Followed the instructions from TMNET, it now works at my home near Sg Long, but not at my workplace, near Jalan Kuchai Lama, TMNETs DHCPv6 not giving out ipv6 prefixes there. Same router, both sides, Asus RT-N16.

Security is a big issue, since I was previously behind the router's firewall, so everything was open within my network, and ASUS's firmware does not support ipv6 firewall.
Initially, doing an IPv6 port scan here showed a lot of the common were open and responding from the internet!!

ipv6.chappell-family.com/ipv6tcptest/

Fortunately merlins firmware for the RT N16 does enable an ipv6 firewall, he supports a few routers.

http://www.lostrealm.ca/tower/node/79

So now my rt n16 firewalls ipv6 traffic, and a recheck shows that all my ports are in stealth mode now. Saved me the pain of having to secure each pc in my network.

Anyway, for the RT-N16, you just need to click on the ipv6 tab on the left navigation bar, then choose 'Native' as the connection type, 'PPP' interface, and enable DHCP-PD. If you are using merlin's firmware, you can then go the the firewall tab and enable the ipv6 firewall there, but it's enabled by default.

As for my workplace at Kuchai Lama, its really frustrating. I have IPv6 connectivity from the router itself, I can ping ipv6.google.com from the router, but Router Advertisement is disabled because radvd can't get the ipv6 prefix from TMNET.

radvd[439]: no auto-selected prefix on interface br0, disabling advertisements.

If only there is a way for me to specify my own prefix......, have been looking this up but to no avail.

Wouldn't a host based firewall block unsolicited tcp connections as well?

Thanks for the explanation dude, understood, I totally didn't think of that, but now that you explained it, it seems so obvious

Hi, hahaha, the man himself. I've used your tomato firmware on my wrt54gl s, thanks for that. Actually, the Asus firmware allows me to disable the dhcp-pd and hence, specify my own prefixes, it's just that I have no idea on what to put in there, just blindly googling now hoping to find some info on this, no luck so far......

I have access to 3 locations with unifi and all 3 have different 'situations'.

No. 1. The first location gets an wan, lan ipv6 address and lan prefix, ipv6 works with tm's dir 615, but now I'm using the asus RT N16 over there. no problems.

No. 2. The second location is able to get a wan ipv6 address, but no lan ipv6 address and no lan prefix, so, while the router itself has ipv6 internet connectivity (can ping ipv6.google.com etc), the lan clients don't.

No. 3. The third location, doesnt even get a wan ipv6 address.

So, it could be very frustrating trying to configure it when it might not be 'fully' available. I suggest you try tm's dir 615 router first and confirm that you are getting complete ipv6 functionality, if you are, then go ahead and try openwrt.

What you describe in your last paragraph sounds like the my situation no. 2, ie, your area is not getting ipv6 prefixes from tmnet yet.

I don't see anything wrong with your config, its the same as my Asus RT N16. Not much more you can do, other than wait till tm starts giving out lan prefixes to your area. If you click on System Log>IPV6, you will see that you have a wan ipv6 address, but no lan ipv6 address, no prefix either.