Mailinglist Archive: opensuse (1698 mails)

< Previous Next >
[opensuse] (tunnel) routing problem
Hi all,

With the arival of my cable modem, i want to replace my old RH-firewall
and replace it by an 11.4 system, however i have problems getting my
ipv6 tunnels working.

My HE-tunnel is up and running, config:
#!/bin/bash
#
modprobe ipv6
modprobe sit
ip tunnel add tun_82 mode sit remote 216.66.80.36 local 213.125.x.y ttl
255
ip link set tun_82 up
ip addr add 2001:470:qqqq:rrrr::2/64 dev tun_82
##ip route add 2001:470:qqqq:rrrr::1/64 dev tun_82
ip route add ::/0 dev tun_82
ip -f inet6 addr
#
echo "1" > /proc/sys/net/ipv6/conf/all/forwarding

resulting in:# ifconfig tun_82
tun_82 Link encap:IPv6-in-IPv4
inet6 addr: fe80::d57d:d152/128 Scope:Link
inet6 addr: 2001:470:qqqq:rrrr::2/64 Scope:Global
UP POINTOPOINT RUNNING NOARP MTU:1480 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)



Ofcource on my machine i can ping6 the 2001:470:qqqq:rrrr::2 address
assigned to the local end of the tunnel.

And from internet i can do a ping6 to the 2001:470:qqqq:rrrr::1 at the
remote end of the tunnel.

However, i can locally not ping6 to 2001:470:qqqq:rrrr::2 (other end)

And on an other machine, if i do 2001:470:qqqq:rrrr::2
( through the tunnel, to my box)
i do see encapsulated icpm6 requests incoming (on eth1 and connected
br1, but going nowhere.


With ancient ipv4 pings i can reach either end of the tunnel.
When testing, v4 and v6 firewall rules are disabled.
Forwarding for 4 and 6 are enabled.


So i presume it is a kind of routing problem, not?

netstat -rn -A inet6 tels me:
2001:470:qqqq:rrrr::/64 :: U 256 0 0 tun_82
fe80::/64 :: U 256 0 0 tun_82
::/0 :: U 1024 0 0 tun_82
ff00::/8 :: U 256 0 0 tun_82

i used to have next line on my old box:ip route add
2001:470:qqqq:rrrr::1/64 dev tun_82
But either with, or without, it doesn't work

I probably need radvd for further routing, but that shouldn't be needed
to see the light at the end of the tunnel ;-)



Any suggestions what i missed, or what to check?


Hans
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >