[140529] in North American Network Operators' Group
Re: IPv6 foot-dragging
daemon@ATHENA.MIT.EDU (Jeroen van Aart)
Thu May 12 22:10:25 2011
Date: Thu, 12 May 2011 19:09:06 -0700
From: Jeroen van Aart <jeroen@mompl.net>
To: NANOG list <nanog@nanog.org>
In-Reply-To: <0B3B139B67263843A5D72FD2BF3EBA695AE678@OfficeExch2k7A.exchange.handynetworks.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Anthony Francis - Handy Networks LLC wrote:
> I can confirm full IPV6 connectivity from HE.
I'm using the HE tunnel also and it works fine.
But I have a bit of difficulty getting the right ip6tables (and the
single iptables) rules to work so that my one server that tunnels ipv6
can serve as a gateway server.
I used http://madduck.net/docs/ipv6/ as a guide.
Using tcpdump I can see a ping from a server behind the gateway going to
the gateway server and the gateway server sends it to the tunnel, but
nothing's coming back.
i.e.:
behind gateway:
# ping6 2620:0:2d0:200::10
PING 2620:0:2d0:200::10(2620:0:2d0:200::10) 56 data bytes
^C
--- 2620:0:2d0:200::10 ping statistics ---
392 packets transmitted, 0 received, 100% packet loss, time 391484ms
gateway:
# tcpdump -t -n -s 512 -vv ip6 or proto ipv6
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size
512 bytes
IP6 (hlim 64, next-header ICMPv6 (58) payload length: 64)
2001:470:85cd:0:20c:6eff:fed2:1947 > 2620:0:2d0:200::10: [icmp6 sum ok]
ICMP6, echo request, length 64, seq 317
IP6 (hlim 64, next-header ICMPv6 (58) payload length: 64)
2001:470:85cd:0:20c:6eff:fed2:1947 > 2620:0:2d0:200::10: [icmp6 sum ok]
ICMP6, echo request, length 64, seq 318
IP6 (hlim 64, next-header ICMPv6 (58) payload length: 64)
2001:470:85cd:0:20c:6eff:fed2:1947 > 2620:0:2d0:200::10: [icmp6 sum ok]
ICMP6, echo request, length 64, seq 319
Anything obvious I might have missed? Can post more specifics later if
needed.
Thanks,
Jeroen
--
http://goldmark.org/jeff/stupid-disclaimers/
http://linuxmafia.com/~rick/faq/plural-of-virus.html
