On 13.04.2018 18:54, Edmund Craske wrote:
> On Fri, Apr 13, 2018, at 9:31 AM, Stuart Henderson wrote:
>> Can you show your whole hostname.pppoe0 file? (mask your password of
>> course). On Zen I'm using the following
>>
>> mtu 1500
>> inet 0.0.0.0 255.255.255.255 0.0.0.1 pppoedev em1 authproto chap
>> authname "XXX@zen" authkey "XXX" up
>> inet6 -autoconfprivacy
>> inet6 autoconf
>> !/sbin/route add default -ifp pppoe0 0.0.0.1
>> !/sbin/route add -inet6 default -ifp pppoe0 fe80::%pppoe0 -priority 8
>>
>> and hostname.em1 has
>>
>> mtu 1508
>> up
>>
>> In my case, I'm using dhcpcd from packages to get addresses for my internal
>> networks, Zen don't statically route my v6 block unless I request it via
>> DHCPv6-PD, but you won't need that with A&A, you can just configure them
>> statically on the inside interfaces.
>
> Of course, here is my /etc/hostname.pppoe0:
> inet 0.0.0.0 255.255.255.255 NONE mtu 1500 pppoedev em1 authproto chap
> authname foo authkey bar up
> dest 0.0.0.1
> inet6 eui64
> !/sbin/route add default -ifp pppoe0 0.0.0.1
> !/sbin/route add -inet6 default -ifp pppoe0 fe80::%pppoe0
>
> and my /etc/hostname.em1 is:
> inet 192.168.2.2 255.255.255.0 NONE mtu 1508
>
> Which I think was just me attempting to make it so that I could talk to my
> modem previously... Anyway the connection comes up and I can do 1500 byte
> packets over it so all good in that respect.
>
> My config is basically lifted almost verbatim from the first example on the
> pppoe(4) man page, with the 1500 mtu modifications from the example lower
> down... So either there is something really weird with my particular setup
> which means that this example is no longer suitable, or the example does not
> work like expected on 6.3.
>
> As previously mentioned I also tried it with 'eui64' changed to 'autoconf',
> but it didn't seem that SLAAC was seeing RAs from the remote end - maybe
> that's not set up on A&A, or something else is configured wrong? I did try
> opening up my pf ruleset a bit but it made no difference. However I used an
> older version of the manpage example on my previous OpenBSD 5.8 router (i.e.
> no SLAAC or other thing doing any v6 configuration) and it worked fine, so
> something is seemingly altering the v6 route table in between the pppoe0 if
> being brought up, and it actually establishing a session...
>
> Thanks,
> Edmund
>
Hi
Just upgraded to 6.3 and it works for me. Here is my config:
--- /etc/hostname.em1
llprio 1 mtu 1508 up
--- /etc/hostname.vlan35
vnetid 35 parent em1 mtu 1508 llprio 1 up
--- /etc/hostname.pppoe0
inet 0.0.0.0 255.255.255.255 NONE mtu 1500 llprio 1 \
pppoedev vlan35 \
authproto pap \
authname "foo" \
authkey "bar"
dest 0.0.0.1
inet6 autoconf
!/sbin/route add default -ifp pppoe0 0.0.0.1
!/sbin/route add -inet6 default -ifp pppoe0 fe80::%pppoe0
--- /etc/pf.conf
if_ext="pppoe0"
icmp6_types="{ 1, 2, 133, 134, 135, 136 }"
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type $icmp6_types
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type 3 code 0
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type 3 code 1
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type 4 code 0
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type 4 code 1
pass in quick on $if_ext inet6 proto icmp6 from any to { ($if_ext),
ff02::1/16 } icmp6-type 4 code 2
You don't have to use a vlan as it seems from your config and won't need
the llprio stuff either. If your ISP supports SLAAC, this should work
for you too I guess.
Daniel
--
Unix _IS_ user friendly - it's just
selective about who its friends are!
