• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

News:

Welcome to Hurricane Electric's Tunnelbroker.net forums!

Main Menu

IPv6 subnet

Started by EganIPv6, March 04, 2012, 12:58:09 PM

Previous topic - Next topic

EganIPv6

Hi -

I'm new to IPv6 and reading/learning as much as i can. I've successfully setup my tunnel and have IPv6 reachability. I'm confused about how to setup an all IPv6 environment. For example, If I were to a design a new small branch office that needed an external (internet), dmz, and internal subnets that had DHCPv6 pool for clients etc.

What should I be using for the firewall/router and switch ip addresses? Are they different than what the internal client addresses should be?

can someone point in the right direction or provide some guidance?

Thanks

cholzhauer

did you already request your /48?  If not, you'll have to get that.  Next, select /64's from that to use on each subnet...each subnet gets its own /64.

So if your /48 was 2001:db8:1::/48 you could use 2001:db8:1:1::/64 for one network and 2001:db8:1:2::/64 for the other

broquea

You do also get a routed /64 even before needing a /48...

cholzhauer

Right but he was talking about multiple subnets at his remote office

EganIPv6

Yes, I did request and receive a /48. I went to http://www.subnetonline.com and carved out a few subnets. I even configured router-advertisements. My ipv6 clients can reach the internet but I not sure if the right direction to go or if I should be using DHCPv6.

What would a host entry look like for 2001:db8:1:1::/64?

I've come across a few IPv6 subnet calculators online but they don't seem to tell you how hosts per subnet etc, like traditional IPv4 subnets. Anyone seen anything like that?

I'm trying to think about how I design/configure IPv4 sites today and map that to IPv6.

Thanks for the help.

cholzhauer

#5
Really, it's about the same.

You can have something like 64 quintillion addresses per /64

As far as RA or DHCPv6, it's really up to you and what you're trying to accomplish.  The last I knew, even if you did DHCPv6, you'd still need to do RA so they hosts were able to set the default gateway.

As far as the addresses, again, it's up to you.  You can use the same connotations as you do with v4;  Use ::1 for the firewall address or ::254 for the switch

EDIT:

Quote

What would a host entry look like for 2001:db8:1:1::/64?

I'm not sure what you mean I guess....to have a valid address, you need to add something after the ::    2001:db8:1:1::1 would be a valid address

EganIPv6

Perfect. Thanks so much for helping out. I'm going to keep pushing along. My goal is to setup a v6 only site in order to learn specific aspects and configurations.

kasperd

Quote from: cholzhauer on March 05, 2012, 05:21:58 AMThe last I knew, even if you did DHCPv6, you'd still need to do RA so they hosts were able to set the default gateway.
At some point in the past you would also need DHCPv6 even if you did RA, because the first version of RA did not tell hosts about DNS servers. The newest version of the standard does support DNS information over RA, but if you have a router or a client, which is too old, then you may need DHCPv6 to get DNS information to the clients.

cholzhauer

Quote
At some point in the past you would also need DHCPv6 even if you did RA, because the first version of RA did not tell hosts about DNS servers. The newest version of the standard does support DNS information over RA, but if you have a router or a client, which is too old, then you may need DHCPv6 to get DNS information to the clients.

The dictionary defines this as "Cisco"  ;D