[OpenWrt-Users] TP-Link TL-WDR3600, AA 12.09 RC1 & Sixxs heartbeat tunnel

Tue, 12 Mar 2013 02:45:00 -0700 

Hello,
I've set up my new WDR3600 with 12.09 RC1 (downloaded from download.openwrt.org). 

Everything works fine (extroot is really great), except ipv6 forwarding.

I've read http://wiki.openwrt.org/doc/uci/aiccu and then did the following :

/etc/config/network :
config interface 'lan'
        option ifname 'eth0.1'
        option type 'bridge'
        option proto 'static'
        option netmask '255.255.255.0'
        option dns '192.168.85.1'
        option send_rs '0'
        option ipaddr '192.168.85.15'
        option ip6addr '2a01:240:fe6a::15/64'

config interface 'wan'
        option ifname 'eth0.2'
        option proto 'pppoe'
        option username 'isp-login'
        option password 'isp-passwd'
        option peerdns '0'

config interface 'modem'
        option proto 'static'
        option ifname 'eth0.2'
        option ipaddr '10.0.0.1'
        option netmask '255.255.255.0'
        option send_rs '0'

config interface 'wan6'
        option proto 'static'
        option ifname 'sixxs0'
        option auto '1'
        option ip6addr '2a01:240:fe00:d9::2/64'
        option ip6gw '2a01:240:fe00:d9::1/64'
        option send_rs '0'

"modem" interface has been created to access the SpeedTouch 510v6 web UI.

/etc/config/firewall
config zone
        option name 'lan'
        option network 'lan'
        option input 'ACCEPT'
        option output 'ACCEPT'
        option forward 'REJECT'

config zone
        option name 'wan'
        option network 'wan'
        option input 'REJECT'
        option output 'ACCEPT'
        option forward 'REJECT'
        option masq '1'
        option mtu_fix '1'
        option family 'ipv4'

config zone
        option name 'modem'
        option forward 'REJECT'
        option output 'ACCEPT'
        option network 'modem'
        option input 'REJECT'
        option masq '1'
        list masq_src '192.168.85.0/24'
        list masq_dest '10.0.0.0/24'
        option family 'ipv4'

config zone
        option name 'wan6'
        option network 'wan6'
        option family 'ipv6'
        option input 'REJECT'
        option output 'ACCEPT'
        option forward 'REJECT'
        option conntrack '1'

config forwarding
        option dest 'wan'
        option src 'lan'

config forwarding
        option dest 'modem'
        option src 'lan'

config forwarding
        option src 'lan'
        option dest 'wan6'
        option family 'ipv6'

/etc/config/aiccu
config aiccu
        option username         'sixxs-login'
        option password         'sixxs-passwd'
        option protocol         'tic'
        option server           'tic.sixxs.net'
        option interface        'sixxs0'
        option tunnel_id        'sixxs-tunnelID'
        option requiretls       '0'
        option defaultroute     '1'
        option nat              '1'
        option heartbeat        '1'

/etc/config/radvd
config interface
        option interface 'lan'
        option AdvSendAdvert '1'
        option AdvManagedFlag '0'
        option AdvOtherConfigFlag '0'
        option ignore '0'

config prefix
        option interface 'lan'
        option prefix '2a01:240:fe6a::/64'
        option AdvOnLink '1'
        option AdvAutonomous '1'
        option AdvRouterAddr '0'
        option ignore '0'

config rdnss
        option interface 'lan'
        option addr '2a01:240:fe6a::1'
        option ignore '0'

Result :

ipv4 works fine for all hosts on internal lan, connections to the 
Internet and the modem work fine.



ipv6 works fine for WDR3600, but hosts on internal lan can't reach the 
internet.


tcpdump on br-lan while an internal host is trying to ping www.google.com :
root@rtrwrtfenint:/etc/config# tcpdump -n -i br-lan host 2a01:240:fe6a::1
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on br-lan, link-type EN10MB (Ethernet), capture size 65535 bytes

10:34:24.533582 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 57, length 16
10:34:24.533769 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]
10:34:25.533535 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 58, length 16
10:34:25.533719 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]
10:34:26.534588 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 59, length 16
10:34:26.534775 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]
10:34:27.533550 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 60, length 16
10:34:27.533737 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]
10:34:28.534571 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 61, length 16
10:34:28.534756 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]
10:34:29.533530 IP6 2a01:240:fe6a::1 > 2a00:1450:400c:c06::69: ICMP6, 
echo request, seq 62, length 16
10:34:29.533715 IP6 2a01:240:fe6a::15 > 2a01:240:fe6a::1: ICMP6, 
destination unreachable, unreachable port[|icmp6]


Seems to me that the ipv6 forwarding rules are not set up.

Looking at the logs, I only get the following messages for firewall :
root@rtrwrtfenint:/etc/config# logread | grep firewall

Mar 12 09:14:22 rtrwrtfenint user.info firewall: adding lan (br-lan) to 
zone lan
Mar 12 09:14:23 rtrwrtfenint user.info firewall: adding modem (eth0.2) 
to zone modem
Mar 12 09:16:20 rtrwrtfenint user.info firewall: adding wan (pppoe-wan) 
to zone wan


I should get the following line :

Feb 23 09:32:10 OpenWrt user.info firewall: adding wan6 (sixxs0) to zone 
wan6


How can I debug this problem, please ?

Kind Regards

Eric Masson

_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/mailman/listinfo/openwrt-users






















					Reply via email to