New Member
•
13 Messages
IPv6 Prefix Delegation
Why do you only give a /64 which does not allow subnetting and VLANs? The industry recommends at a minimum that ISPs issue a /56 which allows 256 sub nets and recommends a /48 to allow 64k sub nets. With the addresses available on ipv6 there is really no reason to limit below this.
davygrvy
Tutor
•
35 Messages
1年前
All true. Still broken to this day (BGW320). Although it is possible to do multiple PD requests to grab up to eight /64 blocks, this is non-standard and requires custom programming around your behavior.
(edited)
0
0
lehughes3
New Member
•
1 Message
1年前
I got AT&T gigabit fiber and sure enough there was IPv6, but only one /64 block. I share an apartment with my son, and I created two subnets - one for him, one for me, using pfSense. Not a big deal on IPv4, just created two private subnets (172.20/16 and 172.21/16), but I had to bring in tunneled IPv6 from HE (with a free /48) to set up two separate IPv6 subnets. IETF recommends at least a /60 (16 subnets) or /56 (256 subnets) for home users, and /48 for business users.
Just using the existing 2000::/3 allocation block, there are enough addresses to give every human alive over 5,000 /48 blocks. STOP THINKING IN TERMS OF IPv4!
(edited)
0
davygrvy
Tutor
•
35 Messages
1年前
0
davygrvy
Tutor
•
35 Messages
1年前
https://www.ripe.net/publications/docs/ripe-690#4-2-3--prefixes--longer-than--56
0
0
ccjunk
Teacher
•
26 Messages
1年前
I posted on this forum several years ago about IPv6 PD allocation on the AT&T broadband.
As mentioned above, the service provides a /60 and not a single /64 to the broadband home.
The RG receives a /60 PD to a dhcpv6 IA-PD request it makes on its WAN interface from the broadband gateway router in the ISP network. It uses the first /64 from this /60 for the directly connected LAN network (wired and Wi-Fi). The RG then hands out other /64 in this /60 to dhcpv6 client requests on the LAN, one /64 for each unique IAID. As mentioned the RG will hand out up to 8 /64s to dhcpv6 clients, with 7 kept in reserve.
Below is a capture from linux dhclient on the LAN from my RG (5268 model at the time; have since gotten a BGW210 with similar result but don’t have the capture handy). It requested 4 networks and was allocated 4 – the debug output is shown with the prefixes (obfuscated) and the unique IAIDs bolded. Each of these networks showed up in my linux lease file available for use on other network interfaces on my system.
(Edited per community guidelines)@ubuntu:~# dhclient -d -v -P -P -P -P enp2s0
Internet Systems Consortium DHCP Client
RCV: Reply message on enp2s0 from fe80::62fe:20ff:fe6b:2191.
RCV: X-- IA_PD bb:23:fc:cd
RCV: | X-- starts 1513108720
RCV: | X-- t1 - renew +3600
RCV: | X-- t2 - rebind +5760
RCV: | X-- [Options]
RCV: | | X-- IAPREFIX 2001:1890:xxxx:f828::/64
RCV: | | | X-- Preferred lifetime 7200.
RCV: | | | X-- Max lifetime 7500.
RCV: X-- IA_PD bb:23:fc:ce
RCV: | X-- starts 1513108720
RCV: | X-- t1 - renew +302400
RCV: | X-- t2 - rebind +483840
RCV: | X-- [Options]
RCV: | | X-- IAPREFIX 2001:1890:xxxx:f829::/64
RCV: | | | X-- Preferred lifetime 604800.
RCV: | | | X-- Max lifetime 2592000.
RCV: X-- IA_PD bb:23:fc:cf
RCV: | X-- starts 1513108720
RCV: | X-- t1 - renew +3600
RCV: | X-- t2 - rebind +5760
RCV: | X-- [Options]
RCV: | | X-- IAPREFIX 2001:1890:xxxx:f82a::/64
RCV: | | | X-- Preferred lifetime 7200.
RCV: | | | X-- Max lifetime 7500.
RCV: X-- IA_PD bb:23:fc:d0
RCV: | X-- starts 1513108720
RCV: | X-- t1 - renew +302400
RCV: | X-- t2 - rebind +483840
RCV: | X-- [Options]
RCV: | | X-- IAPREFIX 2001:1890:xxxx:f82b::/64
RCV: | | | X-- Preferred lifetime 604800.
RCV: | | | X-- Max lifetime 2592000.
RCV: X-- Server ID: 00:03:00:01:60:fe:20:6b:21:91
(edited)
0
davygrvy
Tutor
•
35 Messages
1年前
https://www.ripe.net/publications/docs/ripe-690#4-2-3--prefixes--longer-than--56
0
0
ccjunk
Teacher
•
26 Messages
1年前
That same document:
"A delegated prefix for use within the home network (mandatory). The Broadband Forum suggests a size for the delegated prefix of at least a /60 for home network or SOHO environments, with a recommended prefix length of /56. The delegated prefix may be extended to a /48 for larger organizations."
If you represent a larger organization then I believe you can get a /56 or /48 from the business services sold by AT&T.
0
davygrvy
Tutor
•
35 Messages
1年前
You can't. I just checked. Whether your GPON service is residential as the "1000 internet" or business class, the same BGW320 is used as the router/ONT. No CPE change. Thus, it still has the same bug in the implementation of DHCPv6 PD responses. In all requests for a PD, sized with a hint length or zero for all of it, all you get is a worthless /64 than contains just a single address block
(edited)
0
0
davygrvy
Tutor
•
35 Messages
10分前
I'm up and running now with both native and tunnel routing for IPv6 using OpenWrt and have finally two subnets with correct v6 addressing.
LAN has
option ip6hint '000a'
GUEST has
option ip6hint '000b'
I skipped using 192.168.1.0/24 because that routes to the BGW320 for its web interface at 192.168.1.254
I still demand my /56
Here's the /etc/config/network settings
The tunnel should auto-config from a DHCP option, but AT&T doesn't advertise it so you'll need to calculate your addy
(edited)
0
0