• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

Allow lan hosts to autoconfigure through Cisco router

Started by rsreese, November 11, 2008, 09:23:08 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

rsreese

November 11, 2008, 09:23:08 PM
I was trying to follow the post here: http://www.tunnelbroker.net/forums/index.php?topic=224.0 that was very helpful but I don't think I quite have it. My clients (Vista, Debian) don't seem to be auto configuring themselves since they still have still have link-local addresses?

Tunnel connection.
Code Select

#sh ipv6 int tunnel 0
Tunnel0 is up, line protocol is up
  IPv6 is enabled, link-local address is FE80::4C12:XXXX
  Description: HE.net
  Global unicast address(es):
    2001:470:XXXX:XXXX::2, subnet is 2001:470:1F06:3B6::/64
  Joined group address(es):
    FF02::1
    FF02::2
    FF02::1:FF00:2
    FF02::1:FF12:CAB4
  MTU is 1480 bytes
  ICMP error messages limited to one every 100 milliseconds
  ICMP redirects are enabled
  ND DAD is enabled, number of DAD attempts: 1
  ND reachable time is 30000 milliseconds


Internal interface to clients.
Code Select

interface FastEthernet0/1.2
description $FW_INSIDE$
encapsulation dot1Q 2
ip address 172.16.2.1 255.255.255.0
ip access-group 101 in
no ip unreachables
ip nat inside
ip virtual-reassembly
ipv6 address 2001:470:XXXX::1/64
ipv6 enable


Vista
Code Select

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::11a:dfa3:1034:a11f%8
   IPv4 Address. . . . . . . . . . . : 172.16.2.2
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.16.2.1

evilzardoz

#2
November 26, 2008, 12:24:40 AM
Hi,

You need to advertise your subnet using neighbour discovery:

ipv6 nd prefix 2001:470:XXXX::/64 infinite infinite

the two last commands define how long the IPv6 addresses 'last'

Note that you won't get DNS servers advertised to clients this way.  That requires DHCPv6 which unfortunately isn't well supported yet...

spectre240sx

#3
February 22, 2009, 09:19:41 PM
What routing platform are you on? I've got a 2621xm and my router issued RAs by default. My ASA5505 does the same thing.

rsreese

#4
April 04, 2009, 06:17:04 PM Last Edit: April 05, 2009, 10:21:58 AM by rsreese
Quote from: evilzardoz on November 26, 2008, 12:24:40 AM
Hi,

You need to advertise your subnet using neighbour discovery:

ipv6 nd prefix 2001:470:XXXX::/64 infinite infinite

the two last commands define how long the IPv6 addresses 'last'

Note that you won't get DNS servers advertised to clients this way.  That requires DHCPv6 which unfortunately isn't well supported yet...

I applied
Code Select

ipv6 nd prefix 2001:470:xxxx:xxx::/64 infinite infinite

to the internal interface f0/1.2 but my client didn't seem to pickup the IP from the router? Which ipv6 IP should I be using?

rsreese

#5
April 05, 2009, 08:26:07 PM
Here's what my internal interface looks like.



Code Select

#sh ipv6 int f0/1.2
FastEthernet0/1.2 is up, line protocol is up
  IPv6 is enabled, link-local address is FE80::20C:85FF:FE07:A701
  Description: $FW_INSIDE$
  Global unicast address(es):
    2001:470:XXXX::1, subnet is 2001:470:880D::/64
  Joined group address(es):
    FF02::1
    FF02::2
    FF02::1:FF00:1
    FF02::1:FF07:A701
  MTU is 1500 bytes
  ICMP error messages limited to one every 100 milliseconds
  ICMP redirects are enabled
  ND DAD is enabled, number of DAD attempts: 1
  ND reachable time is 30000 milliseconds

rsreese

#6
April 06, 2009, 07:11:19 PM
I didn't have #ipv6 unicast-routing

I've been told three different methods and since I'm also new to this I'm just trying to figure out the benefits to each one. Basically I'm asking why bother with the latter two if the first one works?

ipv6 address 2001:470:880D::1/64

ipv6 nd prefix 2001:470:1F07:3B6::/64 infinite infinite

ipv6 address 2001:470:880D::/64 eui-64
Print
Go Up Pages1
User actions