Greg Freemyer wrote:
On Sat, Sep 10, 2016 at 9:10 AM, Per Jessen <per@computer.org> wrote:
Greg Freemyer wrote:
The learning curve is not that steep. Just do it.
Per, past time for me to try this.
My ISP is Comcast and they are said to have good IPv6.
I have a Netgear R6900 router.
I have a Leap 42.2 test machine cat5 connected to it.
Hi Greg,
soonds good.
I just went into the router's advanced settings and told it to auto-detect IPv6 (previously disabled). It says I now have a WAN and LAN IPv6 address for the router (shockingly easily done).
Yast says I have IPv6 enabled (since install I assume).
ifconfig shows I have 2 global IPv6 addresses for eth0 (why 2?)
Could you post output from "ip addr"? Anyway, having multiple IPv6 addresses is normal and just one of those new things you will get used to. a) a link-local address, fe80:: b) a public ipv6 address.
I have 3 total. 2 global, 1 link local
sudo ifconfig root's password: Sorry, try again. root's password: eth0 Link encap:Ethernet HWaddr 30:5A:3A:54:0D:E1 inet addr:192.168.1.13 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: 2601:c0:8105:82f0:3de5:c309:46c3:20c3/64 Scope:Global inet6 addr: 2601:c0:8105:82f0:325a:3aff:fe54:de1/64 Scope:Global inet6 addr: fe80::325a:3aff:fe54:de1/64 Scope:Link
Right, so your /64 prefix is 2601:c0:8105:82f0 - 2601:c0:8105:82f0:3de5:c309:46c3:20c3 - random address, for privacy reasons. 2601:c0:8105:82f0:325a:3aff:fe54:de1 - address derived from the interface MAC address. What does "cat /proc/sys/net/ipv6/conf/eth0/use_tempaddr" say? I expect it is "1", which is "assign random address". A "2" would be "assign and prefer random address". We used to default to "2", but it was changed, not sure why.
What next? How do I test?
Try "ping -6 google.com".
invalid syntax, put ping6 works!
Ah yes, that little nuisance ... sometimes the executable has -6 suffix, other times it's an argument :-(
Next point your browser to http://test-ipv6.com/
9 green, 1 red
The red test was large packets. It says I have an issue with MTU.
Hmm, your mtu is 1500, not sure what the problem might be.
You can also have a look at the routing table "ip -6 route show".
ip -6 route show 2601:c0:8105:82f0::/64 dev eth0 proto kernel metric 256 expires 339782sec pref medium fe80::/64 dev eth0 proto kernel metric 256 pref medium default via fe80::deef:9ff:fea7:7e28 dev eth0 proto ra metric 1024 expires 1564sec hoplimit 64 pref low
Looks good.
So now every hacker in the world knows my info and I have no idea if I have a firewall in place!
I tried pinging both of your addresses, no response. You'll be okay for a while, security by obscurity, but a firewall is a good idea :-) See if openSUSE gave you somethjing by default: ip6tables --list -n A part from the firewall, you're now on IPv6, and your machine will prefer that over IPv4 when you visit IPv6 enabled sites, do lookups on IPv6-enabled DNSes etc. etc. -- Per Jessen, Zürich (24.6°C) http://www.dns24.ch/ - your free DNS host, made in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org