From owner-freebsd-questions Wed Aug 29 12:55:51 2001 Delivered-To: freebsd-questions@freebsd.org Received: from aeon.tvd.be (aeon.tvd.be [195.162.196.20]) by hub.freebsd.org (Postfix) with ESMTP id 6FD1E37B403 for ; Wed, 29 Aug 2001 12:55:41 -0700 (PDT) (envelope-from wvhemel@vub.ac.be) Received: from cocaine.cryolabs.net (cable-213-132-151-176.upc.chello.be [213.132.151.176]) by aeon.tvd.be (8.9.3/8.9.3/RELAY-1.1) with ESMTP id VAA12502; Wed, 29 Aug 2001 21:55:28 +0200 (MET DST) Date: Wed, 29 Aug 2001 21:55:56 +0200 (CEST) From: Wouter Van Hemel To: Hajimu UMEMOTO Cc: Subject: Re: ipv6 route configuration In-Reply-To: <20010830.034358.39231250.ume@mahoroba.org> Message-ID: PGP: 0B B4 BC 28 53 62 FE 94 6A 57 EE B8 A6 E2 1B E4 (0xAA5412F0) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 30 Aug 2001, Hajimu UMEMOTO wrote: > Hi, > > # I'm not on -question list. > (I'm not on the list either) > >>>>> On Wed, 29 Aug 2001 17:06:08 +0200 (CEST) > >>>>> Wouter Van Hemel said: > > wvhemel> route add -inet6 3ffe:0b80:01c8:: -prefixlen 48 -interface lo0 > (--> why lo0 ?? shouldn't this subnet be send to ed1, the internal net?) > > It should be better to add -reject. > For security's sake, you mean? Well, first I want to make it work, if it doesn't work, there isn't anything to secure, is there :) > wvhemel> and it makes a rtadvd.conf-file with: > wvhemel> ##### start ##### > wvhemel> default:\ > wvhemel> :raflags#0:rltime#3600:\ > wvhemel> :pinfoflags#64:vltime#360000:pltime#360000:mtu#1500: > wvhemel> ether:\ > wvhemel> :mtu#1280:tc=default: > wvhemel> # interfaces. > wvhemel> ed1:\ > wvhemel> :addrs#1:\ > wvhemel> :addr="3ffe:0b80:01c8:0001::":prefixlen#64:tc=ether: > wvhemel> ##### end ##### > > Actually, you don't need rtadvd.conf. > > wvhemel> 1) why does the /48 class get bound to lo0? > > It is reject route to avoid loop at aggregate point. Actual segment > should use /64. > So I can't assign a /48 straight to my internal network? What's the logic behind that? What about static routes from 3ffe:b80:1c8::1 --> router 3ffe:b80:1c8::2 --> server1 3ffe:b80:1c8::3 --> server2 ? > wvhemel> 2) how do I send the full /48 class to the internal net, using ::1 for the > wvhemel> router itself - like my ipv4 internal net? > > wvhemel> 3) does rtadvd have to run on all machines, or just the router? > > Just on the router. > Ok, that seems logical. > wvhemel> Anybody with a better understanding of routing, please enlighten me, or > wvhemel> point me to good resources... thanks :) > > Basically, if you use /etc/rc.conf, you can set something like: > > gif_interfaces="gif0" > gifconfig_gif0="real_ip tunnel_end_point" > ipv6_enable="YES" > ipv6_network_interfaces="ed1" > ipv6_prefix_ed1="3ffe:b80:1c8:1" > ipv6_gateway_enable="YES" > ipv6_router_enable="YES" > ipv6_router_flags="-A 3ffe:b80:1c8::/48,gif0 -O 3ffe:b80:1c8::/48,gif0" > rtadvd_enable="YES" > rtadvd_interfaces="ed1" > This is what the script does, first I want to make everything work before I put it in my rc-files. How would you go about if you would make a static route for each host? That would be possible, no? Allow me to explain what I want (if possible) and don't know how to achieve. I'd like to make the ip as short as possible, and appoint 3ffe:b80:1c8::1 to 192.168.196.1, 3ffe:b80:1c8::2 to 192.168.196.2, and so on. Just to make sure, for the other machines, I just add something like '3ffe:b80:1c8::2' to ed1 with ifconfig? > -- > Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan > ume@mahoroba.org ume@bisd.hitachi.co.jp ume@{,jp.}FreeBSD.org > http://www.imasy.org/~ume/ > ________________________________ __ _ |=- w o u t e r -=|=- h t t p : / / w w w . i n s o m n i a . c x / -=| _ __ ________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message