I'm having trouble getting my tunnel setup correctly. Everything looks correct but I am unable to resolve or ping any ipv6 addresses. I used the scripts located here http://www.dd-wrt.com/wiki/index.php/IPv6_setup_Hurricane_Electric_Tunnel_Broker. I'm not sure where to trouble shoot from here
#basic connection settings
SERVER_IPV4_ADDR="209.51.181.2"
CLIENT_IPV6_ADDR="2001:470:1f10:eeb::2/64"
ROUTED_64_ADDR="2001:470:1f11:eeb::/64"
/tmp/ipv6.log
+OK: Tunnel endpoint updated to: 75.121.69.36
Fetching WAN IP from External Site: http://automation.whatismyip.com/n09230945.
External IP detected as: 75.121.69.36
configuring tunnel
creating radvd conf
Open DNS ipv6 enabled
starting radvd
ipconfig - shouldn't the gateway for ipv6 be my router?
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
IPv6 Address. . . . . . . . . . . : 2001:470:1f11:eeb:28c9:8f60:f06b:4961
Temporary IPv6 Address. . . . . . : 2001:470:1f11:eeb:65b9:f259:2376:4423
Link-local IPv6 Address . . . . . : fe80::28c9:8f60:f06b:4961%13
IPv4 Address. . . . . . . . . . . : 192.168.1.116
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : fe80::6a7f:74ff:fea7:5d04%13
192.168.1.1
ip -6 route all
2001:470:1f10:eeb::/64 via :: dev he-ipv6 metric 256 expires -523sec mtu 1480 advmss 1420 hoplimit 4294967295
2001:470:1f11:eeb::/64 dev br0 metric 256 expires -523sec mtu 1500 advmss 1440 hoplimit 4294967295
2000::/3 dev he-ipv6 metric 1024 expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
fe80::/64 dev eth0 metric 256 expires -559sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev vlan1 metric 256 expires -558sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1 metric 256 expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br0 metric 256 expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev vlan2 metric 256 expires -555sec mtu 1492 advmss 1432 hoplimit 4294967295
fe80::/64 via :: dev he-ipv6 metric 256 expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
ff00::/8 dev eth0 metric 256 expires -559sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev vlan1 metric 256 expires -558sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev eth1 metric 256 expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev br0 metric 256 expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev vlan2 metric 256 expires -555sec mtu 1492 advmss 1432 hoplimit 4294967295
ff00::/8 dev he-ipv6 metric 256 expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
default dev he-ipv6 metric 1024 expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
unreachable default dev lo proto none metric -1 error -128 hoplimit 255
Is your DD-WRT device used to route to your ISP? The DD-WRT instructions assume that. If you're using some other router in front of the WRT, you'll need to adjust for that. (The outside router will need to forward IP protocol 41 to the WRT device.)
The link-local address for the default gateway is OK - for example, mine looks like
QuoteEthernet adapter Local Area Connection:
IPv6 Address. . . . . . . . . . . : 2001:470:1:11:cd68:7896:da8d:9ce9
Temporary IPv6 Address. . . . . . : 2001:470:1:11:2d96:9288:a6db:f71a
Link-local IPv6 Address . . . . . : fe80::cd68:7896:da8d:9ce9%10
IPv4 Address. . . . . . . . . . . : 192.168.1.203
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : fe80::214:22ff:fe2c:2cb4%10
192.168.1.1
The default gateway tells me that the MAC is 00:14:22:2c:2c:b4, which is correct for my firewall host:
Quotebge0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:14:22:2c:2c:b4
priority: 0
media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause)
status: active
inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::214:22ff:fe2c:2cb4%bge0 prefixlen 64 scopeid 0x1
inet6 2001:470:1:11::1 prefixlen 64
(IPv6 edited for privacy reasons.)
this is my setup
Startup:ip tunnel add he-ipv6 mode sit remote 72.52.104.74 ttl 69
ip link set he-ipv6 up
ip addr add 2001:0:0:0::1/64 dev he-ipv6
ip route add ::/0 dev he-ipv6
ip addr add 2001:0:0:0::/64 dev br0
sleep 5
radvd -C /tmp/radvd.conf
Firewall:nsmod ip6t_REJECT
ip6tables -F
ip6tables -A FORWARD -p tcp -i he-ipv6 &#-106;syn -m multiport &#-106;dports ftp-data,ftp,ssh,smtp,http,https,ntp,domain -j ACCEPT
ip6tables -A FORWARD -p tcp -i he-ipv6 &#-106;syn -j REJECT &#-106;reject-with adm-prohibited
ip6tables -A FORWARD -p udp -i he-ipv6 -m multiport &#-106;dports ntp,domain -j ACCEPT
ip6tables -A FORWARD -p udp -i he-ipv6 -j REJECT &#-106;reject-with adm-prohibited