TMnet Streamyx/Unifi & IPv6

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Networks and Broadband

Bump Topic Add Reply RSS Feed

6 Pages « < 2 3 4 5 6 >Bottom

Outline · [ Standard ] · Linear+

Unifi TMnet Streamyx/Unifi & IPv6, Now live!

views

asellus	Nov 11 2013, 11:26 PM Return to original view \| IPv6 \| Post #61
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 11 2013, 05:11 PM) Looks like i share the same fate as UserU, i got the address but it seems that my client cannot surf properly IPv6 sites. Even www.kame.net that turtle didn't dance for me.. . Right now i'm using HE.net tunnelbroker and it works like charm.. rules are default and RA is running fine inside Mikrotik (Virtualbox). If you can pull a prefix from TM via DHCPv6-PD, there is no reason actually for your client to fail from using IPv6. If you emptied the '/ipv6 firewall' do you still have problems?
Card PM	Report Top Like Quote Reply

asellus	Nov 12 2013, 06:16 AM Return to original view \| IPv6 \| Post #62
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 12 2013, 12:15 AM) @asellus In fact i did emptied it, i did test with HE.Net with emptied my firewall (IPv6 that is) and can get it working. So it's not the firewall rules i figured, something went beyond which i can reach atm. I'll look into it later after i got back from work. Can you do successful ping from the routerOS to ipv6.google.com?
Card PM	Report Top Like Quote Reply

asellus	Nov 12 2013, 10:41 AM Return to original view \| IPv6 \| Post #63
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(maxiscool @ Nov 12 2013, 07:35 AM) @Sharingan I just discovered that I've being ping the wrong way all this while to ping ipv6, apparently when I tried "ping6 ipv6.google.com" the return is positive. You may want to try this.. @asellus, Am I doing it correctly? If yes, perhaps this will help others. 'ping6' is used in Linux only. In routerOS, as of 6.6, 'ping' is still used.
Card PM	Report Top Like Quote Reply

asellus	Nov 12 2013, 10:38 PM Return to original view \| IPv6 \| Post #64
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 12 2013, 06:29 PM) @asellus I've done some checking and i found that all of my IPv6 traffic went Unreplied after Syn Sent. Mikrotik -> IPv6 -> Firewall -> Connection Tab I even try ping from inside Mikrotik Terminal and here's the results: CODE [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2001:e68:4410:64a7:: 104 64 2ms address unreachable sent=4 received=0 packet-loss=100% [admin@MikroTik] > ping 2001:200:dff:fff1:216:3eff:feb1:44d7 HOST SIZE TTL TIME STATUS 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout 2001:200:dff:fff1:216:3eff:feb1:44d7 timeout sent=2 received=0 packet-loss=100% [admin@MikroTik] > ping [:resolve ipv6.google.com] HOST SIZE TTL TIME STATUS 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout 2404:6800:4001:803::1012 timeout sent=4 received=0 packet-loss=100% [admin@MikroTik] > Here's the info on Firewall -> Connection CODE [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 tcp 2001:e68:4410:64a7:35c2:... 2404:6800:4001:c01::5f syn-sent 3 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent 4 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 5 tcp 2001:e68:4410:64a7:35c2:... 2401:3400:2000:1::17 syn-sent 6 tcp 2001:e68:4410:64a7:35c2:... 2a02:26f0:8:181::eed syn-sent [admin@MikroTik] /ipv6 firewall connection> print Flags: S - seen reply, A - assured # PROTOCOL SRC-ADDRESS DST-ADDRESS TCP-STATE 0 SA tcp fe80::a02b:1dd9:d366:c5ef fe80::a00:27ff:fe9d:aaa2 established 1 icmpv6 2001:e68:4410:64a7:35c2:... 2001:200:dff:fff1:216:3e... 2 icmpv6 2001:e68:4410:64a7:35c2:... 2404:6800:4001:803::1012 [admin@MikroTik] /ipv6 firewall connection> As of the moment, here's my firewall IPv6 current rules CODE /ipv6 firewall filter add action=accept chain=input comment="Router - Allow IPv6 ICMP" disabled=yes protocol=icmpv6 add action=accept chain=input comment="Router - Accept established connections" connection-state=established disabled=yes add action=accept chain=input comment="Router - Accept related connections" connection-state=related disabled=yes add action=drop chain=input comment="Router - Drop invalid connections" connection-state=invalid disabled=yes add action=accept chain=input comment="Router- UDP" disabled=yes protocol=udp add action=accept chain=input comment="Router - From our LAN" disabled=yes in-interface=ether1 add action=drop chain=input comment="Router - Drop other traffic" disabled=yes add action=drop chain=forward comment="LAN - Drop invalid Connections" connection-state=invalid disabled=yes add action=accept chain=forward comment="LAN - Accept UDP" disabled=no protocol=udp add action=accept chain=forward comment="LAN - Accept ICMPv6 " disabled=yes protocol=icmpv6 add action=accept chain=forward comment="LAN - Accept established Connections" connection-state=established disabled=yes add action=accept chain=forward comment="LAN - Accept related connections" connection-state=related disabled=yes add action=accept chain=forward comment="LAN - Internal traffic" disabled=yes in-interface=ether1 add action=log chain=forward comment="LAN - Log everything else" disabled=yes log-prefix="Log IPv6" add action=reject chain=forward comment="LAN - Drop everything else" connection-state=new disabled=yes in-interface=ether2 reject-with=icmp-no-route add action=drop chain=input disabled=yes in-interface=sit1 add action=accept chain=forward disabled=yes protocol=icmpv6 add action=accept chain=forward connection-state=established disabled=yes add action=accept chain=forward connection-state=related disabled=yes add action=accept chain=forward disabled=yes add action=accept chain=input connection-state=established disabled=yes [admin@MikroTik] /ipv6 firewall> And as you can see no rules are active and even if i active all or some of the rules, it still fails to ping or respond. DNS however responding though and correctly resolve name-> ipv6 . My current setup, Host OS: Windows 7 Ultimate 64 Virtualization: Virtualbox Hardware : 2 Physical NIC (bridge setup both inside Virtualbox) Software : Mikrotik 5.25 I can confirm that pfSense with HE.net Tunnelbroker setup works and all my LAN client can obtain address either via RA or DHCPv6. I can confirm also that Mikrotik with HE.Net tunnelbroker setup also works with/without firewall rules. Any comments from the forumers is much appreciated and please do not hesitate to ask for more information if needed. p/s: Maybe it's not my time yet? Regards What is the output of '/ipv6 route print'?
Card PM	Report Top Like Quote Reply

asellus	Nov 16 2013, 12:25 PM Return to original view \| IPv6 \| Post #65
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 16 2013, 02:03 AM) @asellus Sorry for the late reply, here's my output of /ipv6 route print CODE [admin@MikroTik] > ipv6 route print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, o - ospf, b - bgp, U - unreachable # DST-ADDRESS GATEWAY DISTANCE 0 ADS ::/0 Streamyx 1 1 DS ::/0 fe80::121b:54ff:fe83:... 1 2 X S ::/0 2001:470:36:bd::1 1 3 X S 2000::/3 2001:470:35:bd::1 1 4 X S 2000::/3 ether2 1 5 X S 2000::/3 ether1 1 6 ADC 2001:e68:4410:6d1f::/64 ether1 0 [admin@MikroTik] > The only active route is #6 ether1 is where your DHCP service runs?
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 10:31 PM Return to original view \| IPv6 \| Post #66
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 09:52 PM) @asellus, Yes ether1 is where the DHCP runs ether1 = LAN NIC ether2 = Streamyx NIC There should be no problem then with your config; there is a link-local address in the PPPoE interface, and you got a /64 prefix too. Tw questions: Did the clients get IPv6 addresses via SLAAC from the router, and have you run radvd on ether1?
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 10:55 PM Return to original view \| IPv6 \| Post #67
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 10:50 PM) @asellus , 1. Client did received address via router (SLAAC) 2. radvd did listen on all interface In radvd, did you set MTU to 1452?
Card PM	Report Top Like Quote Reply

asellus	Nov 17 2013, 11:48 PM Return to original view \| IPv6 \| Post #68
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Sharingan @ Nov 17 2013, 11:02 PM) Well it's still the same results as earlier. Still cannot ping ipv6.google.com from the router itself, even with empty '/ipv6 firewall filter'? If that's the case somehow I think the parent OS of the VirtualBox may have something to do with it.
Card PM	Report Top Like Quote Reply

asellus	Nov 23 2013, 08:23 PM Return to original view \| IPv6 \| Post #69
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(mrlive005 @ Nov 23 2013, 06:27 PM) Now it's enable, but i still can't test http://ipv6-test.com/ , something wrong. Image » Click to show Spoiler - click again to hide... « This is my result when i do test » Click to show Spoiler - click again to hide... « Try this test page first, then try opening this IPv6-only page if it loads or not.
Card PM	Report Top Like Quote Reply

asellus	Nov 24 2013, 11:41 PM Return to original view \| IPv6 \| Post #70
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(alexwsk @ Nov 24 2013, 11:30 PM) for barrier breaker, need to Enable IPv6 negotiation on the PPP link? And which protocol to select for WAN6? thx You need to create a DHCPv6-PD client on your @wan interface too.
Card PM	Report Top Like Quote Reply

asellus	Nov 25 2013, 05:50 AM Return to original view \| IPv6 \| Post #71
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(alexwsk @ Nov 25 2013, 12:01 AM) any details guide? currently i have luci but have not install luci-proto-ipv6 can I do it manually by modifying /etc/config/network only or need to modify more files? With Barrier Breaker, only need to modify '/etc/config/network' file, if you don't install luci-proto-ipv6. Still need odhcp6c though. This post has been edited by asellus: Nov 25 2013, 05:52 AM
Card PM	Report Top Like Quote Reply

asellus	Nov 25 2013, 06:48 AM Return to original view \| IPv6 \| Post #72
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(mrlive005 @ Nov 25 2013, 06:33 AM) Do you guys running on both ? btw Ipv4 and Ipv6 ? im not sure if im doing the right things, just clear me up or i should disable one of them ? » Click to show Spoiler - click again to hide... « Of course you should run both, many sites are still IPv4-only.
Card PM	Report Top Like Quote Reply

asellus	Nov 25 2013, 12:46 PM Return to original view \| IPv6 \| Post #73
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(alexwsk @ Nov 25 2013, 11:29 AM) odhcp6c has been installed by default can you post or pm me your /etc/config/network without those sensitive info, thx I don't have the router anymore, but just doing what http://wiki.openwrt.org/doc/uci/network6 told you and you should be OK. CODE config interface wan option ipv6 1 # only required for PPP-based protocols ... config interface wan6 option ifname @wan option proto dhcpv6 config interface lan option proto static option ip6assign 60 ...
Card PM	Report Top Like Quote Reply

asellus	Nov 25 2013, 04:29 PM Return to original view \| IPv6 \| Post #74
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(alexwsk @ Nov 25 2013, 03:28 PM) ok, thx will try it out, currently one location no ipv6 yet (USJ), will try at another location (PJ) BTW, the 'option ip6assign' for Streamyx should be 64.
Card PM	Report Top Like Quote Reply

asellus	Nov 28 2013, 05:34 PM Return to original view \| IPv6 \| Post #75
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(wKkaY @ Nov 28 2013, 04:24 PM) Just went for a presentation by TM on their IPv6 broadband rollout. A few new things I learned today: 1) Dual-stacking IPv4/IPv6 increases resource usage at the BRAS (memory, licensing, etc). This is one of the factors that limit the rollout. 2) Business broadband (static IP) customers need to call their account manager or branch to request for an IPv6 prefix. It isn't assigned automatically like for home users. 3) The hotline staff are trained in IPv6 you didn;t ask if TM will give out prefix larger than /64?
Card PM	Report Top Like Quote Reply

asellus	Nov 28 2013, 07:17 PM Return to original view \| IPv6 \| Post #76
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	An IPv6 /64 prefix equals an IPv4 /32 in functionality, more like it.
Card PM	Report Top Like Quote Reply

asellus	Nov 28 2013, 11:12 PM Return to original view \| IPv6 \| Post #77
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(Eoma @ Nov 28 2013, 07:44 PM) Not quite. A /64 prefix will yield 1 x IPv6 subnet, but it can host 18,446,744,073,709,551,616 IPv6 addresses For the typical home scenario with one gateway/RG/AP, that one subnet and 2^64 hosts is good enough. And since there is no concept of NAT in IPv6, all 2^64 hosts are globally routed. /56 will give you 2^8 IPv6 subnets. For those inclined in having several subnets around the house. IIANM, TM gives /56 for their biz packages. With only a /64, you can only have one router in the network. Which is no different really than having only one dynamic publicly-routed IPv4 address. Subnetting is made harder because of this.
Card PM	Report Top Like Quote Reply

asellus	Dec 3 2013, 04:24 PM Return to original view \| IPv6 \| Post #78
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	The lease time from TM DHCPv6 server is 3 days.
Card PM	Report Top Like Quote Reply

asellus	Dec 7 2013, 08:22 PM Return to original view \| IPv6 \| Post #79
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	QUOTE(ahlong @ Dec 7 2013, 11:34 AM) » Click to show Spoiler - click again to hide... « thanks for the info guys. but what shud i do to make the ipv6 from Ipv6 Connectivity change from No Internet Access to Internet? try everything from my knowledge and no luck. still cant use the ipv6 connectivity thru the net can u guys help? using TL1043ND TPLink with OpenWrt Attitude Adjustment. already installed all the ipv6 stuff on it. need some guide please handsome ppl in here Have you installed all the packages necessary to make Attitude Adjustment to work with IPv6? What have you installed?
Card PM	Report Top Like Quote Reply

asellus	Dec 8 2013, 11:28 AM Return to original view \| IPv6 \| Post #80
#gompusas Elite 4,541 posts Joined: Jan 2003 From: BSRPPG51 Access Concentrator	You need wide-dhcpv6-client and radvd too I think.
Card PM	Report Top Like Quote Reply

« Next Oldest · Networks and Broadband · Next Newest »

6 Pages « < 2 3 4 5 6 >Top

Add Reply Options

Change to:

0.0458sec

0.43

7 queries

GZIP Disabled
Time is now: 5th December 2025 - 04:11 PM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.