worked almost perfectly on my centos 7 softrouter

[matthewtdemery]

just a question; should this script run at boot or is it fine once it's run? comcast dishes out a /64 and i run a router behind their gateway (which i cannot put into bridge mode at roommates request) so this script saved my life. spent like 6 hours trying to find a solution but all i found was ipv6 may have been over-engineered and comcast is quite content in being a monopoly

[cvmiller]

Good to hear you got it working on CentOS.

I would suggest setting the script to run in /etc/rc.local Since you want to ensure your interfaces are UP before starting the script.

[matthewtdemery]

That's precisely what I did. However, I did run into a slight roadblock... followup: dnsmasq started having a fit because dhcp requests were coming in through br0 which has no address. tcpdump indicated requests were coming in through the internal adapter but dnsmasq just wouldn't work with me on that one. my biggest concern was it answering requests on the external adapter. frankly, the best solution would be to replace comcast with a competent business and/or just get a SixXS tunnel. comcast doles out /64's >:(

[cvmiller]

I am surprised that your DHCP server was having problems with br0. OpenWrt uses DNSMasq with the LAN bridge (br-lan) and it works quite well.

I have heard others say that it is possible to get a /56 from Comcast. Not living in Comcast's service area, I haven't been able to verify this. But it is said that one has to tweak the DHCPv6-PD request to request a /56.

I don't think SixXS is doing tunnels these days. I only know of Hurricane Electric, and you have to have a public IPv4 address (read: won't go through NAT) in order for it to work.

[matthewtdemery]

The main error was "br0 has no address". In other setups, br0 has an address but eth0/1 don't. This is in reverse. dnsmasq just simply refuses to ack on a non-addressed interface. I'm sure there's a workaround. Until then, HE issued me a 64 and a 48 within 5 minutes. Comcast offered gigabit async in our area without proper load balancing so there's ~15% packet loss, so I'm not about to ask for any favours from them. I'd like a stable vpn to my worksite before I start requesting IPv6 prefixes. I'll look into a dhcpd config for testing to complete your script sometime next week!

[cvmiller]

Sure that makes sense, dnsmasq isn't going to hand out IPv4 addresses on an interface with no IPv4 address. Perhaps it has been too long since I have looked at the script, but I thought br0 would have an IPv4 address (the OpenWrt version gives br-lan an IPv4 address).

[matthewtdemery]

It's a headless box so it's not fun messing up configs and then having to plug into it to fix it. I assigned a v4 to br0 and everything broke hardcore. I rebooted it (power button acpi safe reboot ftw) and the network still didn't come up and had to plug into it. Still don't know how it managed to start sending packets again. Weird as heck. I'll put the script in a VM when I have time and send you a PR. Maybe fork it for software routers, too!

On Thu, Sep 24, 2020 at 12:18 PM Craig Miller notifications@github.com wrote:

Sure that makes sense, dnsmasq isn't going to hand out IPv4 addresses on an interface with no IPv4 address. Perhaps it has been too long since I have looked at the script, but I thought br0 would have an IPv4 address (the OpenWrt version gives br-lan an IPv4 address).

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/cvmiller/v6brouter/issues/17#issuecomment-698446541, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIXTC6EYJJK4FZYP2WUNT5LSHNWNVANCNFSM4RSHHK7Q .

-- Matthew Demery Site Reliability & Development Operations Engineer P: (727) 697-7831 E: MatthewTDemery@gmail.com A: Taylor, MI www.linkedin.com/in/matthewtdemery

[cvmiller]

Closing this, feel free to reopen it if needed.