On 15/08/2019 12.59, Per Jessen wrote:
Carlos E. R. wrote:
HE posts also an example configuration, but not knowing what it does I thought it had to be done on the router. If it can be done inside, then I can do it, I suppose.
modprobe ipv6 ip tunnel add he-ipv6 mode sit remote 216.A.B.C local 88.Z.X.Y ttl 255 ip link set he-ipv6 up ip addr add 2001:M:N:O::2/64 dev he-ipv6 ip route add ::/0 dev he-ipv6 ip -f inet6 addr
Apart from the last command, that looks about right. That'll give you a device called 'he-ipv6' with your ipv6 prefix and a default ipv6 route via that.
What's the issue with the last command?
But there is a lot of info missing. How to make that machine a router,
a) enable IPv6 forwarding - you can do that in YaST or with sysctl.
IPv4 forwarding at least was done on the SuSEfirewal2 setup.
b) start radvd with the prefix given by HE.
Add to /etc/radvd.conf, to give every client a default ipv6 route.
route ::/0 { };
for instance, what to do on the firewalls, what to do on the LAN machines, etc.
Well, there has to be something for you to do too :-)
I suppose... but all that is new to me.
In short - on the tunnel box, optionally configure ipv6 firewall. On the IPv4 firewall, I guess you might need to permit protocol 41.
On the LAN machines - nothing. They will auto-configure.
No, they will not. They are on manual IPv4. You can not set auto IPv6 and manual IPv4. in YaST. One machine (the home server precisely) has a non-used WiFi card which I set on auto. -- Cheers / Saludos, Carlos E. R. (from 15.0 x86_64 at Telcontar)