6to4 in 6.3-R?
Ivan Voras
ivoras at freebsd.org
Tue Dec 16 13:02:22 PST 2008
Hi,
I'm toying around with IPv6 and one thing I'd like to try is to set up
an stf tunnel. The other types, like freenet6 and what sixxs uses work
without problems, but on a 7-stable machine. I've followed various
documents (like http://www.kfu.com/~nsayer/6to4/ but most are very
similar) and it apparently boils down to the following in /etc/rc.conf:
ipv6_enable="YES"
ipv6_defaultrouter="2002:c058:6301::"
stf_interface_ipv4addr="my.permanent.ipv4.addr"
The interface comes up ok:
stf0: flags=1<UP> mtu 1280
inet6 2002:a135:xxyy::1 prefixlen 16
but attempts to ping outside result in errors:
> ping6 www.freebsd.org
PING6(56=40+8+8 bytes) 2002:a135:xxyy::1 --> 2001:4f8:fff6::21
ping6: sendmsg: Permission denied
ping6: wrote www.freebsd.org 16 chars, ret=-1
ping6: sendmsg: Permission denied
ping6: wrote www.freebsd.org 16 chars, ret=-1
^C
--- www.freebsd.org ping6 statistics ---
2 packets transmitted, 0 packets received, 100.0% packet loss
It can ping6 itself. I have ipfw here but a very early rule says "allow
ipv6 from any to any". It's triggered, judging by the packet counts, but
apparently only in one direction (in the above example, only 2 packets
would be accounted for).
I think it's either broken (I can't try spf on the 7-stable machine) or,
more likely, I'm missing something since I'm new to ipv6. Any ideas?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-net/attachments/20081216/8aff9119/signature.pgp
More information about the freebsd-net
mailing list