From owner-freebsd-questions@freebsd.org Fri Jun 10 13:53:07 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5834DB70182; Fri, 10 Jun 2016 13:53:07 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from mail.allbsd.org (gatekeeper.allbsd.org [IPv6:2001:2f0:104:e001::32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "*.allbsd.org", Issuer "RapidSSL SHA256 CA - G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 84B311127; Fri, 10 Jun 2016 13:53:06 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from mail-d.allbsd.org ([IPv6:2400:402e:a012:6300:58:65ff:fe00:b0b]) (authenticated bits=56) by mail.allbsd.org (8.15.2/8.15.2) with ESMTPSA id u5ADqfM6009802 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) (Client CN "/OU=GT07882699/OU=See+20www.rapidssl.com/resources/cps+20+28c+2915/OU=Domain+20Control+20Validated+20-+20RapidSSL+28R+29/CN=*.allbsd.org", Issuer "/C=US/O=GeoTrust+20Inc./CN=RapidSSL+20SHA256+20CA+20-+20G3"); Fri, 10 Jun 2016 22:52:57 +0900 (JST) (envelope-from hrs@FreeBSD.org) Received: from alph.allbsd.org ([IPv6:2400:402e:a012:6300:16:ceff:fe34:2700]) by mail-d.allbsd.org (8.15.2/8.15.2) with ESMTPS id u5ADqffS086759 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 10 Jun 2016 22:52:41 +0900 (JST) (envelope-from hrs@FreeBSD.org) Received: from localhost (localhost [IPv6:::1]) (authenticated bits=0) by alph.allbsd.org (8.15.2/8.15.2) with ESMTPA id u5ADqb7K086756; Fri, 10 Jun 2016 22:52:40 +0900 (JST) (envelope-from hrs@FreeBSD.org) Date: Fri, 10 Jun 2016 22:50:31 +0900 (JST) Message-Id: <20160610.225031.1318863285679295699.hrs@allbsd.org> To: stdin@niklaas.eu Cc: freebsd-net@freebsd.org, freebsd-questions@freebsd.org Subject: Re: And what about ipv6_defaultrouter? From: Hiroki Sato In-Reply-To: <20160610071254.GC2817@box-hlm-03.niklaas.eu> References: <20160610065224.GB2817@box-hlm-03.niklaas.eu> <20160610071254.GC2817@box-hlm-03.niklaas.eu> X-PGPkey-fingerprint: BDB3 443F A5DD B3D0 A530 FFD7 4F2C D3D8 2793 CF2D X-Mailer: Mew version 6.7 on Emacs 24.5 / Mule 6.0 (HANACHIRUSATO) Mime-Version: 1.0 Content-Type: Multipart/Signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="--Security_Multipart(Fri_Jun_10_22_50_31_2016_828)--" Content-Transfer-Encoding: 7bit X-Virus-Scanned: clamav-milter 0.99 at gatekeeper.allbsd.org X-Virus-Status: Clean X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (mail.allbsd.org [IPv6:2001:2f0:104:e001::32]); Fri, 10 Jun 2016 22:52:58 +0900 (JST) X-Spam-Status: No, score=-96.6 required=13.0 tests=CONTENT_TYPE_PRESENT, QENCPTR1,RCVD_IN_AHBL,RCVD_IN_AHBL_PROXY,RCVD_IN_AHBL_SPAM,RCVD_IN_CHINA, RCVD_IN_CHINA_KR,RCVD_IN_TAIWAN,RDNS_NONE,SPF_SOFTFAIL,USER_IN_WHITELIST autolearn=no autolearn_force=no version=3.4.1 X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on gatekeeper.allbsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Jun 2016 13:53:07 -0000 ----Security_Multipart(Fri_Jun_10_22_50_31_2016_828)-- Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Niklaas Baudet von Gersdorff wrote in <20160610071254.GC2817@box-hlm-03.niklaas.eu>: st> Niklaas Baudet von Gersdorff [2016-06-10 08:52 +0200] : st> st> > --------------------8<-------------------- st> > ifconfig_vtnet0="DHCP" st> > ifconfig_vtnet0_ipv6="inet6 accept_rtadv" st> > rtsold_enable="YES" st> > -------------------->8-------------------- st> [...] st> > --------------------8<-------------------- st> > ipv6_defaultrouter="" st> > -------------------->8-------------------- st> st> Plus these lines: st> st> --------------------8<-------------------- st> gateway_enable="YES" st> ipv6_gateway_enable="YES" st> -------------------->8-------------------- A router does not accept RAs (more strictly, default route information in RA) because it is a sender of RAs. However, some devices such as CPE need to behave like a host for the uplink and a router for the LAN. In that case, an interface on the WAN side has to accept RAs and one on the LAN side has to send RAs. On FreeBSD, there is a knob to support it. Set the following variable to rc.conf in addition to your current configuration: ipv6_cpe_wanif="vtnet0" This touches some per-IF flags and sysctls. For more complex configurations such as having two or more uplinks you need to set them manually, but if you have only one uplink the above variable should do the trick. And, $rtsold_enable is not required unless you want to get DNS server information from RAs. -- Hiroki ----Security_Multipart(Fri_Jun_10_22_50_31_2016_828)-- Content-Type: application/pgp-signature Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEABECAAYFAldaxacACgkQTyzT2CeTzy3RVQCg0tDzc6mr49Vo7ixexi3JETZG m70AnjAG7p2A8ZNmunxxJQX3tDFQ7sT2 =esrc -----END PGP SIGNATURE----- ----Security_Multipart(Fri_Jun_10_22_50_31_2016_828)----