Re: [gentoo-user] Help with IPv6, please
On Sunday, 8 December 2019 08:35:43 GMT Tamer Higazi wrote: > Adding ipv6 address is not the deal. > > Question(s): > > How do you connect to the internet ? > > Do you connect through pppoe (point-to-point-over-ethernet) or over ppoa > (point-to-point-over-atm) ? > > Does your modem handle the dialin for you automatically? > > In this case there are 2 other choices (NAT Router) or bridged mode. > > Tell us a bit more about your topologie, and how you enter the internet. No dialling in. I have a vDSL modem-router which handles all the PPPoE stuff and shows me an Ethernet interface to connect my LAN to. Addressing is sorted out now, as I said in later messages, but thanks anyway. -- Regards, Peter.
Re: [gentoo-user] Help with IPv6, please
Dear Peter, Adding ipv6 address is not the deal. Question(s): How do you connect to the internet ? Do you connect through pppoe (point-to-point-over-ethernet) or over ppoa (point-to-point-over-atm) ? Does your modem handle the dialin for you automatically? In this case there are 2 other choices (NAT Router) or bridged mode. Tell us a bit more about your topologie, and how you enter the internet. best, Tamer On 2019-12-05 15:38, Peter Humphrey wrote: Hello list, Having been inspired by the recent discussion of IPv6, I decided to try it, starting with my ISP, my Billion Bipac vDSL modem-router and one host - this one. Of course it isn't straightforward. Zen has allocated me a /64 ND prefix and a /48 PD prefix. I found a way to tell the Bipac to set up IPv6, and rebooted it; it now tells me its LAN address is 2a02:8010:663d:0:6203:47ff:fe2d:8eba/64. Nslookup on this host says the same, without the /64. But then this: $ ping6 vdsl ping: vdsl: No address associated with hostname $ ping6 2a02:8010:663d:0:6203:47ff:fe2d:8eba PING 2a02:8010:663d:0:6203:47ff:fe2d:8eba(2a02:8010:663d:0:6203:47ff:fe2d: 8eba) 56 data bytes 64 bytes from 2a02:8010:663d:0:6203:47ff:fe2d:8eba: icmp_seq=1 ttl=64 time=1.75 ms ^C If I add the LAN address of the Bipac to /etc/hosts, ping finds it okay, but what if the address changes if the Bipac reboots? I thought this kind of address fixing was unnecessary in IPv6. And am I supposed to fix the IPv6 addresses of the other hosts on the LAN, or just stick to IPv4 for local comms? And I haven't yet even thought about the wireless devices served by the Bipac, though I see my mobile phone has acquired an IPv6 address starting with fe80::40be... and it doesn't look like its MAC address.
Re: [gentoo-user] Help with IPv6, please
On Friday, 6 December 2019 17:42:44 GMT Ralph Seichter wrote: > ULA support, or rather the ability to assign additional static IPv6 > addresses to an interface, depends on the router's firmware. If you can > make it work, https://cd34.com/rfc4193/ can help you generate a ULA > prefix. I can't apply a ULA to my router, but it's given me a /128 address which I can use in DNS. > ULA allows for fixed addresses, while SLAAC-based addresses expire and > can contain random components, and that's why static name-to-address > mappings generally use ULA. I haven't looked into SLAAC yet, but meanwhile I've sorted out addresses for my LAN hosts using the delegation prefix and an arbitrary host number 1 to 6. Ping6 and nslookup both work, both locally and to remote hosts. Thanks again for your help! Now for shorewall6 :) -- Regards, Peter.
Re: [gentoo-user] Help with IPv6, please
* Peter Humphrey: > My IPv6 address is indeed static. Nice. In that case, you can of course use your router's global scope address in /etc/hosts or DNS. > The only IPv6 details my router shows are the LAN and WAN addresses, > and 'ip -6 route show' on this host, although it lists six addresses > bound to eth0, doesn't mention fd67. ULA support, or rather the ability to assign additional static IPv6 addresses to an interface, depends on the router's firmware. If you can make it work, https://cd34.com/rfc4193/ can help you generate a ULA prefix. ULA allows for fixed addresses, while SLAAC-based addresses expire and can contain random components, and that's why static name-to-address mappings generally use ULA. -Ralph
Re: [gentoo-user] Help with IPv6, please
On Thursday, 5 December 2019 21:17:59 GMT Ralph Seichter wrote: > * Peter Humphrey: > > $ ping6 vdsl > > ping: vdsl: No address associated with hostname > > The outcome of ping depends on /etc/resolv.conf and /etc/hosts, and even > on the OS of the IPv6 nodes involved. Apple devices will be available as > somename.local, with "somename" being what the user configured as the > device's name in Preferences->Sharing. I can for example ping my iPhone > via "ping6 silver.local". OK, got that. > > If I add the LAN address of the Bipac to /etc/hosts, ping finds it > > okay, but what if the address changes if the Bipac reboots? > > Your Bipac will have multiple "LAN addresses", or rather addresses that > are bound to the LAN-facing network interface. In your example, you were > pinging the global scope address 2a02:x which may change over time, > unless your provider assigns static networks (mine does not). However, > the router should also have at least one link-local address and one > unique local address (ULA): My IPv6 address is indeed static. > Global scope: 2a02:8010:x (may change or may not) > Link local: fe80:y (may change with SLAAC privacy extensions) > ULA: fd67:z (should be fixed) > > With my router, the ULA was set up once when I first picked a random ULA > prefix, and has remained immutable since then. I can't see any fd67... Addresses here. The only IPv6 details my router shows are the LAN and WAN addresses, and 'ip -6 route show' on this host, although it lists six addresses bound to eth0, doesn't mention fd67. Do I need to fix a ULA (on each host?), and how would I choose and apply it? My router seems to be a bit basic in the IPv6 department. > > I see my mobile phone has acquired an IPv6 address starting with > > fe80::40be... and it doesn't look like its MAC address. > > That's not actually a bad thing. I mentioned SLAAC privacy extensions > (RFC 4941) before; [1] offers some explanations. > > [1] > https://www.internetsociety.org/resources/deploy360/2014/privacy-extensions > -for-ipv6-slaac/ Thanks for the link and your help. -- Regards, Peter.
Re: [gentoo-user] Help with IPv6, please
* gentoo-u...@c-14.de: > The easiest option is if you're using stateful DHCPv6. In this case > you just need to set up your dhcp server to notify your dns server of > any new leases. That's what you consider "the easiest option"? ;-) I usually ask the following of people starting with IPv6: Do you really need fixed names for all nodes, or is this more of a reflex? In my experience, home networks can usually run with only a few fixed addresses (or rather name-to-address mappings). An old printer might need a fixed address. A multimedia server will broadcast its services and often does not need a fixed address. Neither do various smart- phones. The router might need one, if it has a web UI. Something like this might be enough: # /etc/hosts fd67:1:2:3::1 router.local router fd67:1:2:3::2 printer.local printer fd67:1:2:3::/64 is a random ULA prefix, pretty much an equivalent of 10.0.0.0/8 but much larger. Just assign a fixed ULA address to nodes that *really* need it and share /etc/hosts across your nodes. That, to me, is an easier option than setting up DHCPv6 and a DNS server, both of which need to support dynamic DNS updates. Depending on your environment, "ping6 somename.local" might work without any manual configuration at all, as I mentioned in my previous message. -Ralph
Re: [gentoo-user] Help with IPv6, please
* Peter Humphrey: > $ ping6 vdsl > ping: vdsl: No address associated with hostname The outcome of ping depends on /etc/resolv.conf and /etc/hosts, and even on the OS of the IPv6 nodes involved. Apple devices will be available as somename.local, with "somename" being what the user configured as the device's name in Preferences->Sharing. I can for example ping my iPhone via "ping6 silver.local". > If I add the LAN address of the Bipac to /etc/hosts, ping finds it > okay, but what if the address changes if the Bipac reboots? Your Bipac will have multiple "LAN addresses", or rather addresses that are bound to the LAN-facing network interface. In your example, you were pinging the global scope address 2a02:x which may change over time, unless your provider assigns static networks (mine does not). However, the router should also have at least one link-local address and one unique local address (ULA): Global scope: 2a02:8010:x (may change or may not) Link local: fe80:y (may change with SLAAC privacy extensions) ULA: fd67:z (should be fixed) With my router, the ULA was set up once when I first picked a random ULA prefix, and has remained immutable since then. > I see my mobile phone has acquired an IPv6 address starting with > fe80::40be... and it doesn't look like its MAC address. That's not actually a bad thing. I mentioned SLAAC privacy extensions (RFC 4941) before; [1] offers some explanations. [1] https://www.internetsociety.org/resources/deploy360/2014/privacy-extensions-for-ipv6-slaac/ -Ralph
Re: [gentoo-user] Help with IPv6, please
> Hello list, Hi, > Having been inspired by the recent discussion of IPv6, I decided to try it, > starting with my ISP, my Billion Bipac vDSL modem-router and one host - this > one. Of course it isn't straightforward. > > Zen has allocated me a /64 ND prefix and a /48 PD prefix. I found a way to > tell the Bipac to set up IPv6, and rebooted it; it now tells me its LAN > address is 2a02:8010:663d:0:6203:47ff:fe2d:8eba/64. Nslookup on this host > says > the same, without the /64. But then this: > > $ ping6 vdsl > ping: vdsl: No address associated with hostname > $ ping6 2a02:8010:663d:0:6203:47ff:fe2d:8eba > PING 2a02:8010:663d:0:6203:47ff:fe2d:8eba(2a02:8010:663d:0:6203:47ff:fe2d: > 8eba) 56 data bytes > 64 bytes from 2a02:8010:663d:0:6203:47ff:fe2d:8eba: icmp_seq=1 ttl=64 > time=1.75 ms > ^C > > If I add the LAN address of the Bipac to /etc/hosts, ping finds it okay, but > what if the address changes if the Bipac reboots? I thought this kind of > address fixing was unnecessary in IPv6. > > And am I supposed to fix the IPv6 addresses of the other hosts on the LAN, or > just stick to IPv4 for local comms? And I haven't yet even thought about the > wireless devices served by the Bipac, though I see my mobile phone has > acquired an IPv6 address starting with fe80::40be... and it doesn't look like > its MAC address. It really depends how you're setting up IPv6 on your local network. The easiest option is if you're using stateful DHCPv6. In this case you just need to set up your dhcp server to notify your dns server of any new leases. If you're using static IPv6 addresses you can create a static mapping between hostnames and addresses either in /etc/hosts or your dns server. If you're using SLAAC, however, the only option I can think of is to use stateless DHCPv6 to notify the DHCP server of your client fqdn which should then sync the record with the DNS server. -- Simon Thelen
[gentoo-user] Help with IPv6, please
Hello list, Having been inspired by the recent discussion of IPv6, I decided to try it, starting with my ISP, my Billion Bipac vDSL modem-router and one host - this one. Of course it isn't straightforward. Zen has allocated me a /64 ND prefix and a /48 PD prefix. I found a way to tell the Bipac to set up IPv6, and rebooted it; it now tells me its LAN address is 2a02:8010:663d:0:6203:47ff:fe2d:8eba/64. Nslookup on this host says the same, without the /64. But then this: $ ping6 vdsl ping: vdsl: No address associated with hostname $ ping6 2a02:8010:663d:0:6203:47ff:fe2d:8eba PING 2a02:8010:663d:0:6203:47ff:fe2d:8eba(2a02:8010:663d:0:6203:47ff:fe2d: 8eba) 56 data bytes 64 bytes from 2a02:8010:663d:0:6203:47ff:fe2d:8eba: icmp_seq=1 ttl=64 time=1.75 ms ^C If I add the LAN address of the Bipac to /etc/hosts, ping finds it okay, but what if the address changes if the Bipac reboots? I thought this kind of address fixing was unnecessary in IPv6. And am I supposed to fix the IPv6 addresses of the other hosts on the LAN, or just stick to IPv4 for local comms? And I haven't yet even thought about the wireless devices served by the Bipac, though I see my mobile phone has acquired an IPv6 address starting with fe80::40be... and it doesn't look like its MAC address. -- Regards, Peter.
