From nobody Sat Jan  1 11:07:47 2022
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 32EA719220F7
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Sat,  1 Jan 2022 11:08:05 +0000 (UTC)
	(envelope-from pstreem@gmail.com)
Received: from mail-ua1-x92a.google.com (mail-ua1-x92a.google.com [IPv6:2607:f8b0:4864:20::92a])
	(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (2048 bits) client-digest SHA256)
	(Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4JQzkr3KS1z50kX
	for <freebsd-questions@freebsd.org>; Sat,  1 Jan 2022 11:08:04 +0000 (UTC)
	(envelope-from pstreem@gmail.com)
Received: by mail-ua1-x92a.google.com with SMTP id p37so50087684uae.8
        for <freebsd-questions@freebsd.org>; Sat, 01 Jan 2022 03:08:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=mime-version:from:date:message-id:subject:to;
        bh=PvcF/Uq9lEI4Xr2iYs4eSGQubJl1uFCvF6SPSyXRGnU=;
        b=JQS4jSNvEOGYR5+octEs1gA78YFIlL+kl8jPiZe5LNCgfiqW9kNbD5PrKYVsYD8z+v
         BHalLwoICspGcAO56OQlCu6lkFnP/XIPcnMdikGm7PBawj4Uo9+WvnBwF/8yRNNdD8MP
         BdaMmFn5lHlavHtcd7BolxL0uqvEDMYcYVjtvYxQ3xI3+O3aN/Y/JIZ6Sivb3aUeNQcC
         K4r2JI4GLmcf8hs90vESMFJ+jZbkyL7HmqsFSSQUCygh/1V673oqtvltaQFmxcgPCMGX
         O3jTEJ6HdLZCYh4xksmalg44jQHEbVy3tRx3aZvmcsCFuGBsk0+oi4MdOCtOb8r/ENqy
         it0g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
        bh=PvcF/Uq9lEI4Xr2iYs4eSGQubJl1uFCvF6SPSyXRGnU=;
        b=eKeMYDWXGK/E0FmoYhn3nJlnmf4oDET9SxE5ylZa9uxJI+NLnZF2wxEpGoeaRvIfaV
         oe8OVTEHaaI59895ais1gPKUfXOBSjVgSb9eEEtRW9oCHeTmQI27sZo26EKvNuUP1o1Y
         wxU/EWnFGrDiifPdbptivKhlMzo4Wu2WmWUg++obyw8Sm+GReaYcfeV37W4wKIPGACDP
         ENf8yJKkIJUKoSLwzZLKDbQ0s8poq7LICCy6oXsqpOmNtFE4GLAiG0vJtN+VOeisXLkQ
         Ucz8nTdNMGaWbukXeDZgnDG2efYubyuPqwD1jBe3deR3V4JsGw9JpjYHVEidHRyqlQ8Q
         I85Q==
X-Gm-Message-State: AOAM530GCKuZm9NbejXtfIX94WNiOH0Jj7JE3hc7z9+mDWjP2A8dpuQV
	5vRJqXu0n6aQVwARreLtqFq2d7w5mlo4PfiE+V7qtfk+gFxXIw==
X-Google-Smtp-Source: ABdhPJzSypLISSuNzVKBa9A9cF28qAJRH8c80IYLQb8Q8whB0czQDwPmMji6d8eXEHOKlS1ylqIdA+aqVJCyiivmSC4=
X-Received: by 2002:a05:6102:3a66:: with SMTP id bf6mr12304783vsb.43.1641035278176;
 Sat, 01 Jan 2022 03:07:58 -0800 (PST)
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
Sender: owner-freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
MIME-Version: 1.0
From: PstreeM China <pstreem@gmail.com>
Date: Sat, 1 Jan 2022 19:07:47 +0800
Message-ID: <CAPDFJPjyT1YYN=bU+P3Me0Q=EU_BzgdXLsxkx83ur+2upMPHzg@mail.gmail.com>
Subject: Configure FreeBSD as ipv6 router
To: freebsd-questions@freebsd.org
Content-Type: multipart/alternative; boundary="000000000000d1d4cf05d4834c73"
X-Rspamd-Queue-Id: 4JQzkr3KS1z50kX
X-Spamd-Bar: ---
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=gmail.com header.s=20210112 header.b=JQS4jSNv;
	dmarc=pass (policy=none) header.from=gmail.com;
	spf=pass (mx1.freebsd.org: domain of pstreem@gmail.com designates 2607:f8b0:4864:20::92a as permitted sender) smtp.mailfrom=pstreem@gmail.com
X-Spamd-Result: default: False [-3.18 / 15.00];
	 ARC_NA(0.00)[];
	 NEURAL_HAM_MEDIUM(-0.89)[-0.887];
	 R_DKIM_ALLOW(-0.20)[gmail.com:s=20210112];
	 FROM_HAS_DN(0.00)[];
	 FREEMAIL_FROM(0.00)[gmail.com];
	 TO_MATCH_ENVRCPT_ALL(0.00)[];
	 MIME_GOOD(-0.10)[multipart/alternative,text/plain];
	 PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org];
	 TO_DN_NONE(0.00)[];
	 RCPT_COUNT_ONE(0.00)[1];
	 NEURAL_HAM_LONG(-1.00)[-1.000];
	 MID_RHS_MATCH_FROMTLD(0.00)[];
	 R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36];
	 DKIM_TRACE(0.00)[gmail.com:+];
	 DMARC_POLICY_ALLOW(-0.50)[gmail.com,none];
	 RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::92a:from];
	 NEURAL_HAM_SHORT(-0.30)[-0.296];
	 FROM_EQ_ENVFROM(0.00)[];
	 MIME_TRACE(0.00)[0:+,1:+,2:~];
	 FREEMAIL_ENVFROM(0.00)[gmail.com];
	 ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US];
	 RCVD_COUNT_TWO(0.00)[2];
	 RCVD_TLS_ALL(0.00)[];
	 DWL_DNSWL_NONE(0.00)[gmail.com:dkim]
X-ThisMailContainsUnwantedMimeParts: N

--000000000000d1d4cf05d4834c73
Content-Type: text/plain; charset="UTF-8"

hello expert:

Very thanks and hope I can get your help.
I Use FreeBSD 13.0, and want to set it up as my home router.  ipv4 is all
well running. The problem is about the ipv6 part.

Now, I can get the ipv6 prefix from my isp, the external interface and
internal interface of the router can autoconf ipv6 address, the router can
access the ipv6 internet.
But the client behind the router(freebsd) can not assign an ipv6 address.
Here is my configuration, It's great if you can give your comments about my
configuration.  I hope it's enough. Thanks very much.
igb0 is the external interface
igb2 is the internal interface.

*---rc.conf---*
ipv6_gateway_enable="YES"
ipv6_activate_all_interfaces="NO"
ipv6_network_interfaces="igb0 igb2"
ipv6_cpe_wanif="igb0"
ifconfig_igb0_ipv6="inet6 accept_rtadv up"
ifconfig_igb2_ipv6="inet6 -accept_rtadv auto_linklocal up"
rtsold_enable="YES"
rtsold_flags="-aF"

rtadvd_enable="YES"              # Set to YES to enable an IPv6 router
rtadvd_interfaces="igb2"            # Interfaces rtadvd sends RA packets.

dhcp6c_enable="YES"
dhcp6c_interfaces="igb0"
*---dhcp6c.conf---*
interface igb0 {
       send ia-na 1;
       send ia-pd 1;
       send rapid-commit;
       #send domain-name-servers;
};
id-assoc na 1 {
};
id-assoc pd 1 {
prefix ::/64 1800;
        prefix-interface igb2 {
                sla-len 0;
                sla-id 0;
        };
};
*--rtadvd.conf---*
igb2:\
    :prefixlex#64:\
*--pf.conf--*
pass in inet6 all
pass out inet6 all
*---information ---*
*root@home:/etc # ifconfig igb0*
igb0: flags=8963<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=4a500b9<RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,NOMAP>
ether c4:83:4f:16:3b:94
inet 192.168.88.250 netmask 0xffffff00 broadcast 192.168.88.255
inet6 fe80::c683:4fff:fe16:3b94%igb0 prefixlen 64 scopeid 0x1
inet6 2408:xxxx:xxxx:1d23:c683:4fff:fe16:3b94 prefixlen 64 autoconf
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
*root@home:/etc # ifconfig igb2*
igb2: flags=8963<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=4a500b9<RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,NOMAP>
ether c4:83:4f:16:3b:96
inet 192.168.100.250 netmask 0xffffff00 broadcast 192.168.100.255
inet6 fe80::c683:4fff:fe16:3b96%igb2 prefixlen 64 scopeid 0x3
inet6 2408:xxxx:xxxx:1d21:c683:4fff:fe16:3b96 prefixlen 64
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>

BR//Pst M

--000000000000d1d4cf05d4834c73
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">hello expert:<div><br></div><div>Very thanks and hope I ca=
n get your help.</div><div>I Use FreeBSD 13.0, and want to set it up as my =
home router. =C2=A0ipv4 is all well running. The problem is about the ipv6 =
part.=C2=A0</div><div><br></div><div>Now, I can get the ipv6 prefix from my=
 isp, the external=C2=A0interface and internal interface of the router can =
autoconf ipv6 address, the router can access the ipv6 internet.</div><div>B=
ut the client behind the router(freebsd) can not assign an ipv6 address.=C2=
=A0</div><div>Here is my configuration, It&#39;s great if you can give your=
 comments about my configuration.=C2=A0 I hope it&#39;s enough. Thanks very=
 much.</div><div>igb0 is the external interface</div><div>igb2 is the inter=
nal interface.</div><div><br></div><div><b>---rc.conf---</b></div><div>ipv6=
_gateway_enable=3D&quot;YES&quot;<br></div><div>ipv6_activate_all_interface=
s=3D&quot;NO&quot;<br>ipv6_network_interfaces=3D&quot;igb0 igb2&quot;<br></=
div><div>ipv6_cpe_wanif=3D&quot;igb0&quot;<br>ifconfig_igb0_ipv6=3D&quot;in=
et6=C2=A0accept_rtadv up&quot;<br>ifconfig_igb2_ipv6=3D&quot;inet6 -accept_=
rtadv auto_linklocal up&quot;<br>rtsold_enable=3D&quot;YES&quot;<br>rtsold_=
flags=3D&quot;-aF&quot;<br><br></div><div>rtadvd_enable=3D&quot;YES&quot; =
=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0# Set to YES to enable an I=
Pv6 router<br>rtadvd_interfaces=3D&quot;igb2&quot; =C2=A0 =C2=A0 =C2=A0 =C2=
=A0 =C2=A0 =C2=A0# Interfaces rtadvd sends RA packets.<br><br>dhcp6c_enable=
=3D&quot;YES&quot;<br>dhcp6c_interfaces=3D&quot;igb0&quot;<br></div><div><b=
>---dhcp6c.conf---</b></div><div>interface igb0 {<br>=C2=A0 =C2=A0 =C2=A0 =
=C2=A0send ia-na 1;<br>=C2=A0 =C2=A0 =C2=A0 =C2=A0send ia-pd 1;<br>=C2=A0 =
=C2=A0 =C2=A0 =C2=A0send rapid-commit;<br>=C2=A0 =C2=A0 =C2=A0 =C2=A0#send =
domain-name-servers;<br>};<br>id-assoc na 1 {<br>};<br>id-assoc pd 1 {<br>	=
prefix ::/64 1800;<br>=C2=A0 =C2=A0 =C2=A0 =C2=A0 prefix-interface igb2 {<b=
r>=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 sla-len 0;<br>=C2=
=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 sla-id 0;<br>=C2=A0 =
=C2=A0 =C2=A0 =C2=A0 };<br>};<br></div><div><b>--rtadvd.conf---</b></div><d=
iv>igb2:\<br>=C2=A0 =C2=A0 :prefixlex#64:\<br></div><div><b>--pf.conf--</b>=
</div><div>pass in inet6 all</div><div>pass out inet6 all</div><div><b>---i=
nformation ---</b></div><div><u>root@home:/etc # ifconfig igb0</u><br>igb0:=
 flags=3D8963&lt;UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST&gt; metric =
0 mtu 1500<br>	options=3D4a500b9&lt;RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MT=
U,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,NOMAP&gt;<br>	ether c4:8=
3:4f:16:3b:94<br>	inet 192.168.88.250 netmask 0xffffff00 broadcast 192.168.=
88.255<br>	inet6 fe80::c683:4fff:fe16:3b94%igb0 prefixlen 64 scopeid 0x1<br=
>	inet6 2408:xxxx:xxxx:1d23:c683:4fff:fe16:3b94 prefixlen 64 autoconf<br>	m=
edia: Ethernet autoselect (1000baseT &lt;full-duplex&gt;)<br>	status: activ=
e<br>	nd6 options=3D23&lt;PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL&gt;<br><u>=
root@home:/etc # ifconfig igb2</u><br>igb2: flags=3D8963&lt;UP,BROADCAST,RU=
NNING,PROMISC,SIMPLEX,MULTICAST&gt; metric 0 mtu 1500<br>	options=3D4a500b9=
&lt;RXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN=
_HWTSO,RXCSUM_IPV6,NOMAP&gt;<br>	ether c4:83:4f:16:3b:96<br>	inet 192.168.1=
00.250 netmask 0xffffff00 broadcast 192.168.100.255<br>	inet6 fe80::c683:4f=
ff:fe16:3b96%igb2 prefixlen 64 scopeid 0x3<br>	inet6 2408:xxxx:xxxx:1d21:c6=
83:4fff:fe16:3b96 prefixlen 64<br>	media: Ethernet autoselect (1000baseT &l=
t;full-duplex&gt;)<br>	status: active<br>	nd6 options=3D23&lt;PERFORMNUD,AC=
CEPT_RTADV,AUTO_LINKLOCAL&gt;<br></div><div><br></div><div>BR//Pst M</div><=
/div>

--000000000000d1d4cf05d4834c73--