Advanced HOWTO: AT&T "native" IP6 with full /60 subnet.

I thought I might add in my experience here that the delegation issue still persists. I am using a RouterBoard for my router behind the NVG589 and, in order to make things work, I have to set it up as a DHCP Client of the NVG589. This hands out a /64, though one that is NOT listed in the IPv6 Delegated LAN Prefix section. It's all a bit wonky but a big bummer as having multiple /64 subnets would have been nice as I've been having trouble getting some hosts (looking at you OS X) working using DHCPv6 on the LAN side so I can carve up the single /64 into multiple subnets. Hoping ATT fixes this but given this HOWTO is a year old...guessing we have a bit of a wait still.

Call AT&T tech support, and ask then how to set up rDNS for IP6.  Register your "vote" for simple delegation.  I still recommend delegating to a fixed IP withint the 6RD space.  Maybe not ::1 (as that may be taken by a router or something).  How about xx:xx:xx:xx:A11::1 ?

---

@m00dawg wrote:

I am using a RouterBoard for my router behind the NVG589 and, in order to make things work, I have to set it up as a DHCP Client of the NVG589. This hands out a /64, though one that is NOT listed in the IPv6 Delegated LAN Prefix section.

Can't you set up your "RouterBoard" to use a 6in4 tunnel?  Then you can set the NVG589 to IP passthrough as instructed above, and your RouterBoard becomes your IP6 gateway.   It should be able to provide RA, and possibly even DHCP6.  (Note that DHCP6 is optional with IP6.  RA is all you need to get an address.)

Yeah I'm trying the passthrough method but so far no luck. It sees the ATT gateway and looks to be attempting to route through the tunnel, but without success. I'm going to keep playing around with it though.

Do you know, ATT still blocks Protocol 41 outside of its network yeah? So I can't use, say, Tunnelbroker (they provide /48's if you really want to go nuts)?

DHCPv6 vs SLAAC is another issue, of which I have opinions about but don't relate so much here. I basically don't like that SLAAC requires /64's, which if I can get my /60 up and running is less of an issue. DHCPv6 does not have that requirement, however, I haven't been able to make everything (looking at you OS X) play nice with it. Ultimately though I only need 2, maybe 3, IPv6 subnets so a /60 would do just fine. More gripes about SLAAC are more philosphical.

Whelp, I tried both using ATT's 6rd and Tunnelbroker via my RouterBoard and neither worked. I think the former failed due to RouterBoard not yet support 6rd (it supports 6to4) and the latter because ATT is obnoxiously blocking protocol 41 still.

6rd *is* 6to4.  Configure your router board for 6to4 like I instructed.  The modem needs to be in passthrough for protocol 41 as instructed (with IPv6 disabled on the modem as instructed).   If you fail to disable IPv6 (via 6rd) on the modem, it will *eat* protocol 41.  Your router board is configured for 6to4.  The only role "6rd" plays is constructing the IPv6 prefix as instructed.

6rd is just 6to4 with gateway supplied by the ISP, and the prefix constructed from the IP4.

---

@m00dawg wrote:

Whelp, I tried both using ATT's 6rd and Tunnelbroker via my RouterBoard and neither worked. I think the former failed due to RouterBoard not yet support 6rd (it supports 6to4) and the latter because ATT is obnoxiously blocking protocol 41 still.

---

Yep already had the modem in passthrough with my IPv4 static assignments setup directly on my RouterBoard. I disabled IPv6 on the modem followed by a reboot. I did do some packet captures, though haven't yet run it through wireshark, and I could see protocol 41 going out and, likewise, traffic going out the 6in4 tunnel, but never any responses. I thought 6rd vs 6in4 might be an issue since some folks on the Microtik (RouterBoard) forums were complaining about 6rd support. You do have to configure things in sort of an odd way when setting up the default gateway, which makes me wonder if there's something going on there. I should have dumped my config before I reverted, so I can certainly attempt it again and post the config and results.

---

@m00dawg wrote:

Yep already had the modem in passthrough with my IPv4 static assignments setup directly on my RouterBoard.

---

Just noticed this: You actually have to use IP4 DHCP (not static assignments) on your RouterBoard (as instructed).  The modem wants to see the DHCP exchange - otherwise it blocks stuff.  Be sure to configure your RouterBoard MAC for the passthrough on the modem.

You can use static IP6 assignments, since you are the primary IP6 router as the tunnel endpoint.

Yeah sorry that was unclear on my part. It IS using DHCP for IPv4 so the ATT router is handing off my /29 to my RouterBoard. Also good idea pinging the IPv6 range from the outside, although if I get a reply, I'm not sure what that tells me? On the router, I'd either get a timeout or no route to host depending on how I tried to setup the gateway.