So, currently i have an ISP who supports IPv6 (cheers, Internode!) and a dual-stack home network. It all just pretty much magically works.
However, i am looking figure out how IPv6 works “properly” from the perspective of setting up offices with the following in mind:
no IPv6 prefix allocated yet
looking to use IPv6 internally only
ideally, when one or more IPv6 gateways are obtained, minimise the changes required to hosts behind the gateway (firewall config, etc.)
some IPv4 connectivity is required
i’d like to figure out how to go IPv6 native (no dual stack) if possible and do 6to4 translation
This is going to be a bit of a build log on how to go about it, what pitfalls i encounter, etc. This is for me to figure out how it all works, document it, and hopefully we can all learn something from it.
Thus far, I’ve determined:
there is a “private use” IPv6 range allocated by IANA: fd00::/8
the standard subnet size is a /64
the standard “campus” allocation is a /56
the standard “organisation” allocation is a /48
this has given me a proposed IP scheme for internal only use of:
FD00:00XX:YY00::/56 per site
where:
XX = site number
YY = VLAN number
And that’s about where I am up to so far.
I’ve just bought 2 Orielly books to get started:
IPv6 Essentials, Third Edition
IPv6 Address Planning.
Under services, i have enabled DHCPv6+RA on my LAN interface
for “range” i have used:
::1000 to ::FFFF:FFFF:FFFF:FFFF
This means the first IPv6 IP to be allocated will be ::1000 and the range is the last IP in the /64 subnet.
This means i can set IPv6 statics if desired between prefix:: and prefix::FFFF:FFFF:FFFF:FFFF
Everything else is left at default.
Result: I am getting IPv6 IPs on my end devices on the LAN ,and IPv6 works. Currently using public unicast routable IPv6 IPs on everything.
IPv6 DNS servers are being allocated to clients based on the IPv6 DNS addresses my WAN connection is being given by DHCP from the ISP.
I have a second IPv6 subnet on VLAN2 that has a different IPv6 /64 subnet to my LAN interface, but at this point because i did not enable DHCPv6 on that VLAN yet, it shouldn’t be doing router advertisements or DHCP configuration for IPv6 yet. I haven’t bothered setting up VLAN2 on my switch yet, further testing to do…
As you can see in the attached pic, the two LAN interfaces have different subnets. VLAN2 is IPv6 native only at the moment