From owner-freebsd-stable@FreeBSD.ORG Tue Nov 10 03:21:10 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6AC541065672 for ; Tue, 10 Nov 2009 03:21:10 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from mail2.fluidhosting.com (mx21.fluidhosting.com [204.14.89.4]) by mx1.freebsd.org (Postfix) with ESMTP id 14F028FC24 for ; Tue, 10 Nov 2009 03:21:09 +0000 (UTC) Received: (qmail 17709 invoked by uid 399); 10 Nov 2009 03:21:08 -0000 Received: from localhost (HELO foreign.dougb.net) (dougb@dougbarton.us@127.0.0.1) by localhost with ESMTPAM; 10 Nov 2009 03:21:08 -0000 X-Originating-IP: 127.0.0.1 X-Sender: dougb@dougbarton.us Message-ID: <4AF8DC23.3040007@FreeBSD.org> Date: Mon, 09 Nov 2009 19:21:07 -0800 From: Doug Barton Organization: http://SupersetSolutions.com/ User-Agent: Thunderbird 2.0.0.23 (X11/20090822) MIME-Version: 1.0 To: Rudy , freebsd-stable@freebsd.org References: <4AF8970F.60909@monkeybrains.net> <20091109224750.GB15054@kenyonralph.com> In-Reply-To: <20091109224750.GB15054@kenyonralph.com> X-Enigmail-Version: 0.96.0 OpenPGP: id=D5B2F0FB Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: Subject: Re: Tunnel IPv6 requests to my IPv4 servers? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Nov 2009 03:21:10 -0000 Kenyon Ralph wrote: > On 2009-11-09T14:26:23-0800, Rudy wrote: >> I got my first IPv6 from ARIN. I set up my router and am >> successfully advertising my IPv6 block. On my DNS server, I added >> an IPv6 IP, no problem (try pinging! ns1.monkeybrains.net). Now, >> I'd like to 'NAT' to some older boxes and not mess with actually >> putting IPv6 IPs on those boxes. Say I had a box with running IPv4 >> with: 69.147.83.40 >> How would I 'nat' or 'gif' or 'tunnel' from a NAT box without >> putting any IPv6 on 69.147.83.40? >> >> I want to have: >> 2607:f598:0:1::666 on my 'firewall' and have it tunnel to >> 69.147.83.40 or whatever.... >> I've read this: >> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.html >> But that seems more geared toward getting IPv6 on clients. > > Are you trying to give the older boxes IPv6 connectivity or IPv4 > connectivity to the Internet? > > If IPv6, why not just give the older boxes IPv6 addresses? Seems to me > it would be a lot easier than messing with tunneling. They don't even > need globally routeable IPv4 addresses. Set up rtadvd on your router, > allow them to use their automatic IPv6 addresses (or set the addresses > manually, doesn't matter), and that should be it. It shouldn't be that > hard, since ease of setup is one of the things IPv6 is designed for. On > FreeBSD, ipv6_enable="YES" is probably all you need to do. Without knowing what you're trying to accomplish I'd have to agree with Kenyon. One nice thing about IPv6 is that NAT is no longer needed, it would probably be better if you didn't try to subvert the protocol design. :) Doug -- Improve the effectiveness of your Internet presence with a domain name makeover! http://SupersetSolutions.com/