IPv6 news - weekly summary
Title: IPv6 news - weekly summary Main News: UAE spearheads IPv6 initiative ECS improves broadcasting options for Virgin Radio MCI Connects Global Supercomputer Leader Cray to IPv6 New co-chairs for the IPv6 Cluster Demonstrating secure wireless personal access networks Other News: China Invests RMB1.4 Billion For First Commercial IPv6 Network Default implementations of IPv6 may present a security risk Switched fabric board embeds Ethernet switching Vendor News: CA snaps up Concord Microsoft VP Describes IPv6 Product Roadmap BII and Hexago Announce Collaboration to Accelerate IPv6 Deployment in China 6WIND Announces R&D Partnership with China Academy of Science Altiris Adds Mac OS Support Ixia Extends Comprehensive Protocol Support for its Conformance Test Solution Barcelona 2005 Global IPv6 Summit Registration open. Information available at: http://www.ipv6-es.com This electronic message contains information which may be privileged or confidential. The information is intended to be for the use of the individual(s) named above. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, including attached files, is prohibited.
IPv4 to IPV6 translation
Hi all, I have been asked to look at setting up a border router between an IPV4 network and an IPV6 network. The router would need to translate in both directions and possibly set some of the headers for the IPV6 traffic. I was looking at using a Linux platform for Proof of Concept but am having real problems finding anything on how to do this sort of thing. Has anyone had much exposure to this sort of set up and have any clues where to look for guides on how to implement this sort of thing. The routes would need to be dynamically assigned based on port number as we may have many to many connections going through the same router. I appreciate any and all answers Regards Ceejay - The IPv6 Users Mailing List Unsubscribe by sending "unsubscribe users" to [EMAIL PROTECTED]
Problems with IPv6 DNS :-(
Hello Experts,
I
have problems configuring DNS server for IPv6. I am using redhat Linux
(kernel version 2.4.18-14.) and am enabling IPv6 by 'insmod'ing
ipv6.o. I got bind 9.3.1 from
www.isc.org .
untarred and compiled .I did ./configure -enable-ipv6 and make and
make install.
There were no compilation errors and 'named' also starts successfully. I
think I am doing some mistake in the zone files.I am trying the following
simple setup in my private network:
host1-- ---HUB
host2
(fec0:1234:5678:1234::1/64)
| (fec0:1234:5678:1234::3/64)
|
DNS server(fec0:1234:5678:1234::2/64)
(host1 host2 and DNS server all connected to the same HUB)
I want to have host1 and host2 in example.domain and would like DNS
server to resolve the domain name when looked up from host1.
on host1:
vi /etc/resolv.conf
nameserver fec0:1234:5678:1234::2
named.conf on DNS server:
options {
directory
"/var/named";
/*
* If
there is a firewall between you and nameservers you want
* to talk
to, you might need to uncomment the query-source
*
directive below. Previous versions of BIND always asked
*
questions using port 53, but BIND 8.1 uses an unprivileged
* port by
default.
*/
listen-on-v6
{ any;};
//
query-source address * port 53;
};
//
// a caching only nameserver config
//
controls {
inet
127.0.0.1 allow { localhost; } keys { rndckey; };
};
zone "." IN {
type
hint;
file
"named.ca";
};
zone "localhost" IN {
type
master;
file
"localhost.zone";
allow-update
{ none; };
};
zone "0.0.127.in-addr.arpa" IN {
type
master;
file
"named.local";
allow-update
{ none; };
};
zone "::.ip6.arpa" IN {
type
master;
file
"::.ip6.arpa.zone";
};
zone "example.domain" IN {
type
master;
file
"example.domain.zone";
};
include "/etc/rndc.key";
I creaetd the files ::.ip6.arpa.zone and
example.domain.zone
Is it right to create such file???
::.ip6.arpa.zone file on DNS server: ( Thought it's similar to
0.0.127.in-addr.arpa.zone)
$TTL 86400
@ IN SOA localhost. root.localhost
(
1
; serial
28800
; refresh
7200
; retry
604800
; expire
86400
; ttk
)
@ IN NS localhost.
1 IN PTR localhost.
example.domain.zone on DNS server:
$TTL 86400
@ IN SOA example.domain
root.localhost (
3
; serial
28800
; refresh
7200
; retry
604800
; expire
86400
; ttl
)
@ IN NS example
$ORIGIN example.domain
@ 3600IN A6
64fec0:1234:5678:1234::2
host1 3600IN A6 64 fec0:1234:5678:1234::1
host2 3600IN A6 64 fec0:1234:5678:1234::3
Now on host1 ,I do
dig 0.0.0.0 host2.example.domain a6
or
dig :: host2.example.domain a6
It does not succeed.It says,
no servers could be reached;connection timed out;
On server side, in /var/log/messages it says unexpected end of file
in example.domain.zone
/var/log/messages on DNS Server
Apr 11 17:56:31 intoto named[1753]: starting BIND 9.2.1 -u
named
Apr 11 17:56:31 intoto named[1753]: using 1 CPU
Apr 11 17:56:31 intoto named[1756]: loading configuration from
'/etc/named.conf'
Apr 11 17:56:31 intoto named[1756]: listening on IPv6 interfaces, port
53
Apr 11 17:56:31 intoto named[1756]: listening on IPv4 interface lo,
127.0.0.1#53
Apr 11 17:56:31 intoto named[1756]: binding TCP socket: address in
use
Apr 11 17:56:31 intoto named[1756]: listening on IPv4 interface eth0,
172.16.15.16#53
Apr 11 17:56:31 intoto named[1756]: binding TCP socket: address in
use
Apr 11 17:56:31 intoto named[1756]: listening on IPv4 interface eth1,
172.16.17.17#53
Apr 11 17:56:31 intoto named[1756]: binding TCP socket: address in
use
Apr 11 17:56:31 intoto named[1756]: command channel listening on
127.0.0.1#953
Apr 11 17:56:31 intoto named[1756]: zone 0.0.127.in-addr.arpa/IN: loaded
serial 1997022700
Apr 11 17:56:31 intoto named[1756]: zone ::.ip6.arpa/IN: loaded serial
1997022700
Apr 11 17:56:31 intoto named[1756]: dns_rdata_fromtext:
example.domain.zone:14: near eol: unexpected end of input
Apr 11 17:56:31 intoto named[1756]: zone example.domain/IN: loading
master file example.domain.zone: unexpected end of input
Apr 11 17:56:31 intoto named[1756]: zone localhost/IN: loaded serial
42
Apr 11 17:56:31 intoto named[1756]: running
Apr 11 17:56:31 intoto named: named startup succeeded
Can someone please tell me where I am wrong . I am completely new to
this.So,I could have made some silly mistakes.So,please correct me and
gui
Re: Sudden hang of openssh connection over IPv6 using Linux
--On Dienstag, 5. April 2005 11:51 +0200 Peter Bieringer <[EMAIL PROTECTED]> wrote: has anyone seen this? I have such problems since long time and don't know the reason. Today, I debugged a little bit and it's very strange: one side: Fedora Core 3 running 2.6.10-1.770_FC3 openssh-3.9p1-8.0.1 other side: Fedora Core 2 running 2.6.10-1.771_FC3 and openssh-3.6.1p2-34 Connection: FC2 (client) to FC3 (server) Login is working, editing a file with vi, suddenly I do no longer get any reponse from typed chars. Strange, now the same happen on Server: RHEL3U4 openssh-3.6.1p2-33.30.3 Client: PuTTY 0.58 on W2KSP4 Compression: off I see packets coming back to the client box (debugged with windump), but no echo'ed char in PuTTY. Happen here using "tail -f ". So I have now 2 scenarios which causing problems: 1) Client: PuTTY 0.58 on W2KSP4 Conn : LAN -> 6to4 -> tunnel -> native -> LAN Server: openssh-3.6.1p2-33.30.3 on 2.4.21-31.EL.jwltest.7 2) Client: openssh-3.9p1-8.0.1 on 2.6.10-1.770_FC3 Conn : LAN -> SixXS tunnel -> native -> LAN -> openssh-3.6.1p2-34 on 2.6.10-1.771_FC2 The only equal thing is that the boxes are located in the same data center having the same IPv6 connectivity. Has noone ever seen such? Peter -- Dr. Peter Bieringer http://www.bieringer.de/pb/ GPG/PGP Key 0x958F422D mailto: pb at bieringer dot de Deep Space 6 Co-Founder and Core Member http://www.deepspace6.net/ - The IPv6 Users Mailing List Unsubscribe by sending "unsubscribe users" to [EMAIL PROTECTED]
Re: Problems with IPv6 DNS :-(
Hi Sharmila,
I am not sure i can anwer all your questions, but i think i can answer some of
them.
I have a working ipv6 dns server running, so i will cut and paste from it.
in named.conf i have: (leaving out the irelevant parts)
listen-on-v6 { any; };
allow-query { any; };
zone "1.6.7.0.0.6.9.0.1.0.0.2.ip6.arpa" IN {
type master;
file "ipv6.zone";
allow-transfer { none; };
allow-update { none; };
};
and in ipv6.zone i have:
$ORIGIN
0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.6.7.0.0.6.9.0.1.0.0.2.ip6.arpa.
1D IN NS ns1.kapitein.org.
1D IN NS ns2.kapitein.org.
1D IN NS ns3.kapitein.org.
1 PTR wega.kapitein.org.
2 PTR pced.kapitein.org.
5 PTR pcbeneden.kapitein.org.
8 PTR ns1.kapitein.org.
This will take care of the reverse zone.
You have something with ::.ip6.arpa.zone, i am not font of filenames with ::
in it, but that is probably just me
For the kapitein.org zone i have in named.conf:
zone "kapitein.org" IN {
type master;
file "kapitein.org";
allow-update { none; };
allow-transfer { none; };
forwarders {};
};
and the file kapitein.org contains:
@ 1D IN SOA neo postmaster (
2005041000 ; serial (d. adams)
1H ; refresh
15M ; retry
2W ; expiry
1D ); minimum
IN MX 10neo
1D IN NSneo
pced1D IN 2001:960:761::2
wega1D IN 2001:960:761::1
pcbeneden 1D IN 2001:960:761::5
neo 1D IN 2001:960:761::8
I am running suse 8.2, bind9-9.2.2
If youy use dig, try dig @fec0:1234:5678:1234::2 example.domain soa and see if
your server is authorative for that domain.
I think it is easier to build a good working ipv4 dns server and add the ipv6
parts later.
For me that is better to grasp then using ipv6 right away.
DNSsec is not nessecary for ipv6, i don't use it.
Bind should start without any errors, so check your zonefiles for missing } {
; etc.
I hope this helps.
If you are fammiliar with IRC you can join #ipv6 on
irc://irc.freenode.net/ipv6
Kind regards,
@
On Monday 11 April 2005 16:12, Sharmila wrote:
> Hello Experts,
>
> I have problems configuring DNS server for IPv6. I am
> using redhat Linux (kernel version 2.4.18-14.) and am enabling IPv6 by
> 'insmod'ing ipv6.o. I got bind 9.3.1 from www.isc.org . untarred and
> compiled .I did ./configure -enable-ipv6 and make and make install.
> There were no compilation errors and 'named' also starts successfully. I
> think I am doing some mistake in the zone files.I am trying the following
> simple setup in my private network:
> host1-- ---HUB host2
> (fec0:1234:5678:1234::1/64) | (fec0:1234:5678:1234::3/64)
>
> DNS server(fec0:1234:5678:1234::2/64)
>
> (host1 host2 and DNS server all connected to the same HUB)
>
> I want to have host1 and host2 in example.domain and would like DNS server
> to resolve the domain name when looked up from host1.
> on host1:
> vi /etc/resolv.conf
> nameserverfec0:1234:5678:1234::2
>
> named.conf on DNS server:
>
> options {
> directory "/var/named";
> /*
> * If there is a firewall between you and nameservers you want
> * to talk to, you might need to uncomment the query-source
> * directive below. Previous versions of BIND always asked
> * questions using port 53, but BIND 8.1 uses an unprivileged
> * port by default.
> */
> listen-on-v6 { any;};
> // query-source address * port 53;
> };
>
> //
> // a caching only nameserver config
> //
> controls {
> inet 127.0.0.1 allow { localhost; } keys { rndckey; };
> };
> zone "." IN {
> type hint;
> file "named.ca";
> };
>
> zone "localhost" IN {
> type master;
> file "localhost.zone";
> allow-update { none; };
> };
>
> zone "0.0.127.in-addr.arpa" IN {
> type master;
> file "named.local";
> allow-update { none; };
> };
> zone "::.ip6.arpa" IN {
> type master;
> file "::.ip6.arpa.zone";
> };
> zone "example.domain" IN {
> type master;
> file "example.domain.zone";
> };
>
> include "/etc/rndc.key";
> I creaetd the files ::.ip6.arpa.zone and example.domain.zone
> Is it right to create such file???
>
> ::.ip6.arpa.zone file on DNS server: ( Thought it's similar to
>
> 0.0.127.in-addr.arpa.zone)
>
> $TTL 86400
> @ IN SOA localhost. root.localhost (
>
