IPv6 setup Hurricane Electric Tunnel Broker
From DD-WRT Wiki
Revision as of 07:29, 22 February 2011 (edit) Mofunzone (Talk | contribs) (→About) ← Previous diff |
Revision as of 07:34, 22 February 2011 (edit) (undo) Markus (Talk | contribs) m (Reverted edits by Mofunzone (Talk); changed back to last version by Ac1115) Next diff → |
||
Line 16: | Line 16: | ||
You should have an account and tunnel created on the website. This post will not cover that. Install steps are below the script. This script will only work with /64 tunnels/addresses. Don't use it if you're using /48 | You should have an account and tunnel created on the website. This post will not cover that. Install steps are below the script. This script will only work with /64 tunnels/addresses. Don't use it if you're using /48 | ||
- | [http://www.dd-wrt.com/phpBB2/viewtopic.php? | + | ==Script== |
+ | |||
+ | #v1.0 Jan 1, 2011 | ||
+ | #*************************** | ||
+ | #Settings start here | ||
+ | #*************************** | ||
+ | |||
+ | #basic connection settings | ||
+ | SERVER_IP4_ADDR="enter ip here" | ||
+ | CLIENT_IPV6_ADDR="enter ip here" | ||
+ | ROUTED_64_ADDR="enter ip here" | ||
+ | |||
+ | #account info to auto update endpoint | ||
+ | USERID="enter the long hex code - NOT text username" | ||
+ | PASSWD="plain text password" | ||
+ | TUNNELID="your numeric GLOBAL tunnel id" | ||
+ | |||
+ | #####Optional/Advanced Settings###### | ||
+ | #logging settings (set to /dev/null for no logging) | ||
+ | STARTUP_SCRIPT_LOG_FILE="/tmp/ipv6.log" | ||
+ | CRON_STATUS_LOG_FILE="/tmp/lastHEUpdate.log" | ||
+ | |||
+ | #Generated files paths | ||
+ | CRON_JOB_FILE="/tmp/report.sh" | ||
+ | RADVD_CONFIG="/tmp/radvd.conf" | ||
+ | |||
+ | #*************************** | ||
+ | #Settings end here | ||
+ | #*************************** | ||
+ | |||
+ | echo "HE IPv6 Script started" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | insmod ipv6 | ||
+ | sleep 10 | ||
+ | |||
+ | #get a hash of the plaintext password | ||
+ | MD5PASSWD=`echo -n $PASSWD | md5sum | sed -e 's/ -//g'` | ||
+ | echo "" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | #cut out the "/64" if user typed it in | ||
+ | ROUTED_64_ADDR=`echo $ROUTED_64_ADDR|cut -f1 -d/` | ||
+ | SERVER_IP4_ADDR=`echo $SERVER_IP4_ADDR|cut -f1 -d/` | ||
+ | CLIENT_IPV6_ADDR=`echo $CLIENT_IPV6_ADDR|cut -f1 -d/` | ||
+ | echo "User added addresses cleaned/checked" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | #update HE endpoint | ||
+ | echo -e wget -q "\042http://ipv4.tunnelbroker.net/ipv4_end.php?ipv4b=AUTO&pass=$MD5PASSWD&user_id=$USERID&tunnel_id=$TUNNELID\042" -O $CRON_STATUS_LOG_FILE >$CRON_JOB_FILE | ||
+ | chmod +x $CRON_JOB_FILE | ||
+ | echo "Cron script created, sending endpoint update request to HE" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | wget -q "http://ipv4.tunnelbroker.net/ipv4_end.php?ipv4b=AUTO&pass=$MD5PASSWD&user_id=$USERID&tunnel_id=$TUNNELID" -O $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | #get wan ip for our own use | ||
+ | WANIP=`wget http://whatismyip.com/automation/n09230945.asp -O - 2>/dev/null` | ||
+ | echo "External IP detected as:" $WANIP >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | if [ -n $WANIP ] | ||
+ | then | ||
+ | echo "configuring tunnel" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | # The following commands are straight from HE's website | ||
+ | modprobe ipv6 | ||
+ | ip tunnel add he-ipv6 mode sit remote $SERVER_IP4_ADDR local $WANIP ttl 255 | ||
+ | ip link set he-ipv6 up | ||
+ | ip addr add $CLIENT_IPV6_ADDR/64 dev he-ipv6 | ||
+ | ip route add ::/0 dev he-ipv6 | ||
+ | ip -f inet6 addr | ||
+ | TEMP_ADDR=`echo $ROUTED_64_ADDR'1'` | ||
+ | |||
+ | # These commands aren't on HE's website, but they're necessary for the tunnel to work | ||
+ | ip -6 addr add $TEMP_ADDR/64 dev br0 | ||
+ | ip route add 2000::/3 dev he-ipv6 | ||
+ | |||
+ | #Enable IPv6 forwarding | ||
+ | echo 1 > /proc/sys/net/ipv6/conf/all/forwarding | ||
+ | |||
+ | # make sure to accept proto-41 | ||
+ | iptables -I INPUT 2 -p ipv6 -i vlan1 -j ACCEPT | ||
+ | |||
+ | #make sure to not NAT proto-41 | ||
+ | iptables -t nat -A POSTROUTING --proto ! 41 -o eth0 -j MASQUERADE | ||
+ | echo "creating radvd conf" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | |||
+ | #creating radvd.conf | ||
+ | echo "#generated by startup script" > $RADVD_CONFIG | ||
+ | echo "interface br0 {" >> $RADVD_CONFIG | ||
+ | echo "AdvSendAdvert on;" >> $RADVD_CONFIG | ||
+ | echo "prefix "$ROUTED_64_ADDR"/64 {" >> $RADVD_CONFIG | ||
+ | echo "AdvOnLink on;" >> $RADVD_CONFIG | ||
+ | echo "AdvAutonomous on;" >> $RADVD_CONFIG | ||
+ | echo "AdvRouterAddr on;" >> $RADVD_CONFIG | ||
+ | echo "};" >> $RADVD_CONFIG | ||
+ | echo "};" >> $RADVD_CONFIG | ||
+ | |||
+ | echo "starting radvd" >> $STARTUP_SCRIPT_LOG_FILE | ||
+ | radvd -C $RADVD_CONFIG & | ||
+ | fi | ||
+ | |||
+ | ==Install Steps== | ||
+ | |||
+ | Installation steps: | ||
+ | * Change the settings in the beginning of the above script to your settings. | ||
+ | * Copy personalized script into Administration > Commands. Save as startup script | ||
+ | * Go into Administration > Management | ||
+ | * enable IPv6 and radvd. Leave the config box empty | ||
+ | * (Optional) enable cron and enter this into "Additional Cron Jobs" | ||
+ | Code: | ||
+ | * 4 * * * root /tmp/report.sh | ||
+ | |||
+ | The above line will auto update the endpoint daily at 4am. Change to personal taste | ||
+ | * Apply settings, wait for reboot | ||
+ | |||
+ | |||
+ | ==See Also== | ||
+ | Test the setup with e.g.: <br> | ||
+ | http://ipv6.google.com <br> | ||
+ | http://aaaa.test-ipv6.com/ | ||
+ | |||
+ | Forum link:<br> | ||
+ | http://www.dd-wrt.com/phpBB2/viewtopic.php?t=81060 | ||
+ | |||
+ | Example of Basic Connection settings syntax | ||
+ | SERVER_IP4_ADDR="0.0.0.0" | ||
+ | CLIENT_IPV6_ADDR="0000:000:0000:000::0" | ||
+ | ROUTED_64_ADDR="0000:000:0000:000::0" | ||
+ | |||
+ | [[Category:IPv6| ]] | ||
+ | [[Category:Advanced tutorials]] |
Revision as of 07:34, 22 February 2011
Contents |
About
This will...
Set up HE's tunnel broker service.
Automatically finds your wan ip at boot using whatismyip.com
Automatically updates HE's endpoint on boot
Generates a radvd.conf on boot, and applies it automatically
Generates a executable file that can be used with cron to keep HE's endpoint up-to-date if you have a dynamic IP
My setup for reference.
Optimum Online Cable ISP
WRT610Nv2
v24-sp2 (Aug 12, 2010)
build 14929
You should have an account and tunnel created on the website. This post will not cover that. Install steps are below the script. This script will only work with /64 tunnels/addresses. Don't use it if you're using /48
Script
#v1.0 Jan 1, 2011 #*************************** #Settings start here #*************************** #basic connection settings SERVER_IP4_ADDR="enter ip here" CLIENT_IPV6_ADDR="enter ip here" ROUTED_64_ADDR="enter ip here" #account info to auto update endpoint USERID="enter the long hex code - NOT text username" PASSWD="plain text password" TUNNELID="your numeric GLOBAL tunnel id" #####Optional/Advanced Settings###### #logging settings (set to /dev/null for no logging) STARTUP_SCRIPT_LOG_FILE="/tmp/ipv6.log" CRON_STATUS_LOG_FILE="/tmp/lastHEUpdate.log" #Generated files paths CRON_JOB_FILE="/tmp/report.sh" RADVD_CONFIG="/tmp/radvd.conf" #*************************** #Settings end here #*************************** echo "HE IPv6 Script started" >> $STARTUP_SCRIPT_LOG_FILE insmod ipv6 sleep 10 #get a hash of the plaintext password MD5PASSWD=`echo -n $PASSWD | md5sum | sed -e 's/ -//g'` echo "" >> $STARTUP_SCRIPT_LOG_FILE #cut out the "/64" if user typed it in ROUTED_64_ADDR=`echo $ROUTED_64_ADDR|cut -f1 -d/` SERVER_IP4_ADDR=`echo $SERVER_IP4_ADDR|cut -f1 -d/` CLIENT_IPV6_ADDR=`echo $CLIENT_IPV6_ADDR|cut -f1 -d/` echo "User added addresses cleaned/checked" >> $STARTUP_SCRIPT_LOG_FILE #update HE endpoint echo -e wget -q "\042http://ipv4.tunnelbroker.net/ipv4_end.php?ipv4b=AUTO&pass=$MD5PASSWD&user_id=$USERID&tunnel_id=$TUNNELID\042" -O $CRON_STATUS_LOG_FILE >$CRON_JOB_FILE chmod +x $CRON_JOB_FILE echo "Cron script created, sending endpoint update request to HE" >> $STARTUP_SCRIPT_LOG_FILE wget -q "http://ipv4.tunnelbroker.net/ipv4_end.php?ipv4b=AUTO&pass=$MD5PASSWD&user_id=$USERID&tunnel_id=$TUNNELID" -O $STARTUP_SCRIPT_LOG_FILE #get wan ip for our own use WANIP=`wget http://whatismyip.com/automation/n09230945.asp -O - 2>/dev/null` echo "External IP detected as:" $WANIP >> $STARTUP_SCRIPT_LOG_FILE if [ -n $WANIP ] then echo "configuring tunnel" >> $STARTUP_SCRIPT_LOG_FILE # The following commands are straight from HE's website modprobe ipv6 ip tunnel add he-ipv6 mode sit remote $SERVER_IP4_ADDR local $WANIP ttl 255 ip link set he-ipv6 up ip addr add $CLIENT_IPV6_ADDR/64 dev he-ipv6 ip route add ::/0 dev he-ipv6 ip -f inet6 addr TEMP_ADDR=`echo $ROUTED_64_ADDR'1'` # These commands aren't on HE's website, but they're necessary for the tunnel to work ip -6 addr add $TEMP_ADDR/64 dev br0 ip route add 2000::/3 dev he-ipv6 #Enable IPv6 forwarding echo 1 > /proc/sys/net/ipv6/conf/all/forwarding # make sure to accept proto-41 iptables -I INPUT 2 -p ipv6 -i vlan1 -j ACCEPT #make sure to not NAT proto-41 iptables -t nat -A POSTROUTING --proto ! 41 -o eth0 -j MASQUERADE echo "creating radvd conf" >> $STARTUP_SCRIPT_LOG_FILE #creating radvd.conf echo "#generated by startup script" > $RADVD_CONFIG echo "interface br0 {" >> $RADVD_CONFIG echo "AdvSendAdvert on;" >> $RADVD_CONFIG echo "prefix "$ROUTED_64_ADDR"/64 {" >> $RADVD_CONFIG echo "AdvOnLink on;" >> $RADVD_CONFIG echo "AdvAutonomous on;" >> $RADVD_CONFIG echo "AdvRouterAddr on;" >> $RADVD_CONFIG echo "};" >> $RADVD_CONFIG echo "};" >> $RADVD_CONFIG echo "starting radvd" >> $STARTUP_SCRIPT_LOG_FILE radvd -C $RADVD_CONFIG & fi
Install Steps
Installation steps:
- Change the settings in the beginning of the above script to your settings.
- Copy personalized script into Administration > Commands. Save as startup script
- Go into Administration > Management
- enable IPv6 and radvd. Leave the config box empty
- (Optional) enable cron and enter this into "Additional Cron Jobs"
Code:
* 4 * * * root /tmp/report.sh
The above line will auto update the endpoint daily at 4am. Change to personal taste
- Apply settings, wait for reboot
See Also
Test the setup with e.g.:
http://ipv6.google.com
http://aaaa.test-ipv6.com/
Forum link:
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=81060
Example of Basic Connection settings syntax
SERVER_IP4_ADDR="0.0.0.0" CLIENT_IPV6_ADDR="0000:000:0000:000::0" ROUTED_64_ADDR="0000:000:0000:000::0"