TMnet Streamyx/Unifi & IPv6

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Networks and Broadband

Bump Topic Add Reply RSS Feed

69 Pages « < 19 20 21 22 23 > » Bottom

Outline · [ Standard ] · Linear+

Unifi TMnet Streamyx/Unifi & IPv6, Now live!

views

asellus	Nov 12 2013, 10:41 AM Show posts by this member only \| IPv6 \| Post #401
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(maxiscool @ Nov 12 2013, 07:35 AM) @Sharingan I just discovered that I've being ping the wrong way all this while to ping ipv6, apparently when I tried "ping6 ipv6.google.com" the return is positive. You may want to try this.. @asellus, Am I doing it correctly? If yes, perhaps this will help others. 'ping6' is used in Linux only. In routerOS, as of 6.6, 'ping' is still used.
Card PM	Report Top Like Quote Reply

Sharingan	Nov 12 2013, 06:29 PM Show posts by this member only \| Post #402
New Member Junior Member 26 posts Joined: Apr 2005	@asellus I've done some checking and i found that all of my IPv6 traffic went Unreplied after Syn Sent. Mikrotik -> IPv6 -> Firewall -> Connection Tab I even try ping from inside Mikrotik Terminal and here's the results: CODE [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2001:e68:4410:64a7:: 104 64 2ms address unreachable sent=4 received=0 packet-loss=100% [admin@MikroTik] > ping 2001:200:dff:fff1:216:3eff:feb1:44d7 HOST SIZE TTL TIME STATUS 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout sent=2 received=0 packet-loss=100% [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout sent=4 received=0 packet-loss=100% [admin@MikroTik] > Here's the info on Firewall -> Connection CODE [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 tcp 2001:e68:4410:64a7:35c2:... 2404:6800:4001:c01::5f syn-sent 3 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent 4 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 5 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 6 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 icmpv6 2001:e68:4410:64a7:35c2:... 2404:6800:4001:803::1012 [admin@MikroTik] /ipv6 firewall connection> As of the moment, here's my firewall IPv6 current rules CODE /ipv6 firewall filter add action=accept chain=input comment="Router - Allow IPv6 ICMP" disabled=yes protocol=icmpv6 add action=accept chain=input comment="Router - Accept established connections" connection-state=established disabled=yes add action=accept chain=input comment="Router - Accept related connections" connection-state=related disabled=yes add action=drop chain=input comment="Router - Drop invalid connections" connection-state=invalid disabled=yes add action=accept chain=input comment="Router- UDP" disabled=yes protocol=udp add action=accept chain=input comment="Router - From our LAN" disabled=yes in-interface=ether1 add action=drop chain=input comment="Router - Drop other traffic" disabled=yes add action=drop chain=forward comment="LAN - Drop invalid Connections" connection-state=invalid disabled=yes add action=accept chain=forward comment="LAN - Accept UDP" disabled=no protocol=udp add action=accept chain=forward comment="LAN - Accept ICMPv6 " disabled=yes protocol=icmpv6 add action=accept chain=forward comment="LAN - Accept established Connections" connection-state=established disabled=yes add action=accept chain=forward comment="LAN - Accept related connections" connection-state=related disabled=yes add action=accept chain=forward comment="LAN - Internal traffic" disabled=yes in-interface=ether1 add action=log chain=forward comment="LAN - Log everything else" disabled=yes log-prefix="Log IPv6" add action=reject chain=forward comment="LAN - Drop everything else" connection-state=new disabled=yes in-interface=ether2 reject-with=icmp-no-route add action=drop chain=input disabled=yes in-interface=sit1 add action=accept chain=forward disabled=yes protocol=icmpv6 add action=accept chain=forward connection-state=established disabled=yes add action=accept chain=forward connection-state=related disabled=yes add action=accept chain=forward disabled=yes add action=accept chain=input connection-state=established disabled=yes [admin@MikroTik] /ipv6 firewall> And as you can see no rules are active and even if i active all or some of the rules, it still fails to ping or respond. DNS however responding though and correctly resolve name-> ipv6 . My current setup, Host OS: Windows 7 Ultimate 64 Virtualization: Virtualbox Hardware : 2 Physical NIC (bridge setup both inside Virtualbox) Software : Mikrotik 5.25 I can confirm that pfSense with HE.net Tunnelbroker setup works and all my LAN client can obtain address either via RA or DHCPv6. I can confirm also that Mikrotik with HE.Net tunnelbroker setup also works with/without firewall rules. Any comments from the forumers is much appreciated and please do not hesitate to ask for more information if needed. p/s: Maybe it's not my time yet? Regards
Card PM	Report Top Like Quote Reply

asellus	Nov 12 2013, 10:38 PM Show posts by this member only \| IPv6 \| Post #403
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 12 2013, 06:29 PM) @asellus I've done some checking and i found that all of my IPv6 traffic went Unreplied after Syn Sent. Mikrotik -> IPv6 -> Firewall -> Connection Tab I even try ping from inside Mikrotik Terminal and here's the results: CODE [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2001:e68:4410:64a7:: 104 64 2ms address unreachable sent=4 received=0 packet-loss=100% [admin@MikroTik] > ping 2001:200:dff:fff1:216:3eff:feb1:44d7 HOST SIZE TTL TIME STATUS 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout sent=2 received=0 packet-loss=100% [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout sent=4 received=0 packet-loss=100% [admin@MikroTik] > Here's the info on Firewall -> Connection CODE [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 tcp 2001:e68:4410:64a7:35c2:... 2404:6800:4001:c01::5f syn-sent 3 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent 4 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 5 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 6 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 icmpv6 2001:e68:4410:64a7:35c2:... 2404:6800:4001:803::1012 [admin@MikroTik] /ipv6 firewall connection> As of the moment, here's my firewall IPv6 current rules CODE /ipv6 firewall filter add action=accept chain=input comment="Router - Allow IPv6 ICMP" disabled=yes protocol=icmpv6 add action=accept chain=input comment="Router - Accept established connections" connection-state=established disabled=yes add action=accept chain=input comment="Router - Accept related connections" connection-state=related disabled=yes add action=drop chain=input comment="Router - Drop invalid connections" connection-state=invalid disabled=yes add action=accept chain=input comment="Router- UDP" disabled=yes protocol=udp add action=accept chain=input comment="Router - From our LAN" disabled=yes in-interface=ether1 add action=drop chain=input comment="Router - Drop other traffic" disabled=yes add action=drop chain=forward comment="LAN - Drop invalid Connections" connection-state=invalid disabled=yes add action=accept chain=forward comment="LAN - Accept UDP" disabled=no protocol=udp add action=accept chain=forward comment="LAN - Accept ICMPv6 " disabled=yes protocol=icmpv6 add action=accept chain=forward comment="LAN - Accept established Connections" connection-state=established disabled=yes add action=accept chain=forward comment="LAN - Accept related connections" connection-state=related disabled=yes add action=accept chain=forward comment="LAN - Internal traffic" disabled=yes in-interface=ether1 add action=log chain=forward comment="LAN - Log everything else" disabled=yes log-prefix="Log IPv6" add action=reject chain=forward comment="LAN - Drop everything else" connection-state=new disabled=yes in-interface=ether2 reject-with=icmp-no-route add action=drop chain=input disabled=yes in-interface=sit1 add action=accept chain=forward disabled=yes protocol=icmpv6 add action=accept chain=forward connection-state=established disabled=yes add action=accept chain=forward connection-state=related disabled=yes add action=accept chain=forward disabled=yes add action=accept chain=input connection-state=established disabled=yes [admin@MikroTik] /ipv6 firewall> And as you can see no rules are active and even if i active all or some of the rules, it still fails to ping or respond. DNS however responding though and correctly resolve name-> ipv6 . My current setup, Host OS: Windows 7 Ultimate 64 Virtualization: Virtualbox Hardware : 2 Physical NIC (bridge setup both inside Virtualbox) Software : Mikrotik 5.25 I can confirm that pfSense with HE.net Tunnelbroker setup works and all my LAN client can obtain address either via RA or DHCPv6. I can confirm also that Mikrotik with HE.Net tunnelbroker setup also works with/without firewall rules. Any comments from the forumers is much appreciated and please do not hesitate to ask for more information if needed. p/s: Maybe it's not my time yet? Regards What is the output of '/ipv6 route print'?
Card PM	Report Top Like Quote Reply

Sharingan	Nov 16 2013, 02:03 AM Show posts by this member only \| Post #404
New Member Junior Member 26 posts Joined: Apr 2005	@asellus Sorry for the late reply, here's my output of /ipv6 route print CODE [admin@MikroTik] > ipv6 route print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, o - ospf, b - bgp, U - unreachable # DST-ADDRESS GATEWAY DISTANCE 0 ADS ::/0 Streamyx 1 1 DS ::/0 fe80::121b:54ff:fe83:... 1 2 X S ::/0 2001:470:36:bd::1 1 3 X S 2000::/3 2001:470:35:bd::1 1 4 X S 2000::/3 ether2 1 5 X S 2000::/3 ether1 1 6 ADC 2001:e68:4410:6d1f::/64 ether1 0 [admin@MikroTik] > The only active route is #6
Card PM	Report Top Like Quote Reply

asellus	Nov 16 2013, 12:25 PM Show posts by this member only \| IPv6 \| Post #405
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 16 2013, 02:03 AM) @asellus Sorry for the late reply, here's my output of /ipv6 route print CODE [admin@MikroTik] > ipv6 route print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, o - ospf, b - bgp, U - unreachable # DST-ADDRESS GATEWAY DISTANCE 0 ADS ::/0 Streamyx 1 1 DS ::/0 fe80::121b:54ff:fe83:... 1 2 X S ::/0 2001:470:36:bd::1 1 3 X S 2000::/3 2001:470:35:bd::1 1 4 X S 2000::/3 ether2 1 5 X S 2000::/3 ether1 1 6 ADC 2001:e68:4410:6d1f::/64 ether1 0 [admin@MikroTik] > The only active route is #6 ether1 is where your DHCP service runs?
Card PM	Report Top Like Quote Reply

ryan18	Nov 16 2013, 03:46 PM Show posts by this member only \| Post #406
Look at all my stars!! Senior Member 2,406 posts Joined: Jul 2010 From: bandar Sunway	anyone else having problem with unifi?in bandar sunway/subang jaya area?
Card PM	Report Top Like Quote Reply

Sharingan	Nov 17 2013, 09:52 PM Show posts by this member only \| Post #407
New Member Junior Member 26 posts Joined: Apr 2005	@asellus, Yes ether1 is where the DHCP runs ether1 = LAN NIC ether2 = Streamyx NIC
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 10:31 PM Show posts by this member only \| IPv6 \| Post #408
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 09:52 PM) @asellus, Yes ether1 is where the DHCP runs ether1 = LAN NIC ether2 = Streamyx NIC There should be no problem then with your config; there is a link-local address in the PPPoE interface, and you got a /64 prefix too. Tw questions: Did the clients get IPv6 addresses via SLAAC from the router, and have you run radvd on ether1?
Card PM	Report Top Like Quote Reply

Sharingan	Nov 17 2013, 10:50 PM Show posts by this member only \| Post #409
New Member Junior Member 26 posts Joined: Apr 2005	@asellus , 1. Client did received address via router (SLAAC) 2. radvd did listen on all interface
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 10:55 PM Show posts by this member only \| IPv6 \| Post #410
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 10:50 PM) @asellus , 1. Client did received address via router (SLAAC) 2. radvd did listen on all interface In radvd, did you set MTU to 1452?
Card PM	Report Top Like Quote Reply

Sharingan	Nov 17 2013, 10:59 PM Show posts by this member only \| Post #411
New Member Junior Member 26 posts Joined: Apr 2005	@asellus No i didn't, but lemme try that and get back to you in a moment.
Card PM	Report Top Like Quote Reply

Sharingan	Nov 17 2013, 11:02 PM Show posts by this member only \| Post #412
New Member Junior Member 26 posts Joined: Apr 2005	Well it's still the same results as earlier.
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 11:48 PM Show posts by this member only \| IPv6 \| Post #413
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 11:02 PM) Well it's still the same results as earlier. Still cannot ping ipv6.google.com from the router itself, even with empty '/ipv6 firewall filter'? If that's the case somehow I think the parent OS of the VirtualBox may have something to do with it.
Card PM	Report Top Like Quote Reply

OKLY	Nov 19 2013, 09:23 PM Show posts by this member only \| IPv6 \| Post #414
The Penguin Vader Staff 12,089 posts Joined: Dec 2004 From: Malaysia	My long serving Buffalo WHR-HP-G300N on DD-WRT just died and so I reverted back to the stock DIR-615, really hassle free to enable IPv6 on this router.
Card PM	Report Top Like Quote Reply

OKLY	Nov 19 2013, 10:52 PM Show posts by this member only \| Post #415
The Penguin Vader Staff 12,089 posts Joined: Dec 2004 From: Malaysia	wKkaY How come the forum does not show I have posted from an IPv6 address when I'm on my iPad?
Card PM	Report Top Like Quote Reply

TSwKkaY	Nov 19 2013, 11:27 PM Show posts by this member only \| IPv6 \| Post #416
misutā supākoru VIP 6,008 posts Joined: Jan 2003	QUOTE(OKLY @ Nov 19 2013, 10:52 PM) wKkaY How come the forum does not show I have posted from an IPv6 address when I'm on my iPad? If your iPad isn't connecting to our forum over IPv6, then it won't show that you've posted from an IPv6 address.
Card PM	Report Top Like Quote Reply

OKLY	Nov 20 2013, 09:49 AM Show posts by this member only \| Post #417
The Penguin Vader Staff 12,089 posts Joined: Dec 2004 From: Malaysia	QUOTE(wKkaY @ Nov 19 2013, 11:27 PM) If your iPad isn't connecting to our forum over IPv6, then it won't show that you've posted from an IPv6 address. Okay, after several testing, not sure why my iPad/iPhone is preferring IPv4 over IPv6 most of the time. My desktop PC has no issues. Guys, anyone tried TP-Link TL-WDR4300? Does it fully support IPv6? Thinking of getting this to replace my previous Buffalo WHR-HP-G300N as I'm now on the stock D-Link DIR-615.
Card PM	Report Top Like Quote Reply

yeam	Nov 20 2013, 11:30 AM Show posts by this member only \| Post #418
New Member Junior Member 16 posts Joined: Dec 2005	Probably because of this. http://en.wikipedia.org/wiki/Happy_Eyeballs
Card PM	Report Top Like Quote Reply

Eoma	Nov 20 2013, 04:57 PM Show posts by this member only \| Post #419
- ,. - Elite 4,603 posts Joined: Jan 2003 From: PJ	QUOTE(OKLY @ Nov 20 2013, 09:49 AM) Guys, anyone tried TP-Link TL-WDR4300? Does it fully support IPv6? Thinking of getting this to replace my previous Buffalo WHR-HP-G300N as I'm now on the stock D-Link DIR-615. Stay away. It still doesn't have Dual Stack support.
Card PM	Report Top Like Quote Reply

OKLY	Nov 20 2013, 08:42 PM Show posts by this member only \| IPv6 \| Post #420
The Penguin Vader Staff 12,089 posts Joined: Dec 2004 From: Malaysia	QUOTE(Eoma @ Nov 20 2013, 04:57 PM) Stay away. It still doesn't have Dual Stack support. Thanks, guess I have to stick with the stock DIR-615 first for now while the other manufacturers sort out their firmware to fully support IPv6.
Card PM	Report Top Like Quote Reply

« Next Oldest · Networks and Broadband · Next Newest »

69 Pages « < 19 20 21 22 23 > » Top

Add Reply Options

Change to:

0.0264sec

0.34

6 queries

GZIP Disabled
Time is now: 2nd December 2025 - 06:26 PM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.