Solution for IPv6 dropping Default Route

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
mac913
DD-WRT Guru


Joined: 02 May 2008
Posts: 1405
Location: Canada

PostPosted: Sun Dec 31, 2017 18:56    Post subject: Solution for IPv6 dropping Default Route Reply with quote
A couple of weeks ago Telus a local ISP was running Fibre through out our neighbourhood and directly to my home. At the time I was on Cable with 150/10 and wasn’t happy with the service. Early this week I called Telus to get more information on their PureFibre service and requested installation for PureFibre 150/150.

With the Cable ISP, IPv6 was not implemented and configured IPv6 with with TunnelBroker with the help of JAMESMTL. Now with Telus PureFibre they provided IPv6 services and I went ahead and made the changes on my R7000 Gateway Router with KongAC Build 33770M. After bootup all 4 Brx had IPv6 from Telus. But after a couple of hours the networks had no IPv6 connectivity, Reboot would get IPv6 working again but also fail after a couple of hours. I tried many changes to my configuration with with the same problem until I came across this article:

https://rsalveti.wordpress.com/2016/07/27/netgear-r7000-dd-wrt-ipv6-and-the-lack-of-a-stable-gateway/

I had the same issue, the IPv6 Default Route would time out and no IPv6 service. Basically you need the rdisc6 package (easily done with Kong’s Bootstrap) and run it as a Cron Job.

Here’s my working IPv6 on 4 networks with Telus PureFibre on a R7000 with KongAC 33770M:

Note: The IPv6 DNS in my setup/example is with DNS.Watch that supports DNSSEC.

Setup → IPV6 (for Telus PureFibre)

IPv6: Enabled
Pv6 Type: DHCPv6 with Prefix Delegation
Prefix Length: 56
Static DNS 1: 2001:1608:10:25::1c04:b12f
Static DNS 2: 2001:1608:10:25::9249:d69b
MTU: 1472

Dhcp6c custom: Enable

Dhcp6c conif: (for 4 networks)

Code:

interface vlan2 {
 send ia-pd 0;
 send rapid-commit;
 request domain-name-servers;
 script "/sbin/dhcp6c-state";
};
id-assoc pd 0 {
 prefix-interface br0 {
  sla-id 0;
  sla-len 8;
 };
 prefix-interface br1 {
  sla-id 1;
  sla-len 8;
 };
 prefix-interface br2 {
  sla-id 2;
  sla-len 8;
 };
 prefix-interface br3 {
  sla-id 3;
  sla-len 8;
 };
};
id-assoc na 0 { };



Services → Services

Additional DNSMasq Options for IPv6

# Enable DNSSEC for supporting servers
proxy-dnssec
# IPv6 and RA configuration
enable-ra
#
# -- BR0 IPv6 --
ra-param=br0,60,1800
dhcp-range=br0,::1,constructor:br0,ra-stateless,1h
dhcp-option=br0,option6:dns-server,[2001:1608:10:25::1c04:b12f],[2001:1608:10:25::9249:d69b]
dhcp-option=br0,option6:ntp-server,[2001:470:0:50::2]
#
# -- BR1 IPv6 –
interface=br1
ra-param=br1,60,1800
dhcp-range=br1,::1,constructor:br1,ra-stateles,1h
dhcp-option=br1,option6:dns-server,[2001:1608:10:25::1c04:b12f],[2001:1608:10:25::9249:d69b]
dhcp-option=br1,option6:ntp-server,[2001:470:0:50::2]
#
# -- BR2 IPv6 --
interface=br2
ra-param=br2,60,1800
dhcp-range=br2,::1,constructor:br2,ra-stateless,1h
dhcp-option=br2,option6:dns-server,[2001:1608:10:25::1c04:b12f],[2001:1608:10:25::9249:d69b]
dhcp-option=br2,option6:ntp-server,[2001:470:0:50::2]
#
# --BR3 IPv6 –
interface=br3
ra-param=br3,60,1800
dhcp-range=br3,::1,constructor:br3,ra-stateless,1h
dhcp-option=br3,option6:dns-server,[2001:1608:10:25::1c04:b12f],[2001:1608:10:25::9249:d69b]
dhcp-option=br3,option6:ntp-server,[2001:470:0:50::2]
#
quiet-ra
quiet-dhcp
quiet-dhcp6


Administration → Commands

Firewall (for IPv6)

# IPv6 Configuartion
ip6tables -I INPUT 3 -i br3 -j ACCEPT
ip6tables -I INPUT 3 -i br2 -j ACCEPT
ip6tables -I INPUT 3 -i br1 -j ACCEPT


Administration → Management

Cron Job (run every 15min)

*/15 * * * * root /opt/usr/bin/rdisc6 -1 -q vlan2

_________________
Home Network on Telus PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway WiFi 3xVPN - KONGAT 39855M
E3000 - Gateway Wired IPTV - DDWRT r35531 Mega
WHR-HP-G54 - Internal Routing - DDWRT r35531 std-special

______________________
Off Site 1

R7000 - Gateway, WiFi & VPN - KONGAC 39855M
WRT610Nv1 - Repeater Bridge - DDWRT r33679 Mega K2.4

__________________________
Off Site 2

R7000 - Gateway & WiFi - KONGAC 39855M
E2000 - Wired PVR Blocker - DDWRT r35531

__________________
YAMon 3.4 | Ad-Blocking for DD-WRT | DNSCrypt-Proxy V2
Sponsor
mac913
DD-WRT Guru


Joined: 02 May 2008
Posts: 1405
Location: Canada

PostPosted: Tue Oct 30, 2018 18:22    Post subject: Reply with quote
R7000 Running Great on Kong's 36070M. Cleaned up the script and removed remarks in DNSMasq....

Setup → IPV6 (for Telus PureFibre)

IPv6: Enabled
Pv6 Type: DHCPv6 with Prefix Delegation
Prefix Length: 64
Static DNS 1:
Static DNS 2:
MTU: 1472

Dhcp6s: Disabled
Radvd: Disabled
Dhcp6c custom: Enable

Dhcp6c conif: (for 4 networks)

Code:

interface vlan2 {
 send ia-pd 0;
 send rapid-commit;
 request domain-name-servers;
 script "/sbin/dhcp6c-state";
};
id-assoc pd 0 {
 prefix ::/56 infinity;
 prefix-interface br0 {
  sla-id 0;
  sla-len 8;
 };
 prefix-interface br1 {
  sla-id 1;
  sla-len 8;
 };
 prefix-interface br2 {
  sla-id 2;
  sla-len 8;
 };
 prefix-interface br3 {
  sla-id 3;
  sla-len 8;
 };
};
id-assoc na 0 { };


Services → Services -> Additional DNSMasq Options for IPv6

Code:

interface=*
dhcp-range=::,constructor:br0,slaac,1h
dhcp-option=br0,option6:dns-server,[2001:67c:28a4::]
dhcp-range=::,constructor:br1,slaac,1h
dhcp-option=br1,option6:dns-server,[2001:67c:28a4::]
dhcp-range=::,constructor:br2,slaac,1h
dhcp-option=br2,option6:dns-server,[2001:67c:28a4::]
dhcp-range=::,constructor:br3,slaac,1h
dhcp-option=br3,option6:dns-server,[2001:67c:28a4::]
ra-param=*,60,1800
enable-ra
quiet-ra
quiet-dhcp6


Administration → Commands -> Firewall (for IPv6)

Code:

# IPv6 Configuartion
ip6tables -I INPUT 3 -i br3 -j ACCEPT
ip6tables -I INPUT 3 -i br2 -j ACCEPT
ip6tables -I INPUT 3 -i br1 -j ACCEPT


Administration → Management -> Cron Job

Code:

*/15 * * * * root /opt/usr/bin/rdisc6 -1 -q vlan2

_________________
Home Network on Telus PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway WiFi 3xVPN - KONGAT 39855M
E3000 - Gateway Wired IPTV - DDWRT r35531 Mega
WHR-HP-G54 - Internal Routing - DDWRT r35531 std-special

______________________
Off Site 1

R7000 - Gateway, WiFi & VPN - KONGAC 39855M
WRT610Nv1 - Repeater Bridge - DDWRT r33679 Mega K2.4

__________________________
Off Site 2

R7000 - Gateway & WiFi - KONGAC 39855M
E2000 - Wired PVR Blocker - DDWRT r35531

__________________
YAMon 3.4 | Ad-Blocking for DD-WRT | DNSCrypt-Proxy V2
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum