Re: M0n0wall and multiple interfaces

Author	All Replies
JTC Always Mount A Scratch Monkey join:2002-01-09 USA ·Comcast Workplace ·Integra Telecom 1 edit	reply to mcnet Re: M0n0wall and multiple interfaces said by mcnet : i think you may be off by a digit there, and have different abcd on WAN and LAN. tunnels come with single /64 routed(LAN) to another /64 which is on tunnel interface(WAN). Thanks for replying! This is what I received from he: Tunnel info: Server IPv6 address: 2001:ded:bef4:dc6::1/64 Client IPv6 address: 2001:ded:bef4:dc6::2/64 Routed /48: 2001:ded:8331::/48 Routed /64: 2001:ded:bef5:0dc6::/64 And this is the current address assignment: WAN global: 2001:ded:bef4:dc6::2/64 LAN global: 2001:ded:bef5:dc6::10:eeee/96 DMZ global: 2001:ded:bef5:dc6::78:eeee/96 So what you are saying (and from what I just found based on what you posted), I should use the /48 so it looks something like this: WAN global: 2001:ded:bef4:dc6::2/64 LAN global: 2001:ded:8331:bef::eeee/64 DMZ global: 2001:ded:8331:beef::eeee/64 If this is the case, I still don't understand why the 2001:ded:bef5:dc6::78:eeee/96 interface wasn't pingable on the DMZ side, but the 2001:ded:bef5:dc6::10:eeee/96 on the LAN was. I also thought that I could further subdivide the /64 down as everything I have read says that v6 has the equivalent of CDIR built in. Or am I thinking too much in v4 terms? Thank you for any insite or pointers you can provide. Most of what I have read seems incomplete or assumes that everyone will want to run the advertising daemons and not manually configure everything (which has it's uses, but I want to know how to do this manually first before taking any shortcuts, as it were). -- All hardware sucks, all software sucks, some just suck more than others
	to forum · permalink · · 2009-05-13 15:15:44 ·
mcnet join:2005-12-19 Cary, IL 1 edit	yes that should work for /64 sub division of /48 because it's off by ipv6 equiv of an octet... 16-et? hexadigit? hexet? 2001:ded:bef5:dc6::78:eeee/96 2001:ded:bef5:dc6::10:eeee/96 should be: 2001:ded:bef5:dc6::1:78:eeee/96 2001:ded:bef5:dc6::2:10:eeee/96 (one more 4-space to left) long format /96 S = network/subnet H = host SSSS:SSSS:SSSS:SSSS:SSSS:SSSS:HHHH:HHHH so have have 2nd subnet routable it should be difference in 3rd from right group of 4 hex digits. right? i think so...
mcnet join:2005-12-19 Cary, IL 1 edit	to forum · permalink · · 2009-05-13 15:44:37 ·
JTC Always Mount A Scratch Monkey join:2002-01-09 USA ·Comcast Workplace ·Integra Telecom	said by mcnet : yes that should work for /64 sub division of /48 Ok, I'll try that when I get back in front of a console tonight. said by mcnet : because it's off by ipv6 equiv of an octet... 16-et? hexadigit? hexet? 2001:ded:bef5:dc6::78:eeee/96 2001:ded:bef5:dc6::10:eeee/96 should be: 2001:ded:bef5:dc6::1:78:eeee/96 2001:ded:bef5:dc6::2:10:eeee/96 (one more 4-space to left) long format /96 S = network/subnet H = host SSSS:SSSS:SSSS:SSSS:SSSS:SSSS:HHHH:HHHH so have have 2nd subnet routable it should be difference in 3rd from right group of 4 hex digits. right? i think so... Hmmm... Expanded, out the address (2001:ded:bef5:dc6::78:eeee) should be: 2001:0ded:bef5:0dc6:0000:0000:0078:eeee So at 96 bits... (add add add)... 2001:0ded:bef5:0dc6:0000:0000:0078:eeee So for the :0078: part to make the difference, I should have used /104? That doesn't sound right, but I've been wrong before... -- All hardware sucks, all software sucks, some just suck more than others
	to forum · permalink · · 2009-05-14 00:18:54 ·
mcnet join:2005-12-19 Cary, IL	that would be a /112 i believe (each 4 symbols = 16 bits, 128-16=112)
mcnet join:2005-12-19 Cary, IL	to forum · permalink · · 2009-05-14 10:16:06 ·
JTC Always Mount A Scratch Monkey join:2002-01-09 USA ·Comcast Workplace ·Integra Telecom	said by mcnet : that would be a /112 i believe (each 4 symbols = 16 bits, 128-16=112) Doh, I think I grok... So given the address of 2001:0ded:bef5:0dc6:0000:0000:0078:eeee, /112 would make 2001:0ded:bef5:0dc6:0000:0000:0078 the 'subnet', with the 0078 part the entry that changes to identify the different subnets and the eeee part for each machine. BTW, I tried the /48 approach and it's working, thanks for the pointer. Now to try and figure out if a DHCPv6 server and DHCPv4 can coexist on the same network without banging heads and get bind set up to deal with ip6 as well. Thank you for the help and info so far, it is appreciated! -- All hardware sucks, all software sucks, some just suck more than others
	to forum · permalink · · 2009-05-14 15:56:46 ·


Thursday, 10-Dec 16:56:22	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF