 yang berkelas dengan jelas menentukan bit yang digunakan untuk awalan jaringan dan bit yang digunakan untuk host di jaringan itu. Untuk subnet di IPv4, kita bermain dengan netmask classful default yang memungkinkan kita meminjam bit host untuk digunakan sebagai bit subnet. Ini menghasilkan banyak subnet tetapi lebih sedikit host per subnet. Yaitu, ketika kita meminjam bit host untuk membuat subnet, kita harus berkorban dengan lebih sedikit untuk digunakan sebagai alamat host.

Alamat IPv6 menggunakan 128 bit untuk mewakili alamat yang mencakup bit yang akan digunakan untuk subnetting. Bagian kedua dari alamat (paling tidak signifikan 64 bit) selalu digunakan hanya untuk host. Oleh karena itu, tidak ada kompromi jika kita melakukan subnet jaringan.

IPv6-subnetting.jpg

16 bit subnet setara dengan Jaringan Kelas B IPv4. Dengan menggunakan bit subnet ini, sebuah organisasi dapat memiliki 65 ribu subnet lagi yang sejauh ini, lebih dari cukup.

Jadi awalan routing adalah /64 dan bagian host adalah 64 bit. Kita selanjutnya dapat mensubnet jaringan di luar 16 bit ID Subnet, dengan meminjam bit host; tetapi disarankan agar 64 bit selalu digunakan untuk alamat host karena konfigurasi otomatis memerlukan 64 bit.

Subnetting IPv6 bekerja pada konsep yang sama dengan Variable Length Subnet Masking di IPv4.

/48 prefiks dapat dialokasikan ke organisasi yang memberikan keuntungan memiliki hingga /64 prefiks subnet, yaitu 65535 sub-jaringan, masing-masing memiliki 264 host. Awalan /64 dapat ditetapkan ke koneksi point-to-point di mana hanya ada dua host (atau perangkat berkemampuan IPv6) pada sebuah link.

Summarization dan Agregasi di IPv6

Summarization serta agregasi, keduanya kadang-kadang disebut sebagai supernetting. Ini adalah subjek yang seharusnya sudah tidak asing lagi bagi kita dari merancang, membangun, dan menjalankan jaringan IPv4. Tetapi mungkin ada baiknya untuk meninjaunya dalam konteks diskusi subnetting IPv6 kami saat ini.

Secara sederhana, summarization adalah penggabungan jaringan yang lebih kecil menjadi jaringan yang lebih besar. Ingatlah bahwa hanya jaringan yang berdekatan dengan ukuran yang sama (yaitu, panjang bit) yang dapat diringkas:

/64 + /64 = /63
/63 + /63 = /62
/62 + /62 = /61
dst  ..

Summarization memberikan banyak keuntungan:

  • Ini mengurangi jumlah total rute (dan entri tabel routing) yang harus dipelajari oleh router dalam jaringan dan menyimpan informasi status. Sejauh ini, ini adalah manfaat paling penting dari agregasi jaringan. Dengan mengurangi jumlah rute yang harus dipelajari dan dilacak oleh router, memori dan sumber daya CPU dipertahankan, berpotensi menunda peningkatan atau penggantian router yang mahal. Pengurangan jumlah rute juga dapat menyebabkan konvergensi yang lebih cepat dan peningkatan kinerja jaringan karena lebih sedikit prefiks jaringan berarti bahwa pembaruan antar router dapat dikirim dan diproses lebih cepat.
  • Ini dapat mengurangi biaya administrasi yang terkait dengan penetapan alamat pelacakan. Agregasi dapat mengurangi jumlah entri dalam manajemen jaringan dan sistem IP Address Management (IPAM), mengurangi jumlah keseluruhan personel operasi jaringan data dan proses harus melacak dan berpotensi mengurangi pengeluaran operasional.
  • Ini dapat membantu menciptakan jaringan yang terdefinisi dengan baik dan batasan administratif yang memungkinkan kita untuk menyederhanakan kebijakan keamanan dan meningkatkan kinerja operasi. Seringkali, agregasi jaringan berkorelasi dengan batas administratif yang terdefinisi dengan baik. Ini dapat sangat menyederhanakan definisi dan konfigurasi kebijakan keamanan melalui ACL dan dokumentasi kebijakan. Ini juga dapat meningkatkan efisiensi operasi jaringan, yang mengarah ke isolasi dan penyelesaian masalah dan masalah di jaringan dengan lebih cepat.



Nibble Boundaries

A nibble is 4 bits. Since IPv6 addresses are expressed using hexadecimal characters, subnetting exclusively in multiples of four bits has several important benefits for address planning (and operations).

The first and most obvious of these is that our CIDR notation for any prefix will always be a multiple of four. For example, starting from a /64 (as that’s the smallest typical subnet size):

/64, /60, /56, /52, /48, /44, etc.

From an operational standpoint, this makes any subnetting transcription errors in configuration or documentation immediately apparent. For example:

/53, /47, /39, etc.

The next benefit is that we have a smaller possible set of subnet groups to account for, as shown in Table 4-1:.

Table 4-1. Binary nibbles

n  2^4n
1  16
2  256
3  4096
4  65536
5  1048576
6  16777216
7  268435456
8  4294967296

As we get into our address plan design based on our network topology, it’s uncommon that we’ll have any network entities (VLANs, buildings, business units, etc.) in groups larger than 65536.

Also, much of our address planning will be focused on either the 16 bits of the individual site subnet ID (from /48 to /64) or the 16 bits of the overall organizational assignment (typically from /32 to /48, though possibly larger for the largest enterprises). As a result, the first four values (i.e., 16, 256, 4096, and 65536) are the most often used and thus most usefully remembered.

The final benefit takes a bit more explaining.

Prefix Legibility

The final benefit of adhering to the nibble boundary when subnetting in IPv6 is improved prefix legibility (or, to put it another way, human-readability).

What do we mean by legibility? Let’s demonstrate with an example. Say we’ve been assigned a /48 for the headquarters site of a large enterprise. (We’ll explain in detail why we might get such an assignment in Chapter 5.)

The site has 20 buildings, and we’ve designed our plan to allocate one subnet per building. (We’ve been told to anticipate very little growth as the company is planning on moving the HQ sometime in the next two to five years.) We’ll set aside an additional subnet for infrastructure between buildings for a total of 21 subnets.

The minimum number of bits we’d need to use to support 21 subnets would be 5, which gives us a total of 32 subnets. We’ve got 11 subnets to spare in case any need arises to assign additional ones. The Ns represent these 5 bits below, while the Xs are unspecified:

2001:db8:abcd:[NNNNNXXXXXXXXXXX]::/53

Note that while this provides sufficient subnets, the resulting prefixes aren’t as immediately legible because the bit boundary doesn’t align with the 4 bits used to define the hexadecimal character in the address:

2001:db8:abcd:0000::/53
2001:db8:abcd:0800::/53
2001:db8:abcd:1000::/53
2001:db8:abcd:1800::/53
...

Continuing with our example, the abundance of addresses available in IPv6 allows us to use 8 bits (instead of only 5), which makes the hexadecimal representation of the resulting subnets much tidier:

2001:db8:abcd:000::/56
2001:db8:abcd:100::/56
2001:db8:abcd:200::/56
2001:db8:abcd:300::/56
...

For each subnet group, only one value is possible for the hexadecimal character that corresponds to the 4-bit boundary in the IPv6 prefix (in this case, a /56). This makes the resulting prefix more immediately readable.

Obviously, the use of more bits gives us more subnets: 256 in this case, 21 of which we’ll use immediately along with 235 for future use. But fewer host ID bits also reduces the number of available /64 subnets in each parent subnet. In our above example, we went from 2048 /64s available per /53 to 256 /64s available with a /56.

Visualizing Hierarchy

As mentioned in the last section, much of our address planning will be focused on either the 16 bits of the individual site subnet ID (from /48 to /64) or the 16 bits of the overall organizational assignment (typically from /32 to /48).

As it turns out, dividing either of these 16-bit groups along their nibble boundaries gives us a very simple way of visualizing the hierarchy available to us when defining our addressing plan. We’ll pick the typical subnet ID range to demonstrate, i.e., /48 to /64 (Figure 4-1).

Gambar. IPv6 site prefix visualization

To create an IPv6 subnetting hierarchy from a /48 using the above diagram, simply choose one of the four boxes and then a single path in that box from left to right.

The first box gives us four unique possibilities, as shown in Figure 4-2:

Gambar. IPv6 site prefix visualization (detail 1)

Box two provides two possible paths (Figure 4-3):

Gambar. IPv6 site prefix visualization (detail 2)

One path each is provided by the third and fourth boxes (Figure 4-4):

Gambar. IPv6 site prefix visualization (detail 3)

Adding the possibilities up, we end up with only eight paths to choose from.

As it happens, this simple expression of subnetting hierarchy will often prove more than adequate to guide a basic topology for many organizations. It strikes a good balance between the minimum amount of complexity required to instantiate operational efficiency and the simplicity to make and keep the plan extensible and flexible.

Let’s take a look at the same figure with actual subnets added for clarity (Figure 4-5):

Gambar. IPv6 site prefix visualization with subnets

In this figure, the range of possible values to enumerate the subnets available at that level of hierarchy is bracketed. For example, starting in the upper left-hand corner and moving to the right, we observe that the 16 /52s at that level will be enumerated by modifying the first character of the fourth hextet:

2001:db8:1::/52 (or, expanded for clarity, 2001:db8:1:0000::/52)
2001:db8:1:1000::/52
2001:db8:1:2000::/52
...
2001:db8:1:F000::/52

From there, each of our /52s could be further subnetted along one of three different paths.

The first path gives us 16 /56s enumerated by the second character (and next 4 bits) of the fourth hextet. Choosing the first /52 from the step above, we get the first group of 16 /56 subnets:

2001:db8:1::/56
2001:db8:1:0100::/56
2001:db8:1:0200::/56
...
2001:db8:1:0F00::/56

The second group of 16 /56 subnets would be:

2001:db8:1:1000::/56
2001:db8:1:1100::/56
2001:db8:1:1200::/56
...
2001:db8:1:1F00::/56

The second path gives us 256 /60s enumerated by the second and third character (and 8 middle bits) of the fourth hextet. Again choosing the first /52 subnet from our first example, we get the first group of 256 /60 subnets:

2001:db8:1::/60
2001:db8:1:0100::/60
2001:db8:1:0200::/60
...
2001:db8:1:0FF0::/60

The second group of 256 /60 subnets would be:

2001:db8:1:1000::/60
2001:db8:1:1100::/60
2001:db8:1:1200::/60
...
2001:db8:1:1FF0::/60

The final path gives us 4096 /64s enumerated by the second, third, and fourth characters (and right-most 12 bits) of the fourth hextet. Once more, starting with the first /52 subnet, we get the first group of 4096 /64 subnets:

2001:db8:1::/64
2001:db8:1:0100::/64
2001:db8:1:0200::/64
...
2001:db8:1:0FFF::/64

The second group of 4096 /64 subnets would be:

2001:db8:1:1000::/64
2001:db8:1:1100::/64
2001:db8:1:1200::/64
...
2001:db8:1:1FFF::/64

Hopefully, these images (and the method associated with them) give you a better sense of how to visualize and enumerate the subnets and hierarchy options available to you for a site. With a few uses, you’ll quickly be able to mentally map out your options.[72]

Referensi

Pranala Menarik