TL;DR: In OpenWRT/CC, how do you setup a dynamic-dns name for an http server (that is running on an internal host)?
IPv6 seems to be all bright and wonderful about not needing port forwarding, since all addresses are globally routable. However, what is the IPv6 version of the following? * ISP gives IPv4 address a.b.c.d * ddns registers "myhost.somedomain.net" A a.b.c.d * Firewall forwards port 22, 25, 80, 443 to internal host "inthost" * The following are forwarded to internal host: ssh, smtp, http, https Maybe the IPv6 version is: * ISP gives IPv6 address prefix PFX/64 * Firewall dhcp gives "inthost" address PFX:SFX/128 (dhcp.$HOST.duid = $DUID; .hostid = $SFX) * ddns registers "myhost.somedomain.net" AAAA PFX:SFX/128 * Firewall allows WAN to connect to PFX:SFX/128 ports 22,25,80,443, else deny PFX/64 However: * I don't see how I can create a firewall rule to allow traffic WAN -> PFX:SFX/128 port 22,25,80,443. The dest_ip needs to be PFX:SFX/128, but PFX is dynamic. * OpenWRT ddns wants to register the IPv6 & IPv4 address of the wan interface, so I cannot use OpenWRT's ddns for ddns * If I want smtp & imap forwarded to one host, and http and https forwarded to another host, I would need two DNS names: mail.DOMAIN and www.DOMAIN. That means that I would need a DNS hostname per physical internal host, and that a service could not be moved between hosts without publishing it (ie: mail.DOMAIN vs smtp.DOMAIN + imap.DOMAIN would mean I would have to reconfigure all external email clients), whereas a port-forward uses DOMAIN and modifies the smtp and imap port forwarding rules. -- -Justin [email protected] _______________________________________________ openwrt-users mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
