From owner-freebsd-net@FreeBSD.ORG Fri Apr 24 16:26:08 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 267E4106566C for ; Fri, 24 Apr 2009 16:26:08 +0000 (UTC) (envelope-from m.jakeman@lancaster.ac.uk) Received: from ignavia.lancs.ac.uk (ignavia.lancs.ac.uk [148.88.25.16]) by mx1.freebsd.org (Postfix) with ESMTP id E207E8FC1C for ; Fri, 24 Apr 2009 16:26:07 +0000 (UTC) (envelope-from m.jakeman@lancaster.ac.uk) Received: from mail02.lancs.ac.uk ([148.88.1.54]) by ignavia.lancs.ac.uk with esmtp (Exim 4.69) (envelope-from ) id 1LxNsT-0000Ge-2C; Fri, 24 Apr 2009 17:03:49 +0100 Received: from ind029000021.lancs.ac.uk ([148.88.226.184]) by mail02.lancs.ac.uk with esmtp (Exim 4.69) (envelope-from ) id 1LxNsT-0008Li-5S; Fri, 24 Apr 2009 17:03:49 +0100 Message-ID: <49F1E2E7.5010703@lancaster.ac.uk> Date: Fri, 24 Apr 2009 17:03:51 +0100 From: Matthew Jakeman User-Agent: Thunderbird 2.0.0.21 (X11/20090409) MIME-Version: 1.0 To: Nathan Lay References: <49F1128A.3080501@comcast.net> In-Reply-To: <49F1128A.3080501@comcast.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: IPv6 Ideas X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Apr 2009 16:26:08 -0000 Nathan Lay wrote: > I started playing with IPv6 on my home network with the intent to > transition over. While many things work quite well, IPv6 technology > in general still seems to have some rough edges. > > In terms of FreeBSD support, rtadvd and rtsol do not yet support > (easily? -O option in rtadvd/rtsold) RFC5006 (Router Advertisements > Option for DNS Configuration) which make it inconvenient to use mobile > devices (like laptops) on an IPv6 network. I haven't had much luck > with net/radvd. What are your problems with using radvd? I have used it quite a bit on FreeBSD (6.1) without any hassle. It's even written quite nicely in my experience so working on patches for it should be quite do-able if there are features missing. > Is this something that could be improved? I'd be willing to implement > this support, but I have very little time to spare (writing thesis). > > To be backward compatible with IPv4, I had a look at faith and faithd > and while these tools are ingenius, I don't think they are good enough > for transitioning to IPv6. I imagine it is possible to write an > IPv6->IPv4 NAT daemon that uses faith to capture and restructure > IPv6/IPv4 packets. Though, it really seems like this is the > firewall's job > > A pf rule like: > > nat on $inet4_if inet to any from $lan_if:network6 -> ($inet4_if) > > would be extremely convenient. I'm aware pf doesn't support the token > :network6 ... its just a wishful example. The IPv6 mapped IPv4 > addresses would be the standard ::ffff:0:0/96 prefix. I imagine that > this is very difficult to implement but I don't see why it wouldn't be > possible. If a firewall supported this kind of NAT, a home network > could easily deploy IPv6 and be backward compatible. Well, not quite, > I guess BIND would have to serve IPv6 mapped IPv4 addresses to IPv6 > queries. > > Oh yeah, one annoyance on 7-STABLE, it seems like pf is started before > IPv6 rc.conf options are processed (including IPv6 address assignment) > breaking inet6 rules that involve $if:network. > > Comments? > > Other than that, this has been one hell of a fun experience. > > Best Regards, > Nathan Lay > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"