From owner-freebsd-stable@FreeBSD.ORG Mon Nov 9 22:47:52 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E821F106566B for ; Mon, 9 Nov 2009 22:47:52 +0000 (UTC) (envelope-from kenyon@kenyonralph.com) Received: from cdptpa-omtalb.mail.rr.com (cdptpa-omtalb.mail.rr.com [75.180.132.121]) by mx1.freebsd.org (Postfix) with ESMTP id A2EE18FC0C for ; Mon, 9 Nov 2009 22:47:52 +0000 (UTC) Received: from voodoo.kenyonralph.com ([76.176.200.148]) by cdptpa-omta01.mail.rr.com with ESMTP id <20091109224751873.RNTP15440@cdptpa-omta01.mail.rr.com>; Mon, 9 Nov 2009 22:47:51 +0000 Received: from voodoo.kenyonralph.com (localhost [127.0.0.1]) by voodoo.kenyonralph.com (Postfix) with ESMTP id C912389B1; Mon, 9 Nov 2009 14:47:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=kenyonralph.com; h=date :from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to; s=postfix; bh=HAD3VkviUpneJ/GcQj6qdG+ gA6zKWzMYvAZU+amIBio=; b=A7hi6MDKRQY7m6I3k+G0jSouzzWS2LtcWtGPAfx TkmaCUGEqq4jUVPDUN6ZUdSzZxjCyc42JDDwfTrOD9ExdazAb8gLinXp33hK/jWL piMw2eTKB86ieiO13YjdYiLZogrqdX7+MNHxSfbhnhOaMEaaJOXuPev/DokpOQ8H 3Uuw= Received: by voodoo.kenyonralph.com (Postfix, from userid 1000) id 7514680EB; Mon, 9 Nov 2009 14:47:50 -0800 (PST) Date: Mon, 9 Nov 2009 14:47:50 -0800 From: Kenyon Ralph To: Rudy Message-ID: <20091109224750.GB15054@kenyonralph.com> Mail-Followup-To: Rudy , freebsd-stable@freebsd.org References: <4AF8970F.60909@monkeybrains.net> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="p2kqVDKq5asng8Dg" Content-Disposition: inline In-Reply-To: <4AF8970F.60909@monkeybrains.net> X-Operating-System: Ubuntu 9.10 Linux 2.6.31-14-generic on i686 User-Agent: Mutt/1.5.20 (2009-06-14) Cc: freebsd-stable@freebsd.org Subject: Re: Tunnel IPv6 requests to my IPv4 servers? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Nov 2009 22:47:53 -0000 --p2kqVDKq5asng8Dg Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2009-11-09T14:26:23-0800, Rudy wrote: > I got my first IPv6 from ARIN. I set up my router and am > successfully advertising my IPv6 block. On my DNS server, I added > an IPv6 IP, no problem (try pinging! ns1.monkeybrains.net). Now, > I'd like to 'NAT' to some older boxes and not mess with actually > putting IPv6 IPs on those boxes. Say I had a box with running IPv4 > with: 69.147.83.40 > How would I 'nat' or 'gif' or 'tunnel' from a NAT box without > putting any IPv6 on 69.147.83.40? >=20 > I want to have: > 2607:f598:0:1::666 on my 'firewall' and have it tunnel to > 69.147.83.40 or whatever.... > I've read this: > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.ht= ml > But that seems more geared toward getting IPv6 on clients. Are you trying to give the older boxes IPv6 connectivity or IPv4 connectivity to the Internet? If IPv6, why not just give the older boxes IPv6 addresses? Seems to me it would be a lot easier than messing with tunneling. They don't even need globally routeable IPv4 addresses. Set up rtadvd on your router, allow them to use their automatic IPv6 addresses (or set the addresses manually, doesn't matter), and that should be it. It shouldn't be that hard, since ease of setup is one of the things IPv6 is designed for. On FreeBSD, ipv6_enable=3D"YES" is probably all you need to do. --=20 Kenyon Ralph --p2kqVDKq5asng8Dg Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkr4nBYACgkQmFtUtJKnbnWs8wCfetbRevDlhx0a2cOsJdwLpgka 93QAoKbNd/IB7xEyu2/izzcp7bK3ti+Z =F0RV -----END PGP SIGNATURE----- --p2kqVDKq5asng8Dg--