• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

News:

Welcome to Hurricane Electric's Tunnelbroker.net forums!

Main Menu

IPV6 on DD-WRT

Started by wolfraider, October 15, 2011, 05:48:36 PM

Previous topic - Next topic

wolfraider

I'm having trouble getting my tunnel setup correctly. Everything looks correct but I am unable to resolve or ping any ipv6 addresses. I used the scripts located here http://www.dd-wrt.com/wiki/index.php/IPv6_setup_Hurricane_Electric_Tunnel_Broker. I'm not sure where to trouble shoot from here

#basic connection settings
SERVER_IPV4_ADDR="209.51.181.2"
CLIENT_IPV6_ADDR="2001:470:1f10:eeb::2/64"
ROUTED_64_ADDR="2001:470:1f11:eeb::/64"

/tmp/ipv6.log
+OK: Tunnel endpoint updated to: 75.121.69.36
Fetching WAN IP from External Site:  http://automation.whatismyip.com/n09230945.
External IP detected as: 75.121.69.36
configuring tunnel
creating radvd conf
Open DNS ipv6 enabled
starting radvd

ipconfig - shouldn't the gateway for ipv6 be my router?
Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   IPv6 Address. . . . . . . . . . . : 2001:470:1f11:eeb:28c9:8f60:f06b:4961
   Temporary IPv6 Address. . . . . . : 2001:470:1f11:eeb:65b9:f259:2376:4423
   Link-local IPv6 Address . . . . . : fe80::28c9:8f60:f06b:4961%13
   IPv4 Address. . . . . . . . . . . : 192.168.1.116
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::6a7f:74ff:fea7:5d04%13
                                       192.168.1.1

ip -6 route all
2001:470:1f10:eeb::/64 via :: dev he-ipv6  metric 256  expires -523sec mtu 1480 advmss 1420 hoplimit 4294967295
2001:470:1f11:eeb::/64 dev br0  metric 256  expires -523sec mtu 1500 advmss 1440 hoplimit 4294967295
2000::/3 dev he-ipv6  metric 1024  expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
fe80::/64 dev eth0  metric 256  expires -559sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev vlan1  metric 256  expires -558sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1  metric 256  expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br0  metric 256  expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev vlan2  metric 256  expires -555sec mtu 1492 advmss 1432 hoplimit 4294967295
fe80::/64 via :: dev he-ipv6  metric 256  expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
ff00::/8 dev eth0  metric 256  expires -559sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev vlan1  metric 256  expires -558sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev eth1  metric 256  expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev br0  metric 256  expires -557sec mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev vlan2  metric 256  expires -555sec mtu 1492 advmss 1432 hoplimit 4294967295
ff00::/8 dev he-ipv6  metric 256  expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
default dev he-ipv6  metric 1024  expires -522sec mtu 1480 advmss 1420 hoplimit 4294967295
unreachable default dev lo  proto none  metric -1  error -128 hoplimit 255

k1mu

Is your DD-WRT device used to route to your ISP? The DD-WRT instructions assume that. If you're using some other router in front of the WRT, you'll need to adjust for that. (The outside router will need to forward IP protocol 41 to the WRT device.)

The link-local address for the default gateway is OK - for example, mine looks like
QuoteEthernet adapter Local Area Connection:

   IPv6 Address. . . . . . . . . . . : 2001:470:1:11:cd68:7896:da8d:9ce9
   Temporary IPv6 Address. . . . . . : 2001:470:1:11:2d96:9288:a6db:f71a
   Link-local IPv6 Address . . . . . : fe80::cd68:7896:da8d:9ce9%10
   IPv4 Address. . . . . . . . . . . : 192.168.1.203
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::214:22ff:fe2c:2cb4%10
                                       192.168.1.1
The default gateway tells me that the MAC is 00:14:22:2c:2c:b4, which is correct for my firewall host:
Quotebge0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        lladdr 00:14:22:2c:2c:b4
        priority: 0
        media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause)
        status: active
        inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
        inet6 fe80::214:22ff:fe2c:2cb4%bge0 prefixlen 64 scopeid 0x1
        inet6 2001:470:1:11::1 prefixlen 64

(IPv6 edited for privacy reasons.)

Mangix

this is my setup

Startup:ip tunnel add he-ipv6 mode sit remote 72.52.104.74 ttl 69
ip link set he-ipv6 up
ip addr add 2001:0:0:0::1/64 dev he-ipv6
ip route add ::/0 dev he-ipv6
ip addr add 2001:0:0:0::/64 dev br0
sleep 5
radvd -C /tmp/radvd.conf


Firewall:nsmod ip6t_REJECT
ip6tables -F
ip6tables -A FORWARD -p tcp -i he-ipv6 &#-106;syn -m multiport &#-106;dports ftp-data,ftp,ssh,smtp,http,https,ntp,domain -j ACCEPT
ip6tables -A FORWARD -p tcp -i he-ipv6 &#-106;syn -j REJECT &#-106;reject-with adm-prohibited
ip6tables -A FORWARD -p udp -i he-ipv6 -m multiport &#-106;dports ntp,domain -j ACCEPT
ip6tables -A FORWARD -p udp -i he-ipv6 -j REJECT &#-106;reject-with adm-prohibited