1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help with debugging Native IPv6 setup with monkeybrains

Discussion in 'Tomato Firmware' started by yannkasus, Feb 8, 2014.

  1. yannkasus

    yannkasus Reformed Router Member

    Hi,

    My (awesome) ISP, monkeybrains has activated dual stack and I confirmed by plugging my Mac directing to WAN and was greated with a 10/10 on the ipv6 test.

    Now, I was originally using the shibby build 116 on my asus RT-AC66U, and couldn't figure how to make it work with it: I would get an ipv6 address but I can't route to ipv6.google.com (or others). I tried all the (old) tricks for native comcast (koitsu scripts to remove spurious routes etc...) And I tried RAF (The build I'm currently on), the native beta from ASUS, dd-wrt, and I always get the same problem (not routing).

    I'm fairly new to this so I must be missing something.

    My ISP said they do SLAAC for IP and dhcpv6 for DNS.

    How can I debug the setup and get more informations about what the hell is going on?
     
    Last edited: Feb 10, 2014
  2. yannkasus

    yannkasus Reformed Router Member

    I've tried a lot of different combinations. At the moment here is my config:

    * native ipv6
    * prefixlength 64
    * router address: 2607:f598:0:abcd::1
    * accept RA from: WAN

    ifconfig
    vlan2 Link encap:Ethernet HWaddr 74:D0:2B:3F:B8:E9
    inet6 addr: 2607:f598:0:abcd:76d0:2bff:fe3f:b8e9/64 Scope:Global
    inet6 addr: fe80::76d0:2bff:fe3f:b8e9/64 Scope:Link

    ip -6 route show

    2607:f598:0:abcd::/64 dev br0 proto kernel metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    2607:f598:0:abcd::/64 dev vlan2 proto kernel metric 256 expires 2591175sec mtu 1500 advmss 1440 metric 10 4294967295
    fe80::/64 dev eth2 proto kernel metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    fe80::/64 dev br0 proto kernel metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    fe80::/64 dev vlan2 proto kernel metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    default via fe80::523d:e5ff:fe32:82cc dev vlan2 proto kernel metric 1024 expires 1737sec mtu 1500 advmss 1440 metric 10 64
    default dev vlan2 metric 2048 mtu 1500 advmss 1440 metric 10 4294967295
    unreachable default dev lo proto kernel metric -1 error -128 metric 10 255
    ff00::/8 dev eth2 metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    ff00::/8 dev br0 metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    ff00::/8 dev vlan2 metric 256 mtu 1500 advmss 1440 metric 10 4294967295
    unreachable default dev lo proto kernel metric -1 error -128 metric 10 255

    I haven't touched the default fw rules

    My local network correctly get slaac: (but atm I just want the router to work, I'll worry about dnsmasq config later)

    Feb 8 03:13:59 unknown daemon.info dnsmasq-dhcp[613]: DHCPREPLY(br0) 2607:f598:0:abcd::882d:2e6a 00:01:00:01:1a:0b:23:02:84:38:35:5c:88:82
    Feb 8 03:13:59 unknown daemon.info dnsmasq-dhcp[613]: SLAAC-CONFIRM(br0) 2607:f598:0:abcd:8638:35ff:fe5c:8882 yann

    Thanks!
     
  3. yannkasus

    yannkasus Reformed Router Member

    some progress....

    I finally to to ping natively from the router, after much fiddling. I got to this state by bridging manually wan to my lan bridge, filtering !ipv6 proto.

    But I also had to drop an erroneous default route to vlan2, AND manually add my ipv6 address to br0 and declare the route to the link-local address of my ISP (I'm hoping these last two parts can be done automatically).

    In other word, a combination of all the tricks you can find out there in the forums... I'll dig more.
     
  4. yannkasus

    yannkasus Reformed Router Member

    So here my current setup that works across reboots:

    Basic > IPV6
    - Other configuration (no erroneous routes added by router/wan.c)
    - WAN iface: br0
    - Accept RA from WAN
    - everything else is left empty.

    In WANUP scripts:
    Code:
    # http://www.linksysinfo.org/index.php?threads/ipv6-native-on-toastman-tomatousb-latest.69237/
    ebtables -t broute -A BROUTING -i vlan2 -p ! ipv6 -j DROP
    brctl addif br0 vlan2
    
    Advanced > DHCP / DNS Server (LAN)
    - Announce IPv6 on LAN is UNCHECKED (Maybe it would work if dnsmasq were involved, but the ipv6 network seems to autoconfigure itself from the ISP router when bridged)

    For some reason I haven't figured out yet, I can't ping from the router to ipv6.google.com but I can from the rest of my LAN.

    I've tried long and hard (see tcpdump in gist below*) to make it work without bridging with the ipv6 address on the WAN interface instead of the bridge but I can't understand why it refuses to work. I feel a bit grossed out by the bridge, and would really like someone with more experience explaining if it's a proper config or not (But I feel really lonely on this thread).

    BSD systems seem to behave so much better by default, I'm considering another router.

    (*) a tcpdump of the ping when WAN iface has the ipv6 prefix (when it's NOT bridged):
    https://gist.github.com/yannk/0f7444098219545ac25f
     
  5. saivert

    saivert Reformed Router Member

    Did you specify a Assigned / Routed Prefix?
     
  6. yannkasus

    yannkasus Reformed Router Member

    I tried that at one point, but got it working without one. Are you asking because you think I should specify one?
     

Share This Page