IPv6

so , here is the not-so-good news  

The folks that built ipv6 into freebsd along with some RFC's consider using dhcp6c and autoconfig or slaac a host feature, and not a router feature.

So, if ipv6 forwarding is enabled, like it would be in m0n0wall as a router, rtsol or net.inet6.ip6.accept_rtadv=1 will not configure the route table with a default route.

if routing is disabled, sysctl -A net.inet6.ip6.forwarding=0 , before running rtsol or accepting an RA, then then these methods will configure a default route.

now, this may sound as simple as, turn off forwarding, turn on accept_rtadv, wait, and turn forwarding on, but it's not.  The RA has a life time, and m0n0wall will have to expire what it's learnt from the RA, and start the process again.  As forwarding would be on , it would accept the RA, for a new lifetime without a default route :-(

The good news is, that having found the problem , so has someone else that submitted some patches

http://svn.freebsd.org/viewvc/base?view=revision&revision=204798

Whats also nice about this patch is that it gives control per interface, so SLAAC for WAN but not LAN which in this use case is what we want.

Next step would be to try these patches against freebsd 6 for m0n0wall  

Thanks for looking into this brushedmoss. I suspected that it might be something like this since I've run into similar issues with Linux.

-Matt

some bad news, these patches won't play nice with freebsd 6, I think we are going to have to wait until freebsd 8 base until we get this in.

I will have a look at disabling forwarding, enabling slaac, waiting and then renabling forwarding as a bad work around, but need to consider the lifetime issue with the RA.

[$ cat /tmp/dhcp6c.conf.sample]

Hi guys,

Been trying to get native IPv6 running with my provider Visual Online for the past 2 days without any success. This is all they have concerning documentation: http://www.vo.lu/en/support/ipv6.

So according to that they seem to be using DHCP-PD as well (they're talking about "unnumbered PPP" and on the last very poorly cropped picture you can actually see the Fritz assigning a /64 to the LAN).

Nothing did work via the WebUI so I went exec.php (embedded version 1.33 on a 5-6 years old WRAP-board) and this is where I stand now after an "ipfw flush". Without flushing the FW I get the same errors as mentioned in this thread (dhcp6c trying to get leases indefinitely) even when setting all-permitting rules via the GUI.

sis0 is my LAN, sis1/ng0 my WAN/PPPoE.

$ cat /tmp/dhcp6c.conf.sample

Code:

interface sis0 {
  send ia-pd 0;
};

id-assoc pd 0 {
  prefix-interface sis1 {
    sla-id 0;
  };
};

$ /tmp/dhcp6c -c /tmp/dhcp6c.conf.sample -d -D -f ng0

Code:

Apr/19/2011 14:55:35: get_duid: extracted an existing DUID from /var/db/dhcp6c_duid: 00:01:00:01:15:40:3b:57:00:0d:b9:03:34:b4
Apr/19/2011 14:55:35: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr/19/2011 14:55:35: client6_init: failed initialize control message authentication
Apr/19/2011 14:55:35: client6_init: skip opening control port
Apr/19/2011 14:55:35: cfdebug_print: <3>[interface] (9)
Apr/19/2011 14:55:35: cfdebug_print: <5>[sis0] (4)
Apr/19/2011 14:55:35: cfdebug_print: <3>begin of closure [{] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>[send] (4)
Apr/19/2011 14:55:35: cfdebug_print: <3>[ia-pd] (5)
Apr/19/2011 14:55:35: cfdebug_print: <3>[0] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of sentence [;] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of closure [}] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of sentence [;] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>[id-assoc] (8)
Apr/19/2011 14:55:35: cfdebug_print: <13>[pd] (2)
Apr/19/2011 14:55:35: cfdebug_print: <13>[0] (1)
Apr/19/2011 14:55:35: cfdebug_print: <13>begin of closure [{] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>[prefix-interface] (16)
Apr/19/2011 14:55:35: cfdebug_print: <5>[sis1] (4)
Apr/19/2011 14:55:35: cfdebug_print: <3>begin of closure [{] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>[sla-id] (6)
Apr/19/2011 14:55:35: cfdebug_print: <3>[0] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of sentence [;] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of closure [}] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of sentence [;] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of closure [}] (1)
Apr/19/2011 14:55:35: cfdebug_print: <3>end of sentence [;] (1)
Apr/19/2011 14:55:35: configure_pool: called
Apr/19/2011 14:55:35: clear_poolconf: called
Apr/19/2011 14:55:35: dhcp6_reset_timer: reset a timer on ng0, state=INIT, timeo=0, retrans=383
Apr/19/2011 14:55:36: client6_send: a new XID (77b2e0) is generated
Apr/19/2011 14:55:36: copy_option: set client ID (len 14)
Apr/19/2011 14:55:36: copy_option: set elapsed time (len 2)
Apr/19/2011 14:55:36: client6_send: send solicit to ff02::1:2%ng0
Apr/19/2011 14:55:36: dhcp6_reset_timer: reset a timer on ng0, state=SOLICIT, timeo=0, retrans=1088
Apr/19/2011 14:55:36: client6_recv: receive advertise from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/19/2011 14:55:36: dhcp6_get_options: get DHCP option server ID, len 10
Apr/19/2011 14:55:36:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/19/2011 14:55:36: dhcp6_get_options: get DHCP option client ID, len 14
Apr/19/2011 14:55:36:   DUID: 00:01:00:01:15:40:3b:57:00:0d:b9:03:34:b4
Apr/19/2011 14:55:36: dhcp6_get_options: get DHCP option DNS, len 16
Apr/19/2011 14:55:36: dhcp6_get_options: get DHCP option domain search list, len 7
Apr/19/2011 14:55:36: client6_recvadvert: server ID: 00:03:00:01:00:b0:4a:70:98:1b, pref=-1
Apr/19/2011 14:55:36: client6_recvadvert: reset timer for ng0 to 0.984141
Apr/19/2011 14:55:37: select_server: picked a server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/19/2011 14:55:37: client6_send: a new XID (9c085c) is generated
Apr/19/2011 14:55:37: copy_option: set client ID (len 14)
Apr/19/2011 14:55:37: copy_option: set server ID (len 10)
Apr/19/2011 14:55:37: copy_option: set elapsed time (len 2)
Apr/19/2011 14:55:37: client6_send: send request to ff02::1:2%ng0
Apr/19/2011 14:55:37: dhcp6_reset_timer: reset a timer on ng0, state=REQUEST, timeo=0, retrans=977
Apr/19/2011 14:55:37: client6_recv: receive reply from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/19/2011 14:55:37: dhcp6_get_options: get DHCP option server ID, len 10
Apr/19/2011 14:55:37:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/19/2011 14:55:37: dhcp6_get_options: get DHCP option client ID, len 14
Apr/19/2011 14:55:37:   DUID: 00:01:00:01:15:40:3b:57:00:0d:b9:03:34:b4
Apr/19/2011 14:55:37: dhcp6_get_options: get DHCP option DNS, len 16
Apr/19/2011 14:55:37: dhcp6_get_options: get DHCP option domain search list, len 7


Apr/19/2011 14:55:37: info_printf: nameserver[0] 2001:1610:0:3::25
Apr/19/2011 14:55:37: info_printf: Domain search list[0] vo.lu.


Apr/19/2011 14:55:37: dhcp6_remove_event: removing an event on ng0, state=REQUEST
Apr/19/2011 14:55:37: dhcp6_remove_event: removing server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/19/2011 14:55:37: client6_recvreply: got an expected reply, sleeping.

ifconfig -a

Code:

sis0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=8<VLAN_MTU>
inet 10.0.0.1 netmask 0xffffff00 broadcast 10.0.0.255
inet6 fe80::20d:b9ff:fe03:34b4%sis0 prefixlen 64 scopeid 0x1
ether 00:0d:b9:03:34:b4
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
sis1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=8<VLAN_MTU>
inet6 fe80::20d:b9ff:fe03:34b5%sis1 prefixlen 64 scopeid 0x2
ether 00:0d:b9:03:34:b5
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
enc0: flags=41<UP,RUNNING> mtu 1536
ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> mtu 1492
inet6 fe80::20d:b9ff:fe03:34b4%ng0 prefixlen 64 scopeid 0x5
inet 80.90.57.234 --> 80.90.46.142 netmask 0xffffffff
ng1: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng2: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng3: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng4: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng5: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng6: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng7: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng8: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng9: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng10: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng11: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng12: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng13: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng14: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500
ng15: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST> mtu 1500

So, as you can see all I get from my provider which is IPv6 is his DNS server, but no /48 assignment, no delegation happening, no routes, nothing. RA is working but link-local only. And for completeness here's the last 1000 system log entries after a reboot trying to ping and traceroute ipv6.google.com:

Code:

Apr 19 14:53:03 kernel: cannot forward src fe80:0001::92fb:a6ff:fe2e:4949, dst 2a00:1450:8002::0068, nxt 58, rcvif sis0, outif ng0
Apr 19 14:49:34 kernel: cannot forward src fe80:0001::92fb:a6ff:fe2e:4949, dst 2a00:1450:8002::0068, nxt 58, rcvif sis0, outif ng0
Apr 19 14:24:16 rtadvd[396]: <make_packet> link-layer address option has null length on ng0. Treat as not included.
Apr 19 14:24:15 dhcp6c[389]: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 19 14:24:15 dhcp6c[389]: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 19 14:24:15 rtadvd[324]: <rtmsg_input> new interface route'splen 0 is invalid for a prefix
Apr 19 14:24:15 rtadvd[324]: <rtmsg_input> deleted interface route's plen 0 is invalid for a prefix
Apr 19 14:24:12 dnsmasq[154]: using nameserver 80.90.45.67#53
Apr 19 14:24:12 dnsmasq[154]: using nameserver 80.90.44.26#53
Apr 19 14:24:12 dnsmasq[154]: reading /etc/resolv.conf
Apr 19 14:24:10 rtadvd[323]: <make_packet> link-layer address option has null length on ng0. Treat as not included.
Apr 19 14:24:08 dhcp6c[292]: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 19 14:24:08 dhcp6c[292]: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 19 14:24:08 rtadvd[162]: <rtmsg_input> new interface route'splen 0 is invalid for a prefix
Apr 19 14:24:00 /usr/local/bin/ez-ipupdate[157]: successful update for ng0->80.90.57.234 (om.itt.ed)
Apr 19 14:24:00 /usr/local/bin/ez-ipupdate[157]: SIGHUP recieved, re-reading config file
Apr 19 14:23:57 kernel: nd6_dad_timer: called with non-tentative address fe80:0005::020d:b9ff:fe03:34b4(ng0)
Apr 19 14:23:56 rtadvd[162]: <rtmsg_input> interface ng0 becomes up. restart timer.
Apr 19 14:23:56 mpd: [pppoe] rec'd unexpected protocol IPv6
Apr 19 14:23:56 mpd: 020d:b9ff:fe03:34b4 -> 02b0:4aff:fe70:981b
Apr 19 14:23:56 mpd: [pppoe] IPV6CP: LayerUp
Apr 19 14:23:56 mpd: [pppoe] IPV6CP: state change Ack-Rcvd --> Opened
Apr 19 14:23:56 mpd: [pppoe] IPV6CP: SendConfigAck #2
Apr 19 14:23:56 mpd: [pppoe] IPV6CP: rec'd Configure Request #2 (Ack-Rcvd)
Apr 19 14:23:56 mpd: [pppoe] IFACE: Up event
Apr 19 14:23:56 mpd: 80.90.57.234 -> 80.90.46.142
Apr 19 14:23:56 mpd: [pppoe] IPCP: LayerUp
Apr 19 14:23:56 mpd: [pppoe] IPCP: state change Ack-Rcvd --> Opened
Apr 19 14:23:56 mpd: IPADDR 80.90.46.142
Apr 19 14:23:56 mpd: [pppoe] IPCP: SendConfigAck #2
Apr 19 14:23:56 mpd: 80.90.46.142 is OK
Apr 19 14:23:56 mpd: IPADDR 80.90.46.142
Apr 19 14:23:56 mpd: [pppoe] IPCP: rec'd Configure Request #2 (Ack-Rcvd)
Apr 19 14:23:56 mpd: [pt15] using interface ng16
Apr 19 14:23:56 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:56 mpd: [pt14] using interface ng15
Apr 19 14:23:56 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:56 mpd: [pt13] using interface ng14
Apr 19 14:23:56 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:56 mpd: [pt12] using interface ng13
Apr 19 14:23:56 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:56 mpd: [pt11] using interface ng12
Apr 19 14:23:56 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:55 mpd: [pt10] using interface ng11
Apr 19 14:23:55 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:55 mpd: [pt9] using interface ng10
Apr 19 14:23:55 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:55 mpd: [pt8] using interface ng9
Apr 19 14:23:55 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:54 mpd: [pppoe] IPCP: LayerStart
Apr 19 14:23:54 mpd: [pppoe] IPCP: state change Initial --> Starting
Apr 19 14:23:54 mpd: [pppoe] IPCP: Open event
Apr 19 14:23:54 mpd: [pppoe] Bundle up: 1 link, total bandwidth 64000 bps
Apr 19 14:23:54 mpd: [pppoe] LCP: authorization successful
Apr 19 14:23:54 mpd: [pppoe] PAP: rec'd ACK #1
Apr 19 14:23:54 mpd: [pt0] using interface ng1
Apr 19 14:23:54 mpd: PPTP: waiting for connection on 0.0.0.0
Apr 19 14:23:54 mpd: [pppoe] LCP: LayerUp
Apr 19 14:23:54 mpd: [pppoe] PAP: sending REQUEST len:33
Apr 19 14:23:54 mpd: [pppoe] PAP: using authname "134110832@ipv6vo.lu"
Apr 19 14:23:54 mpd: [pppoe] LCP: auth: peer wants PAP, I want nothing
Apr 19 14:23:54 mpd: [pppoe] LCP: state change Ack-Sent --> Opened
Apr 19 14:23:54 mpd: MAGICNUM 8a1455b8
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: rec'd Configure Ack #2 (Ack-Sent)
Apr 19 14:23:54 mpd: [pppoe] AUTH: Cleanup
Apr 19 14:23:54 mpd: [pppoe] LCP: state change Opened --> Ack-Sent
Apr 19 14:23:54 mpd: MAGICNUM 4fdb492f
Apr 19 14:23:54 mpd: AUTHPROTO PAP
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: SendConfigAck #1
Apr 19 14:23:54 mpd: MAGICNUM 8a1455b8
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: SendConfigReq #2
Apr 19 14:23:54 mpd: [pppoe] LCP: LayerDown
Apr 19 14:23:54 mpd: MAGICNUM 4fdb492f
Apr 19 14:23:54 mpd: AUTHPROTO PAP
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: rec'd Configure Request #1 (Opened)
Apr 19 14:23:54 mpd: process 176 started, version 4.4.1 (root@mb64.neon1.net 21:35 23-Jul-2009)
Apr 19 14:23:54 mpd:
Apr 19 14:23:54 mpd: Multi-link PPP daemon for FreeBSD
Apr 19 14:23:54 kernel: ipfw2 (+ipv6) initialized, divert loadable, rule-based forwarding enabled, default to accept, logging disabled
Apr 19 14:23:54 mpd: [pppoe] LCP: LayerUp
Apr 19 14:23:54 mpd: [pppoe] PAP: sending REQUEST len:33
Apr 19 14:23:54 mpd: [pppoe] PAP: using authname "134110832@ipv6vo.lu"
Apr 19 14:23:54 mpd: [pppoe] LCP: auth: peer wants PAP, I want nothing
Apr 19 14:23:54 mpd: [pppoe] LCP: state change Ack-Sent --> Opened
Apr 19 14:23:54 mpd: MAGICNUM 8a1455b8
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: rec'd Configure Ack #1 (Ack-Sent)
Apr 19 14:23:54 mpd: [pppoe] LCP: state change Req-Sent --> Ack-Sent
Apr 19 14:23:54 mpd: MAGICNUM 0cde3adb
Apr 19 14:23:54 mpd: AUTHPROTO PAP
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: SendConfigAck #163
Apr 19 14:23:54 mpd: MAGICNUM 0cde3adb
Apr 19 14:23:54 mpd: AUTHPROTO PAP
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: rec'd Configure Request #163 (Req-Sent)
Apr 19 14:23:54 mpd: MAGICNUM 8a1455b8
Apr 19 14:23:54 mpd: MRU 1492
Apr 19 14:23:54 mpd: [pppoe] LCP: SendConfigReq #1
Apr 19 14:23:54 mpd: [pppoe] LCP: state change Starting --> Req-Sent
Apr 19 14:23:54 mpd: [pppoe] LCP: Up event
Apr 19 14:23:54 mpd: [pppoe] link: origination is local
Apr 19 14:23:54 mpd: [pppoe] link: UP event
Apr 19 14:23:54 mpd: [pppoe] PPPoE: connection successful
Apr 19 14:23:54 mpd: PPPoE: rec'd ACNAME "PTRAS08"
Apr 19 14:23:53 rtadvd[161]: <make_packet> link-layer address option has null length on ng0. Treat as not included.
Apr 19 14:23:53 /usr/local/bin/ez-ipupdate[157]: (om.itt.ed) unable to resolve interface ng0
Apr 19 14:23:53 /usr/local/bin/ez-ipupdate[157]: got last update 80.90.57.90 on 2011/04/19 14:00 from cache file
Apr 19 14:23:53 /usr/local/bin/ez-ipupdate[157]: /usr/local/bin/ez-ipupdate started for interface ng0 host om.itt.ed using server members.dyndns.org and service dyndns
Apr 19 14:23:53 /usr/local/bin/ez-ipupdate[157]: ez-ipupdate Version 3.0.11b8, Copyright (C) 1998-2001 Angus Mackay.
Apr 19 14:23:53 dnsmasq[154]: read /etc/hosts - 4 addresses
Apr 19 14:23:53 dnsmasq[154]: using nameserver 80.90.45.15#53
Apr 19 14:23:53 dnsmasq[154]: using nameserver 80.90.45.67#53
Apr 19 14:23:53 dnsmasq[154]: using nameserver 80.90.44.26#53
Apr 19 14:23:53 dnsmasq[154]: reading /etc/resolv.conf
Apr 19 14:23:53 dnsmasq[154]: failed to access /var/db/dhcpd.leases: No such file or directory
Apr 19 14:23:53 dnsmasq[154]: failed to access /var/db/dhcpd.leases: No such file or directory
Apr 19 14:23:53 dnsmasq[154]: compile time options: IPv6 GNU-getopt BSD-bridge ISC-leasefile no-DBus no-I18N TFTP
Apr 19 14:23:53 dnsmasq[154]: started, version 2.45 cachesize 150
Apr 19 14:23:53 kernel: Trying to mount root from ufs:/dev/md0
Apr 19 14:23:53 kernel: ad0: 976MB <TOSHIBA THNCF1G02PG 1.00> at ata0-master PIO4
Apr 19 14:23:53 kernel: md0: Preloaded image </mfsroot> 16777216 bytes at 0xc086b0e8
Apr 19 14:23:53 kernel: IP Filter: v4.1.33 initialized. Default = block all, Logging = enabled
Apr 19 14:23:53 kernel: Fast IPsec: Initialized Security Association Processing.
Apr 19 14:23:53 kernel: Timecounters tick every 1.000 msec
Apr 19 14:23:53 kernel: sio1: port may not be enabled
Apr 19 14:23:53 kernel: sio1: configured irq 3 not in bitmap of probed irqs 0
Apr 19 14:23:53 kernel: sio0: type 16550A, console
Apr 19 14:23:53 kernel: sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
Apr 19 14:23:53 kernel: orm0: <ISA Option ROM> at iomem 0xe0000-0xe7fff on isa0
Apr 19 14:23:53 kernel: pmtimer0 on isa0
Apr 19 14:23:53 kernel: pci0: <bridge> at device 18.5 (no driver attached)
Apr 19 14:23:53 kernel: Timecounter "Geode" frequency 27000000 Hz quality 1000
Apr 19 14:23:53 kernel: pci0: <multimedia, audio> at device 18.3 (no driver attached)
Apr 19 14:23:53 kernel: ata1: <ATA channel 1> on atapci0
Apr 19 14:23:53 kernel: ata0: <ATA channel 0> on atapci0
Apr 19 14:23:53 kernel: atapci0: <National Geode SC1100 ATA33 controller> port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc00-0xfc0f at device 18.2 on pci0
Apr 19 14:23:53 kernel: pci0: <bridge> at device 18.1 (no driver attached)
Apr 19 14:23:53 kernel: isa0: <ISA bus> on isab0
Apr 19 14:23:53 kernel: isab0: <PCI-ISA bridge> port 0xf400-0xf43f,0xf600-0xf63f at device 18.0 on pci0
Apr 19 14:23:53 kernel: Geode tinyBIOS V1.4a (C)1997-2005
Apr 19 14:23:53 kernel: sis1: Ethernet address: 00:0d:b9:03:34:b5
Apr 19 14:23:53 kernel: nsphyter1: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
Apr 19 14:23:53 kernel: nsphyter1: <DP83815 10/100 media interface> on miibus1
Apr 19 14:23:53 kernel: miibus1: <MII bus> on sis1
Apr 19 14:23:53 kernel: sis1: Silicon Revision: DP83816A
Apr 19 14:23:53 kernel: sis1: <NatSemi DP8381[56] 10/100BaseTX> port 0x1400-0x14ff mem 0x80040000-0x80040fff irq 11 at device 16.0 on pci0
Apr 19 14:23:53 kernel: sis0: Ethernet address: 00:0d:b9:03:34:b4
Apr 19 14:23:53 kernel: nsphyter0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
Apr 19 14:23:53 kernel: nsphyter0: <DP83815 10/100 media interface> on miibus0
Apr 19 14:23:53 kernel: miibus0: <MII bus> on sis0
Apr 19 14:23:53 kernel: sis0: Silicon Revision: DP83816A
Apr 19 14:23:53 kernel: sis0: <NatSemi DP8381[56] 10/100BaseTX> port 0x1000-0x10ff mem 0x80000000-0x80000fff irq 10 at device 14.0 on pci0
Apr 19 14:23:53 kernel: pci0: <PCI bus> on pcib0
Apr 19 14:23:53 kernel: pcib0: <Host to PCI bridge> pcibus 0 on motherboard
Apr 19 14:23:53 kernel: cpu0 on motherboard
Apr 19 14:23:53 kernel: ath_hal: 0.9.20.3 (AR5210, AR5211, AR5212, RF5111, RF5112, RF2413, RF5413)
Apr 19 14:23:53 kernel: wlan: mac acl policy registered
Apr 19 14:23:53 kernel: avail memory = 105136128 (100 MB)
Apr 19 14:23:53 kernel: real memory = 134217728 (128 MB)
Apr 19 14:23:53 kernel: Features=0x808131<FPU,TSC,MSR,CX8,CMOV,MMX>
Apr 19 14:23:53 kernel: Origin = "Geode by NSC" Id = 0x540 Stepping = 0
Apr 19 14:23:53 kernel: CPU: Geode(TM) Integrated Processor by National Semi (266.65-MHz 586-class CPU)
Apr 19 14:23:53 kernel: Timecounter "i8254" frequency 1193182 Hz quality 0
Apr 19 14:23:53 kernel: root@mb64.neon1.net:/usr/src/sys/i386/compile/M0N0WALL_EMBEDDED
Apr 19 14:23:53 kernel: FreeBSD 6.4-RELEASE-p5 #0: Sun Jan 9 22:24:57 CET 2011
Apr 19 14:23:53 kernel: FreeBSD is a registered trademark of The FreeBSD Foundation.
Apr 19 14:23:53 kernel: The Regents of the University of California. All rights reserved.
Apr 19 14:23:53 kernel: Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
Apr 19 14:23:53 kernel: Copyright (c) 1992-2008 The FreeBSD Project.
Apr 19 14:23:53 syslogd: kernel boot file is /kernel

Getting quite desperate around here, hope you guys can help me get this thing working.

Thx and greetings from sunny Luxembourg

Are you using monowall ? That dhcp6c config doesn't look like it came from monowall ?

If you are using ppp then you should be using ng0 for dhcp, not sis0

Sure I'm using m0n0wall, why would I be on this forum otherwise?

I went partially manual because the webinterface doesn't seem to be able to accomodate my ISPs setup just yet. The dhcp6c.conf.sample that I used came from this exact thread (end of page 1 somewhere) plus I was fiddling around with it until of course I got the most useful output

So now this might as well become a bugreport: When configuring my DHCP-PD IPv6 via webinterface I get lots of errors in the system logs when setting WAN Type to PPPoE, IPv6 Mode to PPP, IPv6 RA (doc says it's usually not necessary, but should't hurt either, or does it?) and on the LAN I set IPv6-Mode: DHCP-PD, PD: 1/48, plus all three checkboxes ticked under IPv6 RA.

The errors are about some config parsing errors (from dhcp6s) and invalid prefix lengths (from rtadvd):

Apr 19 14:24:16   rtadvd[396]: <make_packet> link-layer address option has null length on ng0. Treat as not included.

Apr 19 16:44:54   dhcp6s[860]: main: failed to parse configuration file
Apr 19 16:44:54   dhcp6s[860]: main: failed to parse configuration file
Apr 19 16:44:54   dhcp6s[860]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: fatal parse failure: exiting
Apr 19 16:44:54   dhcp6s[860]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: fatal parse failure: exiting
Apr 19 16:44:54   dhcp6s[860]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: invalid IPv6 address: DHCP-PD
Apr 19 16:44:54   dhcp6s[860]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: invalid IPv6 address: DHCP-PD
Apr 19 16:38:15   dhcp6s[803]: main: failed to parse configuration file
Apr 19 16:38:15   dhcp6s[803]: main: failed to parse configuration file
Apr 19 16:38:15   dhcp6s[803]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: fatal parse failure: exiting
Apr 19 16:38:15   dhcp6s[803]: yyerror0: /var/etc/dhcp6s.sis0.conf 3: fatal parse failure: exiting

Code:

$ cat /var/etc/dhcp6s.sis0.conf

option domain-name "om.mit.ted";
option domain-name-servers DHCP-PD;


interface sis0 {
preference 255;
address-pool poolsis0 7200 86400;
};

pool poolsis0 {
        range fd00::ff00 to fd00::ffff ;
};

host m0n0wall {
        duid 00:0d:b9:03:34:b4;
        address DHCP-PD infinity;

Obviously I also enabled the IPv6 DHCP server (but not the v4) on the LAN, otherwise that dhcp6s.sis0.config wouldn't even exist as it seems... In fact as of yet I'm quite unable to figure out how this whole process of prefix delegation actually works. Am I right that there's a dhcp6c listening on the WAN (ng0) which is telling a separate dhcp6s (via TCP? forks? pipes? how does that work?) on the LAN what IPs to distribute to the clients? That would explain why "DHCP-PD" is twice in the config but then why do we also have to enter some private fdxx:<bla> IP in the DHCPv6's config in the web-UI whereas these should be delegated addresses? Or will m0n0 then send each client 3 types of IPv6s, one link-local, one private and one public? That would in fact make some sort of sense but... nah, still prefer my good ol' NAT

Well thanks for the quick support so far, I'll give it some more tries tomorrow as it's already quite late around here...

dhcp6c will send a dhcp request on ng0, and if it gets a prefix delegation, will configure the ipv6 addr on the LAN nic.

I'll look at the dhcp6s problem, but you could disable is and use RA's only on the LAN if you are dual stacked.

you don't need WAN RA at all (this will be removed in future versions most likely)

you lan should probably /64 looking at the screenshots of the fritzbox

Allright, seems like that did the trick, or at least somehow: It still does NOT work unless I do an "ipfw flush" before launching dhcp6c although I have any-to-any-permitting rules on top of my firewall settings, on both interfaces and for both IP-versions.

My /tmp/dhcp6c.conf.sample is now:

interface ng0 {
  send ia-pd 0;
};
id-assoc pd 0 {
  prefix-interface sis0 {
    sla-id 1;
    sla-len 16;
  };
};

$ /tmp/dhcp6c -c /tmp/dhcp6c.conf.sample  -d -D -f ng0
Apr/20/2011 17:09:07: get_duid: extracted an existing DUID from /var/db/dhcp6c_duid: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:09:07: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr/20/2011 17:09:07: client6_init: failed initialize control message authentication
Apr/20/2011 17:09:07: client6_init: skip opening control port
Apr/20/2011 17:09:07: cfdebug_print: <3>[interface] (9)
Apr/20/2011 17:09:07: cfdebug_print: <5>[ng0] (3)
Apr/20/2011 17:09:07: cfdebug_print: <3>begin of closure [{] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>[send] (4)
Apr/20/2011 17:09:07: cfdebug_print: <3>[ia-pd] (5)
Apr/20/2011 17:09:07: cfdebug_print: <3>

• (1)

Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>[id-assoc] (
Apr/20/2011 17:09:07: cfdebug_print: <13>[pd] (2)
Apr/20/2011 17:09:07: cfdebug_print: <13>

• (1)

Apr/20/2011 17:09:07: cfdebug_print: <13>begin of closure [{] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>[prefix-interface] (16)
Apr/20/2011 17:09:07: cfdebug_print: <5>[sis0] (4)
Apr/20/2011 17:09:07: cfdebug_print: <3>begin of closure [{] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>[sla-id] (6)
Apr/20/2011 17:09:07: cfdebug_print: <3>[1] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>[sla-len] (7)
Apr/20/2011 17:09:07: cfdebug_print: <3>[16] (2)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:09:07: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:09:07: configure_pool: called
Apr/20/2011 17:09:07: clear_poolconf: called
Apr/20/2011 17:09:07: dhcp6_reset_timer: reset a timer on ng0, state=INIT, timeo=0, retrans=383
Apr/20/2011 17:09:07: client6_send: a new XID (25efb6) is generated
Apr/20/2011 17:09:07: copy_option: set client ID (len 14)
Apr/20/2011 17:09:07: copy_option: set elapsed time (len 2)
Apr/20/2011 17:09:07: copyout_option: set IA_PD
Apr/20/2011 17:09:07: client6_send: send solicit to ff02::1:2%ng0
Apr/20/2011 17:09:07: dhcp6_reset_timer: reset a timer on ng0, state=SOLICIT, timeo=0, retrans=1088
Apr/20/2011 17:09:07: client6_recv: receive advertise from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/20/2011 17:09:07: dhcp6_get_options: get DHCP option server ID, len 10
Apr/20/2011 17:09:07:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/20/2011 17:09:07: dhcp6_get_options: get DHCP option client ID, len 14
Apr/20/2011 17:09:07:   DUID: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:09:07: dhcp6_get_options: get DHCP option DNS, len 16
Apr/20/2011 17:09:07: dhcp6_get_options: get DHCP option domain search list, len 7
Apr/20/2011 17:09:07: dhcp6_get_options: get DHCP option IA_PD, len 41
Apr/20/2011 17:09:07:   IA_PD: ID=0, T1=302400, T2=483840
Apr/20/2011 17:09:07: copyin_option: get DHCP option IA_PD prefix, len 25
Apr/20/2011 17:09:07: copyin_option:   IA_PD prefix: 2001:1610:3:3e::/63 pltime=604800 vltime=2592000
Apr/20/2011 17:09:07: client6_recvadvert: server ID: 00:03:00:01:00:b0:4a:70:98:1b, pref=-1
Apr/20/2011 17:09:07: client6_recvadvert: reset timer for ng0 to 0.962593
Apr/20/2011 17:09:08: select_server: picked a server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/20/2011 17:09:08: client6_send: a new XID (f565e6) is generated
Apr/20/2011 17:09:08: copy_option: set client ID (len 14)
Apr/20/2011 17:09:08: copy_option: set server ID (len 10)
Apr/20/2011 17:09:08: copy_option: set elapsed time (len 2)
Apr/20/2011 17:09:08: copyout_option: set IA_PD prefix
Apr/20/2011 17:09:08: copyout_option: set IA_PD
Apr/20/2011 17:09:08: client6_send: send request to ff02::1:2%ng0
Apr/20/2011 17:09:08: dhcp6_reset_timer: reset a timer on ng0, state=REQUEST, timeo=0, retrans=977
Apr/20/2011 17:09:08: client6_recv: receive reply from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/20/2011 17:09:08: dhcp6_get_options: get DHCP option server ID, len 10
Apr/20/2011 17:09:08:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/20/2011 17:09:08: dhcp6_get_options: get DHCP option client ID, len 14
Apr/20/2011 17:09:08:   DUID: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:09:08: dhcp6_get_options: get DHCP option DNS, len 16
Apr/20/2011 17:09:08: dhcp6_get_options: get DHCP option domain search list, len 7
Apr/20/2011 17:09:08: dhcp6_get_options: get DHCP option IA_PD, len 41
Apr/20/2011 17:09:08:   IA_PD: ID=0, T1=302400, T2=483840
Apr/20/2011 17:09:08: copyin_option: get DHCP option IA_PD prefix, len 25
Apr/20/2011 17:09:08: copyin_option:   IA_PD prefix: 2001:1610:3:3e::/63 pltime=604800 vltime=2592000
Apr/20/2011 17:09:08: info_printf: nameserver[0] 2001:1610:0:3::25
Apr/20/2011 17:09:08: info_printf: Domain search list[0] vo.lu.
Apr/20/2011 17:09:08: get_ia: make an IA: PD-0
Apr/20/2011 17:09:08: update_prefix: create a prefix 2001:1610:3:3e::/63 pltime=604800, vltime=2592000
Apr/20/2011 17:09:08: add_ifprefix: invalid prefix length 63 + 16 + 64
Apr/20/2011 17:09:08: dhcp6_remove_event: removing an event on ng0, state=REQUEST
Apr/20/2011 17:09:08: dhcp6_remove_event: removing server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/20/2011 17:09:08: client6_recvreply: got an expected reply, sleeping.


So I guess that should be telling me that the prefix-length for VO.lu is not the usual 16 but 1 (many thanks VO for the perfectly useless instructions!) and indeed, after setting sla-len to 1:


$ /tmp/dhcp6c -c /tmp/dhcp6c.conf.sample -d -D -f ng0
Apr/20/2011 17:21:58: get_duid: extracted an existing DUID from /var/db/dhcp6c_duid: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:21:58: dhcp6_ctl_authinit: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr/20/2011 17:21:58: client6_init: failed initialize control message authentication
Apr/20/2011 17:21:58: client6_init: skip opening control port
Apr/20/2011 17:21:58: cfdebug_print: <3>[interface] (9)
Apr/20/2011 17:21:58: cfdebug_print: <5>[ng0] (3)
Apr/20/2011 17:21:58: cfdebug_print: <3>begin of closure [{] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>[send] (4)
Apr/20/2011 17:21:58: cfdebug_print: <3>[ia-pd] (5)
Apr/20/2011 17:21:58: cfdebug_print: <3>

• (1)

Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>[id-assoc] (
Apr/20/2011 17:21:58: cfdebug_print: <13>[pd] (2)
Apr/20/2011 17:21:58: cfdebug_print: <13>

• (1)

Apr/20/2011 17:21:58: cfdebug_print: <13>begin of closure [{] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>[prefix-interface] (16)
Apr/20/2011 17:21:58: cfdebug_print: <5>[sis0] (4)
Apr/20/2011 17:21:58: cfdebug_print: <3>begin of closure [{] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>[sla-id] (6)
Apr/20/2011 17:21:58: cfdebug_print: <3>[1] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>[sla-len] (7)
Apr/20/2011 17:21:58: cfdebug_print: <3>[1] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of closure [}] (1)
Apr/20/2011 17:21:58: cfdebug_print: <3>end of sentence [;] (1)
Apr/20/2011 17:21:58: configure_pool: called
Apr/20/2011 17:21:58: clear_poolconf: called
Apr/20/2011 17:21:58: dhcp6_reset_timer: reset a timer on ng0, state=INIT, timeo=0, retrans=383
Apr/20/2011 17:21:58: client6_send: a new XID (6e9194) is generated
Apr/20/2011 17:21:58: copy_option: set client ID (len 14)
Apr/20/2011 17:21:58: copy_option: set elapsed time (len 2)
Apr/20/2011 17:21:58: copyout_option: set IA_PD
Apr/20/2011 17:21:58: client6_send: send solicit to ff02::1:2%ng0
Apr/20/2011 17:21:58: dhcp6_reset_timer: reset a timer on ng0, state=SOLICIT, timeo=0, retrans=1088
Apr/20/2011 17:21:58: client6_recv: receive advertise from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/20/2011 17:21:58: dhcp6_get_options: get DHCP option server ID, len 10
Apr/20/2011 17:21:58:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/20/2011 17:21:58: dhcp6_get_options: get DHCP option client ID, len 14
Apr/20/2011 17:21:58:   DUID: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:21:58: dhcp6_get_options: get DHCP option DNS, len 16
Apr/20/2011 17:21:58: dhcp6_get_options: get DHCP option domain search list, len 7
Apr/20/2011 17:21:58: dhcp6_get_options: get DHCP option IA_PD, len 41
Apr/20/2011 17:21:58:   IA_PD: ID=0, T1=302400, T2=483840
Apr/20/2011 17:21:58: copyin_option: get DHCP option IA_PD prefix, len 25
Apr/20/2011 17:21:58: copyin_option:   IA_PD prefix: 2001:1610:3:3e::/63 pltime=604800 vltime=2592000
Apr/20/2011 17:21:58: client6_recvadvert: server ID: 00:03:00:01:00:b0:4a:70:98:1b, pref=-1
Apr/20/2011 17:21:58: client6_recvadvert: reset timer for ng0 to 0.982496
Apr/20/2011 17:21:59: select_server: picked a server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/20/2011 17:21:59: client6_send: a new XID (8f51b6) is generated
Apr/20/2011 17:21:59: copy_option: set client ID (len 14)
Apr/20/2011 17:21:59: copy_option: set server ID (len 10)
Apr/20/2011 17:21:59: copy_option: set elapsed time (len 2)
Apr/20/2011 17:21:59: copyout_option: set IA_PD prefix
Apr/20/2011 17:21:59: copyout_option: set IA_PD
Apr/20/2011 17:21:59: client6_send: send request to ff02::1:2%ng0
Apr/20/2011 17:21:59: dhcp6_reset_timer: reset a timer on ng0, state=REQUEST, timeo=0, retrans=977
Apr/20/2011 17:21:59: client6_recv: receive reply from fe80::2b0:4aff:fe70:981b%ng0 on ng0
Apr/20/2011 17:21:59: dhcp6_get_options: get DHCP option server ID, len 10
Apr/20/2011 17:21:59:   DUID: 00:03:00:01:00:b0:4a:70:98:1b
Apr/20/2011 17:21:59: dhcp6_get_options: get DHCP option client ID, len 14
Apr/20/2011 17:21:59:   DUID: 00:01:00:01:15:41:a6:0b:00:0d:b9:03:34:b4
Apr/20/2011 17:21:59: dhcp6_get_options: get DHCP option DNS, len 16
Apr/20/2011 17:21:59: dhcp6_get_options: get DHCP option domain search list, len 7
Apr/20/2011 17:21:59: dhcp6_get_options: get DHCP option IA_PD, len 41
Apr/20/2011 17:21:59:   IA_PD: ID=0, T1=302400, T2=483840
Apr/20/2011 17:21:59: copyin_option: get DHCP option IA_PD prefix, len 25
Apr/20/2011 17:21:59: copyin_option:   IA_PD prefix: 2001:1610:3:3e::/63 pltime=604800 vltime=2592000
Apr/20/2011 17:21:59: info_printf: nameserver[0] 2001:1610:0:3::25
Apr/20/2011 17:21:59: info_printf: Domain search list[0] vo.lu.
Apr/20/2011 17:21:59: get_ia: make an IA: PD-0
Apr/20/2011 17:21:59: update_prefix: create a prefix 2001:1610:3:3e::/63 pltime=604800, vltime=2592000
Apr/20/2011 17:21:59: ifaddrconf: add an address 2001:1610:3:3f:20d:b9ff:fe03:34b4/64 on sis0
Apr/20/2011 17:21:59: dhcp6_remove_event: removing an event on ng0, state=REQUEST
Apr/20/2011 17:21:59: dhcp6_remove_event: removing server (ID: 00:03:00:01:00:b0:4a:70:98:1b)
Apr/20/2011 17:21:59: client6_recvreply: got an expected reply, sleeping.


... delegatgion is indeed happening on my XP box


        Description . . . . . . . . . . . : Atheros AR8131 PCI-E Gigabit Ethernet Controller
        Physical Address. . . . . . . . . : 90-FB-A6-2E-49-49
        Dhcp Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 10.0.0.30
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        IP Address. . . . . . . . . . . . : 2001:1610:3:3f:c15e:68b2:131f:7e40
        IP Address. . . . . . . . . . . . : 2001:1610:3:3f:92fb:a6ff:fe2e:4949
        IP Address. . . . . . . . . . . . : fe80::92fb:a6ff:fe2e:4949%7
        Default Gateway . . . . . . . . . : 10.0.0.1
                                            fe80::20d:b9ff:fe03:34b4%7
        DNS Servers . . . . . . . . . . . : 10.0.0.1
                                            80.90.45.15
                                            fec0:0:0:ffff::1%1
                                            fec0:0:0:ffff::2%1
                                            fec0:0:0:ffff::3%1

... although I don't know why it is being assigned two public IPv6's and why it didn't get neither the right default gateway nor the DNS settings from the RA (is it rtadvd or dhcp6c who's doing this assignment?):


C:\Documents and Settings\root>tracert ipv6.google.com

Tracing route to ipv6.l.google.com [2a00:1450:8002::69]
over a maximum of 30 hops:

  1     *        *        *     Request timed out.
  2     *        *     ^C


My m0n0's LAN is being assigned a public v6 also so I guess I could just manually add this as my default route, but that's not really the solution. Will give it some more tries later, have appointments waiting...

[ipconfig /all]

Cool, that totally works Wasn't really expecting that according to several posts above me.

So I'm just gonna complete my little "tutorial", maybe it's gonna help one or the other...

C:\Documents and Settings\root>ipconfig /all
...
        Description . . . . . . . . . . . : Atheros AR8131 PCI-E Gigabit Ethernet Controller
        Physical Address. . . . . . . . . : 90-FB-A6-2E-49-49
        Dhcp Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 10.0.0.30
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        IP Address. . . . . . . . . . . . : 2001:1610:3:3f:c15e:68b2:131f:7e40
        IP Address. . . . . . . . . . . . : 2001:1610:3:3f:92fb:a6ff:fe2e:4949
        IP Address. . . . . . . . . . . . : fe80::92fb:a6ff:fe2e:4949%7
        Default Gateway . . . . . . . . . : 10.0.0.1
        DNS Servers . . . . . . . . . . . : 10.0.0.1
                                            80.90.45.15
                                            fec0:0:0:ffff::1%1
                                            fec0:0:0:ffff::2%1
                                            fec0:0:0:ffff::3%1
        NetBIOS over Tcpip. . . . . . . . : Disabled
...


C:\Documents and Settings\root>netsh interface ipv6 show routes
Querying active state...

Publish  Type       Met  Prefix                    Idx  Gateway/Interface Name
-------  --------  ----  ------------------------  ---  ---------------------
no       Autoconf   256  ::/0                        7  fe80::20d:b9ff:fe03:34b4
no       Autoconf     8  2001:1610:3:3f::/64         7  LAN


C:\Documents and Settings\root>netsh interface ipv6 add route ::/0 7 2001:1610:3:3f:20d:b9ff:fe03:34b4 (Router's LAN IP copy+pasted from http://m0n0wall/status_interfaces.php)
Ok.


C:\Documents and Settings\root>netsh interface ipv6 show routes
Querying active state...

Publish  Type       Met  Prefix                    Idx  Gateway/Interface Name
-------  --------  ----  ------------------------  ---  ---------------------
no       Manual       0  ::/0                        7  2001:1610:3:3f:20d:b9ff:fe03:34b4
no       Autoconf   256  ::/0                        7  fe80::20d:b9ff:fe03:34b4
no       Autoconf     8  2001:1610:3:3f::/64         7  LAN


C:\Documents and Settings\root>ping ipv6.google.com

Pinging ipv6.l.google.com [2a00:1450:8002::67] with 32 bytes of data:

Reply from 2a00:1450:8002::67: time=40ms
Reply from 2a00:1450:8002::67: time=36ms
Reply from 2a00:1450:8002::67: time=34ms
Reply from 2a00:1450:8002::67: time=34ms

Ping statistics for 2a00:1450:8002::67:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 34ms, Maximum = 40ms, Average = 36ms

C:\Documents and Settings\root>tracert ipv6.google.com

Tracing route to ipv6.l.google.com [2a00:1450:8002::67]
over a maximum of 30 hops:

  1    <1 ms    <1 ms    <1 ms  2001:1610:3:3f:20d:b9ff:fe03:34b4
  2    13 ms    15 ms    14 ms  2001:1610:0:5::1
  3    14 ms    14 ms    14 ms  2001:1610:0:4::1
  4     *       14 ms    15 ms  2001:1610:0:3::2
  5    25 ms    26 ms    25 ms  2001:978:2:4c::5
  6     *        *        *     Request timed out.
  7     *        *        *     Request timed out.
  8     *        *        *     Request timed out.
  9    40 ms    45 ms    60 ms  2001:978:3::a2
 10    21 ms    22 ms    22 ms  2001:4860::1:0:10
 11    32 ms    29 ms    30 ms  2001:4860::1:0:8
 12    48 ms    35 ms    35 ms  2001:4860::8:0:2ac4
 13    37 ms    56 ms    34 ms  2001:4860::2:0:87b
 14    43 ms    35 ms    53 ms  2001:4860:0:1::23
 15    35 ms    34 ms    37 ms  2a00:1450:8002::67

Trace complete.


So I guess for now we can conclude that IPv6 on the edge of the Interwebs is still pretty much very broken apart from being a pain in the ... to set up for lack of standardisation (ISP-wise) and "just works"-appliances.

Isn't it funny how almost whole of humanity ignored this ugly bit*h of a supposed-to-be-future-standard completely until it oh so unexpectedly had become too late? Silly us There's just no way v6 is gonna be deployed globally in a working manner within years to come. Zero net growth for the next 3-5 maybe 10 years, well hooray... But maybe that's a good thing, enough morons on the v4-pipes already Oh well, just my 2 cents, sorry for going OT...