• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

Tunnelbroker, Uverse, and Cisco 2621XM

Started by ryanries09, July 24, 2011, 10:12:26 AM

Previous topic - Next topic

ryanries09

IPv6 newbie here.  I've run into a roadblock in getting my tunnel set up and was hoping I'd find some help here.

I have Uverse internet, with that 2wire gateway.  I also have a Cisco 2621XM.  I'll try to draw a network map:

Internet <------> Uverse GW <------> Cisco2621 <------> My Windows 7 PC

I put the Cisco in DMZ mode, so that the Uverse GW forwards everything to the Cisco unless otherwise specified.  That also means that the Cisco receives my public IPv4 address from the Uverse via DHCP.  Everything IPv4 related works just fine.  I'm writing this post over IPv4 in this network as we speak.  But I'm trying to run dual-stack.

I set up my ipv6 tunnel, using my public ipv4 address as the endpoint.  This is also the ip4 address of the outside interface on the Cisco.  Sitting on my PC, I can SSH into the Cisco just fine, using either its ip4 address or its ip6 address.  The Cisco is able to ping ipv6.google.com just fine.  But it's like it isn't routing anything to and from my PC.

On my PC, when I configure it to have no ip6 address (link-local only,) I am able to ping the Tunnel0 interface on my Cisco, but nothing beyond that.  That makes sense, because I have no global ip6 address.  But when I configure a global ip6 address on my PC, I loose the ability to ping the Tunnel0 interface on my Cisco.  What gives?

Here is the relevant portion of my router config:

Using 1775 out of 29688 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
no service dhcp
!
hostname cisco2621xm
!
boot-start-marker
boot-end-marker
!
enable secret 5 blah
!
aaa new-model
!
!
!
aaa session-id common
no network-clock-participate slot 1
no network-clock-participate wic 0
ip cef
!
!
aaa session-id common
no network-clock-participate slot 1
no network-clock-participate wic 0
ip cef
!
!
!
!
ip domain name blah.local
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
ipv6 unicast-routing
ipv6 cef
!
!
username blah password 7 blah
!
!
ip ssh authentication-retries 2
!
!
!
!
!
interface Tunnel0
description Hurricane Electric IPv6 Tunnel
no ip address
ipv6 address 2001:470:1F0E:5A4::2/64
ipv6 enable
tunnel source 75.32.98.76
tunnel destination 216.218.224.42
tunnel mode ipv6ip
!
interface FastEthernet0/0
description Outside Interface
ip address dhcp
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
ipv6 enable
!
interface FastEthernet0/1
description Inside Interface
ip address 192.168.82.1 255.255.254.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
ipv6 enable
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip nat inside source list 1 interface FastEthernet0/0 overload
!
access-list 1 permit 192.168.82.0 0.0.1.255
ipv6 route ::/0 Tunnel0
!
!
!
control-plane

mcsteve

You don't appear to have configured an IPv6 address on your router's Fa0/1 interface.

ryanries09

Thank you.  Yes, I just came back to post that I've fixed my issue.  I just assigned an ipv6 address from my "routed" prefix to my inside interface.  Worked like a charm.

Thanks for your help!