You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

tiddles.org 5.6KB

1 month ago
1 month ago
1 month ago
1 month ago
1 month ago
1 month ago
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213
  1. #+SECURITY CLASSIFICATION: A1 - ID012018ELP
  2. #+TITLE: TIDDLES IPV6 OPERATION - WHITE WHALE
  3. 1. Intelligence
  4. 1.a. What we know.
  5. # on the ranch
  6. # i have camera towers
  7. # those are assigned ipv6
  8. # as i'm not paying $15000 for a block of ipv4
  9. # on my bome at bade the isp only provides ipv4
  10. # they refuse to provide ipv6
  11. # so it'd be nice if i do it the proper way
  12. # and have the consumer grade router do 6to4 on base
  13. 1.b. Devices
  14. |------------------|
  15. | Workstation |
  16. |------------------|
  17. | |
  18. | Cheap ISP Router |
  19. | |
  20. |------------------|
  21. | |
  22. | |
  23. | SERVER |
  24. | |
  25. |------------------|
  26. | |
  27. | Clients |
  28. |------------------|
  29. 2. SITUATION
  30. Uncooperative hardware talks on IPV4.
  31. 3. MISSION
  32. *Make Server tunnel 6to4 traffic translation from SERVER towards Workstation, and link both extremes of the hardware via IPV6*
  33. 4. Logistics
  34. Crap HP Computer.
  35. Crap Openwrt converted Telecom ex-dsl modem.
  36. Stallman Signed IBM T40.
  37. Internet's all knowing databases.
  38. Debian repos and documentation.
  39. Lennart Poettering hatred.
  40. Mate and Cigarettes.
  41. 5. Objectives.
  42. 1) Recreate a scenario in which those settings would happen.
  43. 2) Script that scenario and make it portable and usable according to the wishes of Captain Ahab.
  44. SIGNED
  45. J2/A/20 - 260920JUL20 - 012018ELP
  46. End of preparatory order.
  47. --------------------------------
  48. * RESOLUTION
  49. HP COMPUTER WILL BE CLIENT - 192.168.0.166
  50. OPENWRT BOX WILL BE COMCAST CRIPPLED IPV4 ROUTER
  51. STALLMAN WILL BE SERVER - 192.168.0.204
  52. /Snoopy will be witness./
  53. * STEPS I'll TAKE
  54. 1) DISABLE WIRELESS ON ALL DEVICES
  55. 2) DISABLE IPV6 on OpenWRT - PROVIDES WIFI
  56. RESOURCE FOR IPv6 CONVERSION https://6to4.version6.ru/debian/
  57. * TRIAL ONE - THE SERVER TUNNEL
  58. 1st step
  59. On Debian, a stanza in /etc/network/interfaces of the form
  60. auto 6to4
  61. iface 6to4 inet6 6to4
  62. local YOUR-IPv4-ADDRESS-HERE
  63. 2nd step
  64. IBM% sudo apt install iproute2 ipv6calc radvd
  65. #+begin_code
  66. ● radvd.service - Router advertisement daemon for IPv6
  67. Loaded: loaded (/lib/systemd/system/radvd.service; disabled; vendor preset: enabled)
  68. Active: failed (Result: exit-code) since Tue 2020-07-28 14:56:51 -03; 42ms ago
  69. Docs: man:radvd(8)
  70. Process: 1710 ExecStartPre=/usr/sbin/radvd --logmethod stderr_clean --configtest (cod
  71. #+end_code
  72. Then run...
  73. https://github.com/barak/auto6to4/blob/master/auto6to4
  74. #+begin_code
  75. IBM% sudo ./6to4.sh -i 192.168.0.204 -I enp2s1 start
  76. IBM% net
  77. 127.0.0.1
  78. 192.168.0.204
  79. 192.168.0.255
  80. 0.0.0.0
  81. 0.0.0.0
  82. 192.168.0.204
  83. 0.0.0.0
  84. 192.168.0.204
  85. IBM% ping6 www.google.com
  86. PING www.google.com(2800:3f0:4002:80b::2004 (2800:3f0:4002:80b::2004)) 56 data bytes
  87. ^C
  88. --- www.google.com ping statistics ---
  89. 47 packets transmitted, 0 received, 100% packet loss, time 156ms
  90. #+end_code
  91. *AFTER REBOOT*
  92. #+begin_code
  93. IBM% ip a
  94. 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
  95. link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
  96. inet 127.0.0.1/8 scope host lo
  97. valid_lft forever preferred_lft forever
  98. inet6 ::1/128 scope host
  99. valid_lft forever preferred_lft forever
  100. 2: enp2s1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
  101. link/ether 00:09:6b:53:be:01 brd ff:ff:ff:ff:ff:ff
  102. inet 192.168.0.204/24 brd 192.168.0.255 scope global dynamic enp2s1
  103. valid_lft 41470sec preferred_lft 41470sec
  104. inet6 fe80::209:6bff:fe53:be01/64 scope link
  105. valid_lft forever preferred_lft forever
  106. 3: sit0@NONE: <NOARP> mtu 1480 qdisc noop state DOWN group default qlen 1000
  107. link/sit 0.0.0.0 brd 0.0.0.0
  108. 4: 6to4@NONE: <NOARP,UP,LOWER_UP> mtu 1480 qdisc noqueue state UNKNOWN group default qlen 1000
  109. link/sit 192.168.0.204 brd 0.0.0.0
  110. inet6 2002:c0a8:cc::1/16 scope global
  111. valid_lft forever preferred_lft forever
  112. inet6 ::192.168.0.204/96 scope global
  113. valid_lft forever preferred_lft forever
  114. #+end_code
  115. NO PING NO LUCK
  116. *ANOTHER REBOOT*
  117. IBM% sudo ifup 6to4
  118. ifup: interface 6to4 already configured
  119. IBM% sudo emacs -nw /etc/radvd.conf
  120. # replace LAN with your LAN facing interface
  121. interface LAN {
  122. AdvSendAdvert on;
  123. MinRtrAdvInterval 3;
  124. MaxRtrAdvInterval 10;
  125. prefix ::/64 {
  126. AdvOnLink on;
  127. AdvAutonomous on;
  128. AdvRouterAddr on;
  129. };
  130. };
  131. *ANOTHER REBOOT*
  132. <<<<<<< HEAD
  133. sys-devices-virtual-net-6to4.device loaded active plugged /sys/devices/virtual/net/6to4
  134. sys-devices-virtual-net-sit0.device loaded active plugged /sys/devices/virtual/net/sit0
  135. sys-subsystem-net-devices-6to4.device loaded active plugged /sys/subsystem/net/devices/6to4
  136. sys-subsystem-net-devices-enp2s1.device loaded active plugged 82540EP Gigabit Ethernet Controller (Mobile) (Thinkpad)
  137. sys-subsystem-net-devices-sit0.device loaded active plugged /sys/subsystem/net/devices/sit0
  138. =======
  139. >>>>>>> c25b3760a71452e074acc992e7f6598abd88121f
  140. # ** COMMANDS ON THE CLIENT
  141. <<<<<<< HEAD
  142. I actually don't need to touch the client since I'm on V4 on it... All I care is for the server to have 6 and get coms with that.
  143. =======
  144. >>>>>>> c25b3760a71452e074acc992e7f6598abd88121f
  145. # ip tunnel add net6tun mode sit remote 192.168.0.204 local 192.168.0.166
  146. # ip link set net6tun up