1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tomato Shibby IPv6 ping from router works, ping from LAN does not

Discussion in 'Tomato Firmware' started by Aldaris, Apr 3, 2016.

  1. Sean B.

    Sean B. Addicted to LI Member

    It doesn't use external addresses for everything, rather every host "can have" an external address. In order for routing to work, at all, there still has to be scopes for network topology.. and being on-link ( directly connected ) is a major one. those f** addresses are link-local and interfaces have them regardless of connectivity. It's a main part of a host being able to receive a router advertisement and self-configure an IP addresses via SLAAC without any user configuration or network specifics. Unlike IPv4 where a DHCP server has to be configured with addresses and is responsible for keeping track of the leases, when they expire, which are available etc etc, IPv6 had to figure a way around doing that. Can you imagine DHCP servers having to be configured with the shear number of available addresses IPv6 can provide? And then try to keep track of them.. among other issues. IPv6 just requires a linked router to be given a /64 or smaller prefix it's allowed to advertise.. and every set amount of time it sends out an advertisement on the all-link address ( important, as if the advertisement wasn't limited to only clients directly connected to the router they could find their way into other subnets/networks and cause havoc ) with the prefix and other info required so hosts can make their own addresses and handle conflict checks etc themselves. There's lots of good information online, as it seems you're interested in IPv6 I'd suggest reading up a bit.. there's a lot of impressive additions and perplexing pitfalls that come a long with it.
     
  2. Jacky444

    Jacky444 Addicted to LI Member

    Thanks again! I will check online for more yeah!
     
  3. tvlz

    tvlz LI Guru Member

    This is the FINAL Patch
    I think I got everything straightened out now, I spent some time looking at Static IPv6 examples from other router software to see how they do it.

    I think your ISP giving the info about the /126 is very misleading, :confused: that info was what was leading me down the wrong path

    If this doesn't work IDK what else I can try!
     

    Attached Files:

    Elfew likes this.
  4. Jacky444

    Jacky444 Addicted to LI Member

    @tvlz thank you, sincerely.

    I think you done more than enough, I never really expected from you to adapt GUI just for me and my needs. I know some people also reported these sort of troubles, but they can easily be solved via few commands in the SSH console. I will adapt this to AT asap.

    I'm also going soon going to release ARM7 based routers, thx to Netgear R8000 donation I'm receiving soon!
     
  5. Jacky444

    Jacky444 Addicted to LI Member

    Hey,

    Just tested code and got "The field "ipv6_prefix_len_wan" is invalid. Please report this problem." any idea why?
     
  6. tvlz

    tvlz LI Guru Member

    If you are using /126, change the IPv6 WAN Prefix Length to 64.

    I think I figured out what the /126 is for, the ISPs router WAN prefix, with a /64 for the ISPs router LAN side prefix.
    The ISPs /64 LAN side prefix is YOUR Routers WAN side prefix, that's why you got the "prefix with wrong length" error before.
     
  7. Jacky444

    Jacky444 Addicted to LI Member

    Strange, I just set to 64 and it seems to work fine!

    Great work :) thanks! I will implement this into RT-N/AC and ARM7 branches =)

    P.S.: I mean my ISP is strange, not the explanation! =)
     
  8. tvlz

    tvlz LI Guru Member

    Yeah, I don't think they should give you the info about the /126, it's misleading IMO
     
  9. Sean B.

    Sean B. Addicted to LI Member

    Agreed. As I've been saying, the /126 doesn't make sense for the context of its use.
     
  10. Elfew

    Elfew Network Guru Member

    Really great to see that you solved this weird issue, so one bug less in Tomato :) Good job!

    @tvlz - can you please send a PR to kille72's repo with your changes? Thank you!
     
  11. Jacky444

    Jacky444 Addicted to LI Member

    I have some weird issues wich only happen on computer (when using static IPv6 config). Renewing lease helps and problem is defo not with network (because router at same time of these tests pinged normal. but i get this after some time (few hours) of uptime:
    Code:
    Pinging defikon.com [2a01:4f8:191:4309::2] with 32 bytes of data:
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Request timed out.
    Request timed out.
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Request timed out.
    Request timed out.
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Reply from 2a01:4f8:191:4309::2: time=16ms
    Request timed out.
    Request timed out.
    Any idea? I wouldn't ask but I had this few days now and its really annoying
     
  12. Sean B.

    Sean B. Addicted to LI Member

    For the computers where you have put a static IPv6 IP into their network adapter properties, have you removed the dhcp-hosts lines for them out of the dnsmasq custom config box? If not, you should do so. On a fresh reboot of a client computer and fully functioning IPv6 connection, use PowerShell and save the output of "get-netroute" . Then, when the issue begins to happen, get the output of "get-netroute" again and compare to the first one.. see if any routes have changed or been removed.
     
  13. Jacky444

    Jacky444 Addicted to LI Member

    Thanks will try! :)
     
  14. Sean B.

    Sean B. Addicted to LI Member

    Any luck on figuring out this last issue?
     
  15. Jacky444

    Jacky444 Addicted to LI Member

    Not yet, routes seem fine after drop outs. Its strange. Its annoying tho!

    Seems like I run out of connection sockets or something like that, because lags start after I open another socket/port.
     
  16. Sean B.

    Sean B. Addicted to LI Member

    Odd. Do you have any client computers running IPv6 that are not configured with a static IP? If not, and if you can spare one, perhaps try running DHCPv6 received IP lease and see if it hits problems the same as your static ones.
     
  17. Jacky444

    Jacky444 Addicted to LI Member

    I do have that actually. The phones are all connected without static configurations (we have 3). So that could disturb something? But where? On computer or router?

    About last sentence I don't really understand what you mean, try running?
     
  18. Sean B.

    Sean B. Addicted to LI Member

    I was saying that if you didn't have any non-static clients, to try some and see if they have the same problem as your static ones. Do your phones ( the non-static IPv6 IP ones ) show the same issue with losing connectivity after awhile as your computers?
     
  19. Jacky444

    Jacky444 Addicted to LI Member

    Umm on mobiles no, they're not Windows ^^. Though, on other PC's I didn't encounter this problem no. So you are right, could be with static IPv6, but isn't usually that most reliable?
     
  20. Sean B.

    Sean B. Addicted to LI Member

    Not necessarily. For instance, with SLAAC there was a big problem that was run into when they realized that hosts can configure an IP for themselves from a router advertisement.. but without DHCP how do they get the DNS information? So they implemented "stateless" DHCPv6 which is DHCPv6 without assigning IP's.. so a host can still get other related information from a DHCP request. There's oddities like that with IPv6 that I don't fully recognize yet.. and something tells me there may be some random issue of configuration that we haven't addressed when it comes to static IPv6. I know you use your statics a lot, however, if at all possible it would be good to confirm the theory of static being an issue by using one of the Windows clients that currently *does* have problems and removing its static IP. Put it back to normal DHCP and let it run.. see if the issue happens with it again. If it doesn't then we can say static is where we need to be looking.
     
  21. Jacky444

    Jacky444 Addicted to LI Member

    Okay, will test this =) thanks! That makes sense yeah, I just thought it doesn't matter like Ipv4. I will try and let u know.

    =)
     
  22. Jacky444

    Jacky444 Addicted to LI Member

    Okay, still same issues. IPv6 times out on every 4th - 5th request. Pretty weird. DHCP enabled (now). Mobile works fine. Also couldn't notice issue on other pcs ( for now, but its possible its there, I don't use them enough ). Router works fine (tested ping). So its down to Windows. I will try tracking routes again.
     
  23. Jacky444

    Jacky444 Addicted to LI Member

    Okay, working route:
    Code:
    PS C:\Users\Prahec> get-netroute
    
    ifIndex DestinationPrefix                              NextHop                                  RouteMetric ifMetric PolicyStore
    ------- -----------------                              -------                                  ----------- -------- -----------
    4       255.255.255.255/32                             0.0.0.0                                          256 25       ActiveStore
    1       255.255.255.255/32                             0.0.0.0                                          256 75       ActiveStore
    4       224.0.0.0/4                                    0.0.0.0                                          256 25       ActiveStore
    1       224.0.0.0/4                                    0.0.0.0                                          256 75       ActiveStore
    4       192.168.1.255/32                               0.0.0.0                                          256 25       ActiveStore
    4       192.168.1.2/32                                 0.0.0.0                                          256 25       ActiveStore
    4       192.168.1.0/24                                 0.0.0.0                                          256 25       ActiveStore
    1       127.255.255.255/32                             0.0.0.0                                          256 75       ActiveStore
    1       127.0.0.1/32                                   0.0.0.0                                          256 75       ActiveStore
    1       127.0.0.0/8                                    0.0.0.0                                          256 75       ActiveStore
    4       0.0.0.0/0                                      192.168.1.1                                      256 25       ActiveStore
    4       ff00::/8                                       ::                                               256 25       ActiveStore
    1       ff00::/8                                       ::                                               256 75       ActiveStore
    4       fe80::e1d5:cd06:341b:e8ad/128                  ::                                               256 25       ActiveStore
    4       fe80::/64                                      ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::12b/128                       ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::5/128                         ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::/64                           ::                                               256 25       ActiveStore
    1       ::1/128                                        ::                                               256 75       ActiveStore
    4       ::/0                                           fe80::c604:15ff:fe3b:b1ec                        256 25       ActiveStore
    4       ::/0                                           2a01:260:8004:1::1                               256 25       ActiveStore
    Not working routes:
    Code:
    PS C:\Users\Prahec> get-netroute
    
    ifIndex DestinationPrefix                              NextHop                                  RouteMetric ifMetric PolicyStore
    ------- -----------------                              -------                                  ----------- -------- -----------
    4       255.255.255.255/32                             0.0.0.0                                          256 25       ActiveStore
    1       255.255.255.255/32                             0.0.0.0                                          256 75       ActiveStore
    4       224.0.0.0/4                                    0.0.0.0                                          256 25       ActiveStore
    1       224.0.0.0/4                                    0.0.0.0                                          256 75       ActiveStore
    4       192.168.1.255/32                               0.0.0.0                                          256 25       ActiveStore
    4       192.168.1.2/32                                 0.0.0.0                                          256 25       ActiveStore
    4       192.168.1.0/24                                 0.0.0.0                                          256 25       ActiveStore
    1       127.255.255.255/32                             0.0.0.0                                          256 75       ActiveStore
    1       127.0.0.1/32                                   0.0.0.0                                          256 75       ActiveStore
    1       127.0.0.0/8                                    0.0.0.0                                          256 75       ActiveStore
    4       0.0.0.0/0                                      192.168.1.1                                      256 25       ActiveStore
    4       ff00::/8                                       ::                                               256 25       ActiveStore
    1       ff00::/8                                       ::                                               256 75       ActiveStore
    4       fe80::e1d5:cd06:341b:e8ad/128                  ::                                               256 25       ActiveStore
    4       fe80::/64                                      ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::12b/128                       ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::5/128                         ::                                               256 25       ActiveStore
    4       2a01:260:8004:1::/64                           ::                                               256 25       ActiveStore
    1       ::1/128                                        ::                                               256 75       ActiveStore
    4       ::/0                                           2a01:260:8004:1::1                               256 25       ActiveStore
    
    P.S.: So it seems that there is missing forwarding link, why does it go away after some time? and why does it stop internet from working all together?

    P.P.S.: Sorry for so many messages! =/
     
  24. Sean B.

    Sean B. Addicted to LI Member

    Ah ha! I believe I see what's goin on. On your static clients in their network adapter - ipv6 properties change the default gateway from
    2a01:260:8004:1::1 to fe80::c604:15ff:fe3b:b1ec , and double check that fe80 address is in fact the link local IP of your br0 interface.
     
  25. Jacky444

    Jacky444 Addicted to LI Member

    I can try, but this is happening all the time. Can I set this in DHCP too? (its happening same using static or dynamic IP really. It keeps changing / auto removing that link local address).

    I verified, address is link only yes.
     
  26. Sean B.

    Sean B. Addicted to LI Member

    Are the clients that are using DHCPv6 and experiencing the issue receiving the routers global IP as the default gateway? If so, that's odd. We can change it manually in the custom config section, but try the static clients first and see if it fixes the issue. If so, then we'll change dhcp.
     
    Last edited: Aug 4, 2017
  27. Jacky444

    Jacky444 Addicted to LI Member

    Yeah they're. But they're getting both. So 2 gateways. Weird is that the link one (that should be used - fe80::c604:15ff:fe3b:b1ec) some times disappears on windows. And I think that's the problem. Windows also has a lot of problems when adding IPv6, like when I click save sometimes it just doens't save or dynamic/static ip change doesn't apply. Its really annoying. I can understand its DHCP but they should make it that when I click save it 100% overrides any thing else. Instead when I click save, IPv6 address is next time empty or prefix or gateway. Strange. I finally got it to work by removing whole adapter and adding stuff manually again.

    I let you know soon (under this message) if this works :)! Thanks again!
     
  28. Sean B.

    Sean B. Addicted to LI Member

    What did you end up with for a setup in Advanced->DHCP/dns? As in: For "Advertise IPv6 on LAN" are SLAAC and DHCPv6 enabled or disabled? And what's in the custom config box?

    Either way, put this in the custom config for now and then reboot a client computer that is on DHCP, see if it still gets the global IP route or just the link local:

    Code:
    dhcp-option=tag:br0,option6:router,[fe80::]
     
  29. Elfew

    Elfew Network Guru Member

  30. Jacky444

    Jacky444 Addicted to LI Member

    Sorry I didn't update. Since I started using static IPv6 and staticly enter gateways, it seems to work fine (i added both, router IP and link address).

    This is my config now:
    Code:
    
    port=0
    local-ttl=3600
    addn-hosts=/opt/etc/hosts
    dhcp-option=tag:br0,6,8.8.8.8,8.8.4.4
    
    enable-ra
    dhcp-range=tag:br0,::100,::150,constructor:br0,64,1440m
    dhcp-option=tag:br0,option6:router,[fe80::]
    dhcp-option=tag:br0,option6:dns-server,[2a01:260:1:2::3],[2a01:260:1:3::3]
    dhcp-host=1C:B7:2C:EF:E3:9B,[2a01:260:8004:1::5]
    P.S.: I only enabled DHCP6. No Slaac =)
     
  31. Sean B.

    Sean B. Addicted to LI Member

    So we got it? It's working without issue?!?! *pops the champagne* PaRttyy! :D
     
  32. Jacky444

    Jacky444 Addicted to LI Member

    Yeah that works! But possibly ruined DHCP server, not sure, on my phone it wont obtain IP. I'll fix that :D
    But the gateway is great now. thx for all the help! I would never done it without you or TVLZ!

    P.S.: Yeah the DHCP option6 for router doesn't work. says its error. Tried changing IP and still. Think its not supported =(.

    Thank you!:oops:
     
    Last edited: Aug 5, 2017
  33. Jacky444

    Jacky444 Addicted to LI Member

    I have problems again. Same as before. Even after setting stuff static, the windows changes prefix on its own. I don't really get it. I don't use DHCP, yet its still using it some how. Before the issue was routes went missing after some time, now the prefix changes to 128 from time to time (couldn't detect exact time). But statically set routes work fine now. Almost fixed, last problem :(

    Any ideas?
     
  34. Sean B.

    Sean B. Addicted to LI Member

    Exactly where are you seeing the prefix change?
     
  35. Jacky444

    Jacky444 Addicted to LI Member

    In the configuration ( Windows IPv6 window )
     
  36. Sean B.

    Sean B. Addicted to LI Member

    Ok let's clarify here. We're talking about a client computer that has a static IP configured and not using DHCPv6 correct? And you're saying the routes are not changing now after using the fe80 address for the gateway correct? But you're still loosing IPv6 connectivity after some time? By IPv6 window are you talking about the static config window or ipconfig?
     
  37. Jacky444

    Jacky444 Addicted to LI Member

    You assume every thing correctly! I'm talking about the configuration window where you go "as normal person" to configure IPv6. So GUI thingie. I couldn't detect any other changes at the drop outs. Could also be my ISP!
     
  38. Sean B.

    Sean B. Addicted to LI Member

    Don't really understand what window you're talking about. But either way, from a PowerShell prompt on one of the affected clients type:

    Code:
    Get-NetIPv6Protocol | Format-List –Property *
    also

    Code:
    ipconfig /all
    And post the output please. Must be something with windows and static IPv6, just not sure what.
     
  39. Sean B.

    Sean B. Addicted to LI Member

    Is Windows firewall turned on? If so, turn it off for now and make sure it's not causing an issue. IPv6 needs ICMPv6 etc to be allowed through.
     
  40. Jacky444

    Jacky444 Addicted to LI Member

    Well normal people that have no knowledge of CMD in Windows simply use Network Interfaces -> Interface -> IPv6 config GUI if that makes more sense. The Window I pasted above with interface config is part of that "menu".

    First command:
    Code:
    PS C:\Users\Prahec> Get-NetIPv6Protocol | Format-List –Property *
    
    
    IcmpRedirects            : Enabled
    SourceRoutingBehavior    : DontForward
    DhcpMediaSense           : Enabled
    MediaSenseEventLog       : Disabled
    MldLevel                 : All
    MldVersion               : Version2
    MulticastForwarding      : Disabled
    GroupForwardedFragments  : Disabled
    RandomizeIdentifiers     : Enabled
    AddressMaskReply         : Disabled
    UseTemporaryAddresses    : Enabled
    DeadGatewayDetection     : Enabled
    Caption                  :
    Description              :
    ElementName              :
    InstanceID               :
    CommunicationStatus      :
    DetailedStatus           :
    HealthState              :
    InstallDate              :
    Name                     : IPv6Protocol
    OperatingStatus          :
    OperationalStatus        :
    PrimaryStatus            :
    Status                   :
    StatusDescriptions       :
    AvailableRequestedStates :
    EnabledDefault           : 2
    EnabledState             :
    OtherEnabledState        :
    RequestedState           : 12
    TimeOfLastStateChange    :
    TransitioningToState     : 12
    CreationClassName        :
    SystemCreationClassName  :
    SystemName               :
    NameFormat               :
    OtherTypeDescription     :
    ProtocolIFType           :
    ProtocolType             :
    DefaultHopLimit          : 128
    NeighborCacheLimit       : 256
    ReassemblyLimit          : 133484160
    RouteCacheLimit          : 4096
    MaxDadAttempts           : 3
    MaxPreferredLifetime     : 1.00:00:00
    MaxRandomTime            : 00:10:00
    MaxValidLifetime         : 7.00:00:00
    RegenerateTime           : 00:00:05
    PSComputerName           :
    CimClass                 : ROOT/StandardCimv2:MSFT_NetIPv6Protocol
    CimInstanceProperties    : {Caption, Description, ElementName, InstanceID...}
    CimSystemProperties      : Microsoft.Management.Infrastructure.CimSystemProperties
    
    
    and the second

    Code:
    PS C:\Users\Prahec> ipconfig /all
    
    Windows IP Configuration
    
       Host Name . . . . . . . . . . . . : PC-X1
       Primary Dns Suffix  . . . . . . . :
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : defikon.com
    
    Ethernet adapter Defikon:
    
       Connection-specific DNS Suffix  . : defikon.com
       Description . . . . . . . . . . . : Intel(R) Ethernet Connection (2) I218-V
       Physical Address. . . . . . . . . : 1C-B7-2C-EF-E3-9B
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv6 Address. . . . . . . . . . . : 2a01:260:8004:1::5(Preferred)
       Link-local IPv6 Address . . . . . : fe80::e1d5:cd06:341b:e8ad%4(Preferred)
       IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 2a01:260:8004:1::1
                                           fe80::c604:15ff:fe3b:b1ec%4
                                           fe80::2e4d:54ff:feb0:36c0%4
                                           192.168.1.1
       DHCPv6 IAID . . . . . . . . . . . : 85767980
       DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1F-4B-66-A8-1C-B7-2C-EF-E3-9B
       DNS Servers . . . . . . . . . . . : 2a01:260:1:2::3
                                           2a01:260:1:3::3
                                           84.255.210.79
                                           84.255.209.79
       NetBIOS over Tcpip. . . . . . . . : Enabled
    
    About the firewall, I have some stuff on my PC that shouldn't be online publicly, so would be very useful to have a port of ICMP? :=)
     
  41. Sean B.

    Sean B. Addicted to LI Member

    There are two different fe80: addresses listed under default gateway. One should be the link local address of your routers br0 interface. Any idea where the other one is coming from?
     
  42. Jacky444

    Jacky444 Addicted to LI Member

    I'm stupid, sorry I didn't notice this before you actually pointed it out! I had some really horrible day yesterday (my RAID array crashed and I lost like 20% of 4TB data). Umm not sure, it could've changed now when I changed from R7000 to AC3200 and I should change statically set one too. I will remove the address and let u know if anything changes :).
     
  43. Sean B.

    Sean B. Addicted to LI Member

    Also, where is the global address for the gateway coming from? Only one that should be showing up is the one fe80 for your br0 interface of the router. Did that appear on its own?
     
  44. Jacky444

    Jacky444 Addicted to LI Member

    Both appear on its own, router's ip and the link one fe80. Is that wrong?
     
  45. Sean B.

    Sean B. Addicted to LI Member

    While I can't say for sure if it's causing a problem, the fact it's there at all raises concern. Dnsmasq on your router sends out the link-local IP of the network interface in the router advertisements.. and you set the same link-local IP in your static configurations. So something is either sending out rogue information, or for some reason clients are sniffing out an address that they shouldn't. Either case carries risk of routing issues.
     
  46. Jacky444

    Jacky444 Addicted to LI Member

    What annoys me most is that I can't "stop" this from happening. Even if I set data manually on Windows it keeps changing. I never seen that on DHCP for ipv4. How is that even possible?
     
  47. Sean B.

    Sean B. Addicted to LI Member

    Is the global address in the gateway list immediately following a reboot of the windows machine? Or does it show up after some time of being on the network? And are you certain the global address hasn't been entered as the gateway by mistake on any of the static machines? If one has, it can share that information to others that are configured properly. I have a feeling though that, while it shouldn't be happening, it's not the cause of the current issue. If you haven't done so, verify all the Windows machines firewalls are properly configured to accept all inbound ICMP and UDP on IPv6. These need to be accepted or the router advertisements won't be heard by the clients and cause the default gateway to expire even if it was manually configured to begin with.
     
  48. Jacky444

    Jacky444 Addicted to LI Member

    Thanks, I will check that. Didn't know that actually runs on a port.

    No at the moment I didn't configure static IPv6 on any device but my personal PC. This may take some time because I'm super busy this week/weekend. Got some shit at work and at personal projects =(. Stuff stacked up. I will let you know next week and will do some proper extensive tests.
    Thanks for all your time!
     
    Sean B. likes this.
  49. daobiwrt

    daobiwrt New Member Member

    Last edited: Aug 12, 2017
  50. Sean B.

    Sean B. Addicted to LI Member

    Just to be clear.. you're not look
    No, it's not valid for option6.. if you read the following post from @Jacky444 he noted dnsmasq errored out with that config line. I was shooting from the hip on tracking down where the global IP route was coming from. Dnsmasq sends the link-local by default, but was attempting to set it manually just in case.
     
  51. Jacky444

    Jacky444 Addicted to LI Member

    Okay, I just disabled firewall and set my Windows config to DHCP (so less fuss since DHCP takes care of every thing) but I noticed my Windows doesn't get valid IPv6 gateway, at all. Like right now it shows Link Local Ipv6 and Gateway empty. But IPv6 doesn't work at all this way.
    Code:
    Description: Intel(R) Ethernet Connection (2) I218-V
    Physical Address: ‎1C-B7-2C-EF-E3-9B
    DHCP Enabled: Yes
    IPv4 Address: 192.168.1.2
    IPv4 Subnet Mask: 255.255.255.0
    Lease Obtained: četrtek, 17. avgust 2017 15:45:34
    Lease Expires: petek, 18. avgust 2017 15:45:34
    IPv4 Default Gateway: 192.168.1.1
    IPv4 DHCP Server: 192.168.1.1
    IPv4 DNS Servers: 84.255.210.79, 84.255.210.79
    IPv4 WINS Server: 192.168.1.1
    IPv6 Address: 2a01:260:8004:1::5
    Lease Obtained: četrtek, 17. avgust 2017 15:45:35
    Lease Expires: petek, 18. avgust 2017 03:32:21
    Link-local IPv6 Address: fe80::e1d5:cd06:341b:e8ad%4
    IPv6 Default Gateway: 
    IPv6 DNS Servers: 2a01:260:1:2::3, 2a01:260:1:3::3
    Now if I set manually gateway, IPv6 and DNS it works. But only for a while. Something is wrong some where and I can't really figure out what. I disabled DNSMASQ on "secondary" router and primary is configured as we discussed before. Any ideas why gateway isn't obtained?

    Did I do something wrong here? I mean maybe I'm not getting it?
     
  52. Sean B.

    Sean B. Addicted to LI Member

    You had a second router running dnsmasq at the same time?! You're killin me Jacky!! :p .. any chance that phantom fe80: gateway address was the link local of your second router? Running multiple routers is need to know information! I'll take a look after work today.
     
  53. Jacky444

    Jacky444 Addicted to LI Member

    Oh :D I know sorry :D. No the fe80: is defo main router. It had DNS MASQ disabled I think, even if not its still not doing any thing with IPv6 I think.. It certainty have IPv6 disabled that's for sure.

    I use secondary router to expand network to other side of house where I run "dedicated" server which is NAS at the same time. It also connects to 2 other computers there. But it only works as gateway not as router (disabled DNS Masq and every thing).

    I get 19/20 score on IPV6-test.com. I got ICMP working. But gateway is still not working on its own, I have to set it manually. I'll let you know if it works better now with ICMP on and every thing else disabled properly configured.

    P.S.: I know this may sound stupid, but can I some how set PTR record for my IP addresses on my own or does it have to be my ISP? I really like to have reverse DNS records for IPv6 as well.
     
  54. Sean B.

    Sean B. Addicted to LI Member

    Locally yes..

    Code:
    PS C:\windows\system32> nslookup desktop
    Server:  Storage
    Address:  2601:1c0:ca00:xxxx::x
    
    Name:    desktop
    Addresses:  2601:1c0:ca00:xxxx::xx
              192.168.1.47
    
    PS C:\windows\system32>
    Globally ( from the internet ) would require your ISP support reverse DNS for IPv6, but not many do yet. Although, sense your ISP does offer static IPv6 they may also offer reverse DNS for static subscribers.
     
  55. Sean B.

    Sean B. Addicted to LI Member

    So this secondary router is not configured to hand out IPs as a DHCP server? Describe the network topology .. is the secondary router connected to the main router via cable? If so.. did you use the secondary routers WAN port or a LAN port? If secondary router is connected to main router via wireless, what mode are you using? Wireless client.. Wireless Ethernet Bridge.. etc. Computers that are connected to the secondary router will not receive an IPv6 gateway if the secondary router is connected to the primary router via it's WAN port or Wireless client mode.. either of these ways would require the secondary router to be IPv6/DHCP enabled.. and you can't do that with only a /64.. you'd need at least a /56 in order to subnet. Connecting the secondary router via one of its LAN ports ( and the WAN disabled ) to a LAN port on the primary router, or using Wireless Ethernet Bridge should allow the primary routers RA's to pass through to the clients behind the secondary router.

    Better yet, don't use a secondary router. Just use a switch, and configuration won't be a problem.
     
    Last edited: Aug 18, 2017 at 4:02 AM
  56. Jacky444

    Jacky444 Addicted to LI Member

    I will ask them some time soon =)

    The secondary router is connected over WAN (Bridge WAN to LAN configuration is enabled). Secondary router uses ip 192.168.1.10 and is not connected to main via IPv6. It has disabled every thing (no DHCP or any other services). It really works just like a switch and WiFi extender.

    The only problem with IPv6 I seem to have is the gateway. I went through every thing we talked above and configured stuff exactly the same. Using DHCP6 and ICMP every thing works fine but the gateway. Setting gateway manually to: fe80::2e4d:54ff:feb0:36c0 (and not 2a01:260:8004:1::1) seems to work. I only entered gateway nothing else. DNS/IP is obtained from router. Connection has been stable for about 24 hours so I think this is it.

    Any idea how to fix this last problem? Can I some how force Gateway to DNSMASQ? I checked the documentation but I can't make any sense of it lol. Should I download dnsmasq full on ENTWARE?
     
  57. Sean B.

    Sean B. Addicted to LI Member

    DNS and IP are coming from DHCPv6.. the default gateway comes from the RA ( router advertisement ) .. which is apparently not making it through your secondary router. I would suggest, at least for a quick test, to connect the main router into a LAN port on the secondary router rather than the Bridged-to-LAN WAN port. The WAN port is naturally segmented on a different path than the switch ( LAN ) and is patched over to the LAN with the GUI "Bridge WAN to LAN" option via software. Router advertisements cannot have their hop counter decremented. Remember how I explained the link-local address... and how link is important? The RA's are only valid/accepted by clients directly connected to that router.. the packet starts out with a hop limit of 255 ( maximum ) .. and if it arrives at a client with any lower number, indicating it has been routed, the RA is now invalid. The WAN port may be being considered a hop regardless of the bridge to LAN. It would be wise to confirm that this isn't the source of the problem before chasing our tail.

    And I'm assuming doing a manual "ipconfig /release6" - "ipconfig /renew6" doesn't change the gateway status compared to what a client gets during boot?
     
    Last edited: Aug 18, 2017 at 11:57 AM
  58. Jacky444

    Jacky444 Addicted to LI Member

    Oh I think we miss understood each other a little. I don't connect to WAN via secondary router. My PC is connected to primary router. Secondary is only for NAS and my GF's PC. Both are not using IPv6 at the moment. The secondary is connected on LAN on primary router. But the cable on secondary is in the WAN port. I think this should not cause any issues.

    Manually running release/renew fixes gateway issue. Which is weird.

    I'm getting RA bit better, but can we control it? Like make it static? why would this config work some time and then not. Its weird. And I tested my NAS and it had issues like you explained above. But my PC acts little different
     
  59. Sean B.

    Sean B. Addicted to LI Member

    What is your current configuration for dnsmasq? IE: Under Advanced->DHCP/dns are SLAAC or DHCPv6 or both enabled via their checkboxes? And what config lines are in the custom box?
     
  60. Jacky444

    Jacky444 Addicted to LI Member

    Every thing is disabled but DHCP6.

    Custom config is as follows:
    Code:
    # Disable DNS Cache (DNSMASQ)
    port=0
    
    # Some extra configurations
    local-ttl=3600
    cache-size=2048
    log-async=5
    addn-hosts=/opt/etc/hosts
    dhcp-option=tag:br0,6,84.255.210.79,84.255.210.79
    
    # IPv6 configuration for DHCP range and DNS
    enable-ra
    ra-param=br0,0
    dhcp-range=tag:br0,::100,::150,constructor:br0,64,1440m
    dhcp-option=tag:br0,option6:dns-server,[2a01:260:1:2::3],[2a01:260:1:3::3]
    
    # Static DHCP configurations
    ## Won't list these since they're public as well ^^. But they're set using dhcp-host and their macs. 
    ## syslog doesn't report any issues with DNSMASQ
    
     
  61. Sean B.

    Sean B. Addicted to LI Member

    Remove these lines:

    local-ttl=3600
    ra-param=br0,0

    And make sure the check box in the GUI for DHCPv6 is NOT checked. DHCPv6 is being enabled by the custom config lines we've entered, if you check the box then there will be 2 configurations of DHCPv6 being enabled, as Tomato will put its own configuration line for it in dnsmasq.conf as well.
     
    Last edited: Aug 23, 2017 at 2:31 AM

Share This Page