netbsd-users: Help with IPv6

Subject: Help with IPv6
To: None <netbsd-users@netbsd.org>
From: Lista de NetBSD Users <list10@sepc.edu.mx>
List: netbsd-users
Date: 05/12/2002 17:20:04
Hello

My project "ipv6 in campus" is stopped and I need
help. All routers are NetBSD-1.5.2/i386 and zebra
0.92a with bgpd. All routers in campus works very
fine, but the problem is in the tunnel to my pTLA.

     | tunnel gif0 doesnt works.
     |
----------
|Router 1|----------------------
|Bldg 1  |---------            |
----------        |            |
     |gif1        |gif2        |gif3
     |            |            |
----------   ----------   ----------
|Router 2|   |Router 3|   |Router 3|
|Bldg 2  |   |Bldg 3  |   |Bldg 3  |
----------   ----------   ----------

The problem is in Router1, it is a PentiumII and have two
NICs, ex0 is the outside interface and ex1 is the inside.

router1:/etc/rc.conf
ip6mode=router
rtsol=NO   rtsol_flags=""
rtadvd=YES rtadvd_flags="ex1" # there are some ipv6 hosts in this lan
apache=YES apache_flags=""
zebra=YES  zebra_flags="-d"
bgpd=YES   bgpd_flags="-d"

router1:/etc/ifconfig.*
ex0->  inet   i.j.k.l/27  media autoselect
ex1->  inet   10.1.2.1/24 media autoselect
ex1->  inet6  3ffe:aaaa:bbbb:4:250:daff:fe69:48d6 prefixlen 64 alias

gif0-> tunnel i.j.k.l ww.xx.yy.zz
gif0-> inet6  3ffe:aaaa:bbbb:8:250:daff:fe69:47fd prefixlen 64

gif1-> tunnel 10.1.2.1 10.1.3.4
gif1-> inet6  3ffe:aaaa:bbbb:2:250:daff:fe69:4d86 prefixlen 64
gif2-> tunnel 10.1.2.1 10.1.4.2
gif2-> inet6  3ffe:aaaa:bbbb:6:250:daff:fe69:4d86 prefixlen 64
gif3-> tunnel 10.1.2.1 10.1.5.2
gif3-> inet6  3ffe:aaaa:bbbb:4:250:daff:fe69:4d86 prefixlen 64

At this point gif0 seems working because I can ping6 to my pTLA.
(If I am wrong, please tell me)
My pTLA uses a Cisco router and local link fe80::aabb:ccdd
where aabbccdd is the hex conversion of his ipv4 address.

router1# ping6 -n ff02::1%gif0
PING6(56=40+8+8 bytes) fe80::250:daff:fe69:47fd%gif0 --> ff02::1%gif0
16 bytes from fe80::250:daff:fe69:47fd%lo0, icmp_seq=0 hlim=64 time=0.227 ms
16 bytes from fe80::aabb:ccdd%gif0, icmp_seq=0 hlim=64 time=34.618 ms(DUP!)
16 bytes from fe80::250:daff:fe69:47fd%lo0, icmp_seq=1 hlim=64 time=0.183 ms
16 bytes from fe80::aabb:ccdd%gif0, icmp_seq=1 hlim=64 time=35.759 ms(DUP!)
16 bytes from fe80::250:daff:fe69:47fd%lo0, icmp_seq=2 hlim=64 time=0.178 ms
16 bytes from fe80::aabb:ccdd%gif0, icmp_seq=2 hlim=64 time=34.61 ms(DUP!)
^C
--- ff02::1%gif0 ping6 statistics ---
3 packets transmitted, 3 packets received, +3 duplicates, 0% packet loss
round-trip min/avg/max/std-dev = 0.178/17.596/35.759/17.404 ms

My zebra router have the following config files:
router1:/etc/zebra/zebra.conf -------------------
!
interface ex0
 ipv6 nd suppress-ra
!
interface ex1
 ipv6 nd suppress-ra
!
interface gif0
 ipv6 nd suppress-ra
!
interface gif1
 ipv6 nd suppress-ra
!
interface gif2
 ipv6 nd suppress-ra
!
interface gif3
 ipv6 nd suppress-ra
!
router1:/etc/zebra/bgpd.conf -------------------
!
router bgp 64999
 no bgp default ipv4-unicast
 neighbor fe80::aabb:ccdd remote-as 7777
 neighbor fe80::aabb:ccdd description My pTLA
 neighbor fe80::aabb:ccdd interface gif0

 neighbor fe80::202:3bff:fe5b:6f71 remote-as 64999
 neighbor fe80::202:3bff:fe5b:6f71 description router at bldg2
 neighbor fe80::202:3bff:fe5b:6f71 interface gif1
 neighbor fe80::250:daff:fe6b:7ae6 remote-as 64999
 neighbor fe80::250:daff:fe6b:7ae6 description router at bldg3
 neighbor fe80::250:daff:fe6b:7ae6 interface gif2
 neighbor fe80::2a0:24ff:fe85:6c0f remote-as 64999
 neighbor fe80::2a0:24ff:fe85:6c0f description router at bldg4
 neighbor fe80::2a0:24ff:fe85:6c0f interface gif3
!
 address-family ipv6
 network 3ffe:aaaa:bbbb::/48
  redistribute connected
 neighbor fe80::aabb:ccdd activate
 neighbor fe80::202:3bff:fe5b:6f71 activate
 neighbor fe80::250:daff:fe6b:7ae6 activate
 neighbor fe80::2a0:24ff:fe85:6c0f activate
 exit-address-family
-----------------------------------------------
And this is the configuration of the Cisco of my pTLA

interface Tunnel1555
  description tunnel to Centro Siglo XXI
  no ip address
  ipv6 enable
  ipv6 address 3FFE:aaaa:bbbb:8::1/64
  tunnel source Ethernet0
  tunnel destination i.j.k.l
  tunnel mode ipv6ip

  neighbor FE80::250:DAFF:FE69:47FD remote-as 64999
  neighbor FE80::250:DAFF:FE69:47FD update-source Tunnel1555
  no neighbor FE80::250:DAFF:FE69:47FD activate

  address-family ipv6

  neighbor FE80::250:DAFF:FE69:47FD activate
---------------------------------------------

Tunnel gif0 seems works (but I am not sure) and
both bgp process (cisco and zebra) can not establish
a connection.

Does somebody can help me?
(comments welcome)


Sincerely

Heron Gallegos
Centro Siglo XXI - Informatica Educativa
Saltillo, Coahuila, Mexico