Ubuntu Networking :: Playing With IPv6 Should Be Able To Do So Using '6to4'?
May 7, 2011
Anyone who's interested in playing with IPv6 should be able to do so using '6to4' - even if you're behind a NAT device! The following steps works for me on Ubuntu 11.04 (taken[URL].. 1. Make sure the 'iproute' package is installed:
Quote:
$ sudo apt-get install iproute
2. Calculate your 6to4 address:
Quote:
$ ipv4="74.125.237.49"; printf "2002:%02x%02x:%02x%02x::1" `echo $ipv4 | tr "." " "`
2002:4a7d:ed31::1
(Replace 74.125.237.49 with the public IPv4 address assigned to you by your ISP)
The goal: ipv6 connectivity using 6to4 The problem: no connectivity on some internal hosts (mixed win & debian) and no ipv6-web access on any host. Let's start with my external box. It is headless debian lenny dhcp/local-dns & cache/firewall. It has the following interfaces after a reboot:
[Code]...
My understanding is that ipv6 will auto-configure itself and that the radvd file is all that is needed by the external host to give all the ipv6 enabled internal hosts ipv6 web access. My question: How is my external host misconfigured? Or are the problems specific to the internal hosts? I am assuming that I have issues on both the external and internal hosts since some of the internals have golobal ipv6 address and some don't. I do however wish to address the external host first.
I decided to try and get my network ready for IPv6. All of my hosts are set up to do stateful autoconfig, I have radvd installed and working, and I can ping6 ipv6.google.com from my Ubuntu server. However, when one of the clients on the inside tries to ping6, no packets return and I get this message in the router's syslog:
Code:
Feb 8 17:55:17 foo kernel: [ 1344.824474] Dead loop on virtual device tun6to4, fix it urgently!
I decided to enable dual stack on my home 11.3 machine and play with IPv6. I use ifup to assign static addresses to eth0. FYI here are some things I found:
1. YaST doesn't seem to support associating IPv6 addresses to interfaces, it complains that the address is invalid. However you can edit /etc/sysconfig/network/ifcfg-eth0 manually and specify it like this:
and when you restart the networking you will see an additional IPv6 address associated with eth0. Fortunately YaST doesn't mangle the entry when you look at it, but you can't edit it.
2. The SCOPE qualifier is documented in /etc/sysconfig/network/ifcfg.template, but seems to have no effect. Site local addresses in IPv6 are supposed to start with FE[CDEF] according to this:
The TCP/IP Guide - IPv6 Special Addresses: Reserved, Private (Link-Local / Site-Local), Unspecified and Loopback
Once bound, you can connect to services using the IPv6 address just like normal. You have to use ping6 instead of ping though.
I added an AAAA record to my nameserver and that seems to work. Whether the client software tries the IPv6 address varies. It depends on whether the software asks for the AAAA record and uses it. It seems my web browsers don't. I'm not surprised, since few people have IPv6 tails from their ISP. I'm going to look and see if there is some browser setting I have to adjust. I also have to figure out a way of making sure that only LAN destinations use IPv6.
I used to play with gw6c ( a client for tunnel broker ) It works well with fedora9 , fedora 10, but not with leonidas. my rpm is gw6c-6.0-0.4.beta4.fc9.i386.rpm ( a little old!) when I tried to install i have got this: libcrypto.so.7 est ncessaire pou w6c-6.0-0.4.beta4.fc9.i386 I try to make a soft link to libcrypto.so.0.9.8k, but nothing; The question :-Is there a solution for that pb - did you know a better client for non native ipv6 connectivity?
I have been struggling to get FC15 to act as an IPv6 router for a while now, am sure I am missing something trivial.. The idea is that I have a ppp / adsl connection (this works fine), use the wireless card on my pc with hostapd and dhcpd to provide connections to other pcs (works fine), and radvd to delegate ipv6 addresses.
The issue seem to be that as soon as I turn on ipv6 forwarding (net.ipv6.conf.all.forwarding =1), the ppp connection no longer gets an IPv6 address. This means the router cannot ping any ipv6 address outside my network.
If I disable ipv6 routing, my router gets an IPv6 address on its ppp connection, and can ping things such as ipv6.google.com just fine, however (of course) no packets are forwarded from my network and radvd complains that forwarding is disabled.
I've got problem with configuration of 6to4 tunnel. I do it like they do here using iproute2 HTML Code: [URL] And still I can't ping ipv6.google.com: I' ve got Destination unreachable: Address unreachable
I have Ubuntu 10.10 installed on my laptop. My ISP natively supports ipv6, but since last weekend, I do not get an ipv6 ip. When I use a live cd however, I do get an ipv6 ip. For as far as I can see, all settings (/etc/network/interface and the settings in network manager) are exactly the same.
Output of ifconfig:
Code: eth0 Link encap:Ethernet HWaddr XX:XX:XX:XX:XX:XX inet addr:XXX.XXX.XXX.XXX Bcast:XXX.XXX.XXX.XXX Mask:XXX.XXX.XXX.XXX inet6 addr: XXXX::XXXX:XXXX:XXXX:XXXX/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
[Code].....
EDIT: is there a way to let the netwerk be automatically configured as happens during installation? It would be nice to start with a clean and new set of network config files as there were just after I installed Ubuntu on my system, without a full reinstall of my system.
I have a networking problem with my computer. Under Windows, the computer can get both v4 and v6 address via DHCP. However, the same computer can only get v4 address under Ubuntu. Does anybody know how to solve this problem?
I have tried to disable the ipv6 support in ubuntu 9.04 32bit but the /etc/modprobe.d/aliases does not exist so I can't disable the suport as sugested for the previews versions. I need to disable it becouse it is pounding a total maihem in my vamware machines.
some of you might have experienced the network speed problem that occurs when ipv6 is enabled. So have I. I know about the common workaround of disabling ipv6, but recently I tested the new ubuntu live system, and the problem was gone with ipv6 being enabled.
Now my question is: Do you know what ubuntu is making different? I haven't found an explanation. Is there a better workaround than blacklisting ipv6?
I cannot connect to wirelessly when I have IPv6 enabled for the wireless network card. It works great on ethernet, but if I enable it for the wireless card then I cannot even get IPv4.
I'm trying to assign like 80 IPv6 addresses on eth0 for virtual webhosting, but after 55 addresses I get the following error:# ip addr add 2a01:9f8:a171:1651::4b:a8af dev eth0 RTNETLINK answers: File exists.What's the problem? I don't understand that error message at all. Is the number of IPv6 addresses per device somehow limited?Ubuntu 10.4.1 server, 64 bit.
I have a small wireless network running IPv6 connected though a 802.15.4 usb stick, and a network connection through eth1. I can access the nodes on the wireless network from my computer, but not from any other on the wired LAN. Also the nodes on the wireless cannot see even the address of eth1. I'm guessing i have to forward all packets from the wireless to eth1 in some way, but am unable to find an guides for this with IPv6.
I've just started using ufw with the frontend gufw. I've configured it like this:
Accept everything in and out as default Block incoming FTP connections from a certain IPv4 address (brute-force for days)
Today I noticed that IPv6 connections don't work anymore. The connection to two hosts (IPv6 only) times out. As soon as I disable ufw entirely, the connections work again. The host I want to connect to is:
2001:638:a00:f00b:200:1cff:fedb:d38f port 7337 2001:638:a00:f00b:a00:6ff:fe07:cda2 port 7337
These are small telnet servers that print out a number (temperature nearby) and close again. I'm logging those values in a database.
Is ufw not IPv6-capable and blocks things it's not supposed to?
Update: ufw seems complete garbage to me... You can't even configure it while it's disabled! How am I supposed to safely activate it when the first thing it does is blocking all communications? I can't even configure it to let me in before I configure it to keep me out... And then, even if I explicitly let it pass port 7337, it still blocks it through IPv6.
I've been using IPv6 on my local network and through a Hurricane Electric IPv6 tunnel. I've heard that one of the built in features of IPv6 is encryption, both scrambling the data and authenticating where the traffic came from. I've done some searching and heard of SWAN and Racoon, but some of the stuff I found is old and I would like to know what the easiest/best way to set up IPSEC for IPv6 is.
I have just installed dyndns in my local ubuntu server runing on apache...I dont have static Ip's so I have to use ipv6 ip's how can I configure dyndns to run with ipv6 ?
I have a problem with my ipv6 connection: although I can't get ipv6 address with DHCP, I can't use ipv6 network. I tried [URL], and the tortoise is static. I want to fix it out , so I use 'ifconfig' to see my network configuration:
Some people told me that the fisrt ipv6 address was wrong and unsuitable for ipv6 connecting. I tried /ect/init.d/networking restart but it didn't work. How can I use the second address as my ipv6 address and fix the problem out ? Now it seems there is not problem with the ip adress but the route. After watching some video, I suddenly could use ipv6. I did 'ifconfig' again and nothing was different. However, the result from the command 'ip -f inet6 route' changed: the last default route was gone and there was only one default route.
I have installed Bind 9.6.1 on my linux pc. I have to resolve domain name using IPv6 address. I have made following entry in the /etc/resolv.conf file code...
address of the machine on which Bind is running. The problem is that I am not able to ping open-ims.test domain name. If I use IPv4, everything works fine but how to ping domain using IPv6.
I have also made changes in dnszone file by replacing IPv4 address with IPv6 address and also changing A to AAAA.
have had a problem with my ubuntu system recently in that it will only let me connect to the Internet through Firefox if I switch network.dns.disableIPv6 on. How do I do the equivalent in Ubuntu to enable me to use Ephiphany etc which are not working anymore
The installation of Ubuntu 9.10 on my HP NC640 worked fine and the network adaptor was successfully recognised: I see the message 'Wired Network Connection 'Auto Eth0' active' and when I open Active Network Connections I see the IP addresses that have been assigned.
However, if I open Firefox, I cannot connect to the internet. I tried pinging some addresses (www.yahoo.com) and that seemed fine. I then tried to run a first system update and Ubuntu seemed to be able to retrieve some packages but not others.
I then tried opening 'Network Connections' and adjusted the MTU (to 1100) and changing the settings of IPv6 (various settings: eg. 'ignore') but none of that seemed to help. Here I wanted to switch off IPv6 but it looks like none of the settings did this. Is there maybe another place where I should be looking? Do I have to do this with the command line? (I hope not) Or can I switch off IPv6 in the system settings? And should MTU be automatic? Or should I set something there?
Is karmic is slower for you all: if you're running windows ping a server on windows/ubuntu and compare. 9.10 is consistently slower for me. I've seen enough "slow internet" posts to suspect that someone screwed up bad. Everyone says it's ipv6, but none of the fixes work for me. Pretty sure it's ipv6 (or at least a dns-related problem):
A command like (single quotes used in the command):
Code: ssh -L '[::1]:3128:127.0.0.1:3128' ...
is getting an error message like:
channel_setup_fwd_listener: getaddrinfo(::1): Address family for hostname not supported
This is supposed to be an IP address, not a hostname, for the localhost in IPv6. Anyone know what is wrong with this? Addresses like this work OK in rsync. I know I can use ip6-localhost as a hostname. But right now I'm testing actual IP addresses in IPv6 to see what programs can or cannot handle it.
I have installed Ubuntu 10.10 on my laptop, and the internet was very slow and kept dropping in and out for any web browsers and sometimes the Ubuntu software center. After searching the internet for a while I came across several article saying to disable ipv6, which I have done, but the issue persists
I'm trying to setup IPv6 in a PPTP client configuration on Maverick, but in network manager only IPv4 is available.
On LAN and WLAN IPv6 is working fine but I want to avoid when using a VPN all IPv6 connection are bypassing the VPN which compromises the VPN to a certain extent ..
I've already designated a machine to act as the router to the hurricane electric tunnel. I created a he-ipv6 device on it and can ping ipv6.google.com. No problem.
The problem happens when I want clients to use that router. That is, I can't ping ipv6.google.com from other machines on my LAN.
I setup /etc/radvd.conf, which seemed to successfully give out addresses to my clients:
I start the daemon and check that my clients have new ip6 addresses. So far so good. On my router, I do a sysctl -p and see that /proc/sys/net/ipv6/conf/all/forwarding = 1. I haven't touched ip6tables/iptables yet. Both are in a flushed state.
My ipv6 router is actually inside the LAN which gets internet from another machine which has let ipv6 packets through using protocol 41. I figure I don't have to worry about anything else because if my router can ping6 ipv6.google.com, the failure point would be there.
So my clients get ip6 addresses, but can't ping6 the router nor the ipv6.google.com. They do resolve ipv6.google.com however and I checked the traffic on the router over he-ipv6 from ifconfig and RX and TX bytes were changing during the ping.
My router has only one physical device for forwarding, eth0 and the tunnel device he-ipv6. Do I need to add some kind of ip6tables to see a simple ping from my clients?
I just purchased a router that supports IPv6 and configured my eth0 to use IPv6. I have tried automatic and automatic, address only with no results. My Windows 7 and OS X 10.6 boxes both work w/o issue of need to change settings. I have done a bit of Google searching, but not found much in the way of useful advice. Can someone point me to a good article or let me know that the product is broken at this point.
I have a 6to4 tunnel running on Ethernet (subnet 2002:ad4c:16cc:1) without problem. It runs radvd and announces a default route back to the Internet like this: "default via fe80::6a7f:74ff:fe0a:fbec dev br0"
On this same Ethernet I have a Linux plugbox (fe80::225:31ff:fe01:cc) which is a gateway to a network of IPv6 enabled sensors. I've assigned this second subnet 2002:ad4c:16cc:2. How do I get the plugbox to announce "2002:ad4c:16cc:2 via fe80::225:31ff:fe01:cc" so that the hosts on the Ethernet (2002:ad4c:16cc:1) will automatically pick up the route? The route works if I add it to the boxes manually. I've tried getting radvd on the plugbox to do this but I've had no success.
When I run OpenVPN server - tap0 adapter, it breakes Teredo(Miredo) IPv6 address down. I dont need IPv6 on OpenVPN, so is there any way to disable IPv6 on tap0 completely?
