This new setup allows the use of the same IPv6 provider along with using the Stateless Address Auto Configuration feature found in IPv6. I had been considering how to integrate IPv6 into my home network and DMZ and there are so many options to consider, but for now, I am keeping it simple.
A recent post noted that multiple tunneled connections with one DD-WRT router is possible, but doing so was really an unnecessary thing to do. Hurricane Electric provided a /48 network just for the asking so I have split the network into an A and a B network, for the local LAN and guest LAN, respectively. This new setup allows the use of the same IPv6 provider along with using the Stateless Address Auto Configuration feature found in IPv6. I had been considering how to integrate IPv6 into my home network and DMZ and there are so many options to consider, but for now, I am keeping it simple. Dual IPv6 Networks In Home GatewayI have completed adding IPv6 to my home network using both 6in4 and 6to4 transition methods. The IPv6 guide at the DD-WRT site covers everything you need, but I had one question after I completed 6to4. Could I add multiple IPv6 network providers? The answer is yes, and it is very easy to do. Breaking with the spirit of end to end networking, I decided I wanted my guest network IPv6 network separated from my main network. This is not necessary with the big /64 network you get from the providers, but I wanted to try it out since I like having a network that I can use to look from the outside in. Teredo Tunneling is the most painless way to IPv6, but it was the slowest method of using IPv6. The changes were simple enough, only needing the user to setup the second tunnel using the tunnel provider's instructions and a unique name. Basically, the router advertisement daemon's config files needed to be changed to announce the 6to4's network, 2002: on the guest interface br1. The 6to4 start script needed the -p option used to specify a new pid file for the second daemon. I used the command watch 'netstat -an | grep tcp6 to see what network connections were using IPv6. The home network uses the 2001:132:d:28a network provided by Hurricane Electric. The radvd.he.conf file only needed to be configured to announce the 2001:132:d:28a::/64 prefix and the start script is the same one you would fine on the DD-WRT IPv6 site. On starup, the router's route tables and interfaces show the correct settings for the internal interface br0 and the external interface br1. Again, watching the netstat output showed plenty of IPv6 connections. Both networks checked out with the IPv6 test site. A tertiary option is to use Teredo tunneling on a host behind another NAT in my my home network which gives me a third network to work with. I put the IPv6 startup scripts into Optware script format along with the config files for radvd. I do the ipv6 insmod command in the DD-WRT startup. So now, my home network has all the benefits of a node having full end to end connectivity with no more pesky NAT preventing me from publishing my own content or directly communicating with another peer on the Internet. But also note that configuration is completely unnecessary since I have 2^64 addresses available for use and could have divided my block up for each segment. One radvd process can advertise to both interfaces and the two networks can be part of the same /64. All I had to do was add an interface address in the block to br1 and the two become connected, but that seemed like normal networking. |
Journal
This is the place for notes and updates. Archives
March 2013
Categories
All
|