IPv6 Setup...

Eric F Crist ecrist at secure-computing.net
Sat Jun 23 13:33:51 UTC 2007 

On Jun 22, 2007, at 9:23 PMJun 22, 2007, Eric F Crist wrote:

> Hello all,
>
> I've been toying with getting IPv6 installed and running for a  
> while, and I've got only one hurdle remaining.
>
> I have 5 servers on my quaint little network, and my primary  
> firewall is configured with an IPv6 address, we'll say  
> 1000:2000:1::6 and is connected to my ISP through a gif tunnel  
> (router doesn't support IPv6 yet, on my end) to 1000:2000:1::5.  I  
> can ping6 all day long across this tunnel, and I can even connect  
> through this firewall to other sites using the IPv6 addresses.
>
> I've been given 2001:4900:1:0111::/64 for my use.  I've configured / 
> etc/rc.conf on my first two machines with ipv6_enable="YES" and  
> given them 2001:4980:1:0111::1 and 2001:4980:1:0111::2.  Each  
> machine can ping6 itself, but they cannot ping6 eachother.  I know  
> the copper is good, and my ipv6 is running along side my ipv4  
> addresses and such.  In addition, there are no firewalls in between.
>
> Is there something I'm missing?
>
> Also, what the heck is rtadvd_enable="YES" actually doing for me?   
> I understand it's broadcasting some routing stuff so my other hosts  
> can auto-configure their IPv6 addresses, but anything else?
>
> Thanks a lot all!
> -----
> Eric F Crist
> Secure Computing Networks
>

Alright, sorry to reply to my own post, but the situation is a little  
different than I thought.  As it turns out, all of my systems can  
ping eachother, save my gateway/firewall machine.  This machine is  
configured with 2 NICs, with ethernet bridging.  My configuration is  
as follows:

INET -- ROUTER -- FBSD GATEWAY -- LAN

While the FBSD GATEWAY has an IP assigned to it's internal interface  
(available from both sides), and it's bridging IPv6 correctly, I'm  
thinking this may be my IPv6 problem.  The gateway has a gif tunnel  
to my ISP for IPv6 routing, as my cheap router doesn't support the  
new IP protocol.  The gateway can ping across the tunnel using IPv6  
perfectly fine.  It can also ping it's own IPv6 addresses, regardless  
of the interface.  What I CANNOT do, is ping to the IPv6 box from any  
machine on my LAN.  I can ping IPv4 just fine.

Please help!

Eric Crist


-----
Eric F Crist
Secure Computing Networks

More information about the freebsd-questions mailing list