From owner-freebsd-net@FreeBSD.ORG Thu Dec 18 23:39:45 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E9D2F1065675 for ; Thu, 18 Dec 2008 23:39:45 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: from ibctech.ca (v6.ibctech.ca [IPv6:2607:f118::b6]) by mx1.freebsd.org (Postfix) with SMTP id B0B4B8FC1B for ; Thu, 18 Dec 2008 23:39:45 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: (qmail 14459 invoked by uid 89); 18 Dec 2008 23:49:55 -0000 Received: from unknown (HELO ?IPv6:2607:f118::5?) (steve@ibctech.ca@2607:f118::5) by 2607:f118::b6 with ESMTPA; 18 Dec 2008 23:49:55 -0000 Message-ID: <494ADF40.3060903@ibctech.ca> Date: Thu, 18 Dec 2008 18:39:44 -0500 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Ivan Voras References: <494AC323.9070007@ibctech.ca> In-Reply-To: X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: IPv6 routing help? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Dec 2008 23:39:46 -0000 Ivan Voras wrote: > Steve Bertrand wrote: >> Ivan Voras wrote: >> >>> As far as I understand ipv6 (very little), this basically says the >>> router told the client it can't send packets to outside addresses with >>> source addresses that are link-local. Is this correct? >> I don't know much about 6to4. All of my IPv6 is native, but what you are >> saying appears correct. >> >> It is almost like a translation at the router should be happening, but >> it is not. > > Yes. > >>> However, adding an ipv6 address to the client, in this case >>> 2002:xxyy:xxyy::10/64 doesn't help and breaks even pinging the router's >>> external address. It looks to me like I'm missing something important in >>> the relation between the link-local and the global addresses, but what? >> In this case, you are implementing the same IP prefix on both sides of >> the router, which won't work. > > I don't follow you - is something significantly different than ipv4? Err, no. IPv4 and IPv6 are systematically the same. You stated in the original post that you have, on the router, as its 'outside' address: 2002:xxyy:xxyy::1 Then, in a subsequent post, you stated that you assigned: 2002:xxyy:xxyy::10 to the client, which I expect is attached to the *inside* interface on the router. Therefore, you would have 2002:xxyy:xxyy::/64 networks on BOTH the inside, and outside interfaces. I think what you need to do is configure a separate global /64 prefix on the INSIDE interface of your router (and the network clients), that is different from the /64 on the outside, as opposed to using link-local addressing. However, I have no idea if this needs to be globally routable or not. As I've said, I know pretty much nothing of 6to4. Some tunnel brokers can provide you with both a global unique address for the 'WAN' side of your router, and then route you a /48 that can be used inside of your network. Steve