/u/144361/crop6617ccaed45d6_cropped.png?f=community)
Opgelost dankzij @Coolhva, oplossing kan hieronder gevonden worden:
Coolhva in "[Ubiquiti & IPTV] Ervaringen & Discussie"
Hey allemaal,
Ik heb sinds een week een USG-Pro aangesloten en hij werkt inmiddels al prima voor een tijdje. Ik blijf echter een nasty issue hebben waar ik niet uit kom. IPv6 verkeer werkt niet. Ik heb de handleiding van @Coolhva gevolgd en zowel IPv4 als IPTV werken naar behoren. Na een provision van de USG werkt IPv6 voor een half minuutje, daarna stopt het volledig. Ik krijg wel een IPv6 adres uit mn subnet op alle devices, inclusief eth0 op de USG.
Ik kan inmiddels wel wat hulp gebruiken.
Intern:
* Subnet 10.0.0.0/24
* Gateway 10.0.0.1 (USG, eth0)
* LAN1 is eth0.
* Switch verbonden via LAN1 poort.
* Scripts die draaien zijn de bekende setroutes.sh en dhcp6.sh.
* Scripts op de usg owner is root, group is vyattacf, chmod is 755.
* USG draait op firmware 4.4.50.5272479
* Firmware 4.4.44.5213871 geeft hetzelfde resultaat.
Extern:
* Fiber NTU via WAN1.
* WAN1 is eth2.
* Provider is XS4All.
WAN controller config:
/f/image/gZPUMIx95kNdU8HohmlQADns.png?f=fotoalbum_large)
LAN controller config:
/f/image/LF6Q6Hx2pPOq7VtyCY6JU20L.png?f=fotoalbum_large)
Wat extra informatie:
Kopie van de .json
dhcp6.sh (prefix-id: 1 ook getest.)
setroutes.sh
Opgelost dankzij @Coolhva, oplossing kan hieronder gevonden worden:
Coolhva in "[Ubiquiti & IPTV] Ervaringen & Discussie"
Coolhva in "[Ubiquiti & IPTV] Ervaringen & Discussie"
Hey allemaal,
Ik heb sinds een week een USG-Pro aangesloten en hij werkt inmiddels al prima voor een tijdje. Ik blijf echter een nasty issue hebben waar ik niet uit kom. IPv6 verkeer werkt niet. Ik heb de handleiding van @Coolhva gevolgd en zowel IPv4 als IPTV werken naar behoren. Na een provision van de USG werkt IPv6 voor een half minuutje, daarna stopt het volledig. Ik krijg wel een IPv6 adres uit mn subnet op alle devices, inclusief eth0 op de USG.
Ik kan inmiddels wel wat hulp gebruiken.
Intern:
* Subnet 10.0.0.0/24
* Gateway 10.0.0.1 (USG, eth0)
* LAN1 is eth0.
* Switch verbonden via LAN1 poort.
* Scripts die draaien zijn de bekende setroutes.sh en dhcp6.sh.
* Scripts op de usg owner is root, group is vyattacf, chmod is 755.
* USG draait op firmware 4.4.50.5272479
* Firmware 4.4.44.5213871 geeft hetzelfde resultaat.
Extern:
* Fiber NTU via WAN1.
* WAN1 is eth2.
* Provider is XS4All.
WAN controller config:
:fill(white):strip_exif()/f/image/gZPUMIx95kNdU8HohmlQADns.png?f=user_large)
LAN controller config:
:fill(white):strip_exif()/f/image/LF6Q6Hx2pPOq7VtyCY6JU20L.png?f=user_large)
Wat extra informatie:
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
| admin@ubnt:~$ show interfaces
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down
Interface IP Address S/L Description
--------- ---------- --- -----------
eth0 10.0.0.1/24 u/u LAN
2001:xxx:xxxx:0:1ae8:29ff:febd:82cb/64
eth1 - A/D
eth2 - u/u WAN
eth2.4 10.59.219.60/21 u/u IPTV
eth2.6 - u/u
eth3 - A/D
lo 127.0.0.1/8 u/u
::1/128
pppoe2 80.100.xxx.xxx u/u |
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
| admin@ubnt:~$ show ipv6 route
Codes: K - kernel route, C - connected, S - static, R - RIPng, O - OSPFv3,
I - ISIS, B - BGP, * - FIB route.
K>* ::/0 via fe80::7afe:3dff:feba:c085, pppoe2
S ::/0 [1/0] is directly connected, pppoe2
C>* ::1/128 is directly connected, lo
C>* 2001:xxx:xxxx::/64 is directly connected, eth0
C>* fe80::/10 is directly connected, pppoe2
K * fe80::/10 is directly connected, pppoe2
C * fe80::/64 is directly connected, eth2.4
C * fe80::/64 is directly connected, eth0
C * fe80::/64 is directly connected, eth2.6
C>* fe80::/64 is directly connected, eth2 |
code:
1
2
3
4
5
6
7
8
9
10
| admin@ubnt:~$ show ip route
Codes: K - kernel route, C - connected, S - static, R - RIP, O - OSPF,
I - ISIS, B - BGP, > - selected route, * - FIB route
K>* 0.0.0.0/0 is directly connected, pppoe2
C>* 10.0.0.0/24 is directly connected, eth0
C>* 10.59.216.0/21 is directly connected, eth2.4
C>* 127.0.0.0/8 is directly connected, lo
C>* 194.109.5.175/32 is directly connected, pppoe2
K>* 213.75.112.0/21 via 10.59.216.1, eth2.4 |
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
| admin@ubnt:~$ show ipv6 neighbors 2001:xxx:xxxx:0:19be:6f6:836f:b656 dev eth0 lladdr 44:07:0b:95:ac:6d STALE fe80::78ca:948b:d8c1:3827 dev eth0 lladdr 84:b8:b8:56:b0:b0 STALE 2001:xxx:xxxx:0:b996:1c81:d741:9a53 dev eth0 lladdr 80:4a:14:ab:f7:bd STALE fe80::fd8d:5da3:3e75:f24e dev eth0 lladdr 1c:1b:0d:99:cc:7d STALE fe80::99:1f27:9763:2f8b dev eth0 lladdr ec:ad:b8:9a:78:fd STALE fe80::4607:bff:fe95:ac6d dev eth0 lladdr 44:07:0b:95:ac:6d REACHABLE fe80::1ae8:29ff:febd:82cb dev eth0 lladdr 18:e8:29:bd:82:cb router STALE fe80::6b4:29ff:fe0c:52ab dev eth0 lladdr 04:b4:29:0c:52:ab STALE fe80::c68e:8fff:feb1:e603 dev eth0 lladdr c4:8e:8f:b1:e6:03 STALE 2001:xxx:xxxx:0:d81c:2235:e66c:8bad dev eth0 lladdr 84:b8:b8:56:b0:b0 router STALE 2001:xxx:xxxx:0:f0b2:cdb1:54e1:9f9a dev eth0 lladdr 1c:1b:0d:99:cc:7d STALE fe80::10eb:67db:39da:7975 dev eth0 lladdr 80:4a:14:ab:f7:bd STALE 2001:xxx:xxxx:0:5162:ab57:e9aa:103a dev eth0 lladdr 84:b8:b8:56:b0:b0 router STALE fe80::1490:5734:cd85:4236 dev eth0 lladdr e0:89:7e:e6:73:11 STALE |
Kopie van de .json
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
| {
"system": {
"task-scheduler": {
"task": {
"postprovision": {
"executable": {
"path": "/config/scripts/post-config.d/dhcp6.sh"
},
"interval": "2m"
},
"postprovisionroutes": {
"executable": {
"path": "/config/scripts/post-config.d/setroutes.sh"
},
"interval": "2m"
}
}
},
"offload": {
"ipv4": {
"forwarding": "enable",
"gre": "enable",
"pppoe": "enable",
"vlan": "enable"
},
"ipv6": {
"forwarding": "enable",
"pppoe": "enable",
"vlan": "disable"
}
}
},
"firewall": {
"ipv6-name": {
"WANv6_LOCAL" : {
"rule": {
"1": {
"action": "accept",
"description": "Allow ICMPv6",
"log": "enable",
"protocol": "icmpv6"
},
"2": {
"action": "accept",
"description": "DHCPv6",
"destination": {
"port": "546"
},
"protocol": "udp",
"source": {
"port": "547"
}
}
}
},
"WANv6_IN" : {
"rule": {
"1": {
"action": "accept",
"description": "Allow ICMPv6",
"log": "enable",
"protocol": "icmpv6"
}
}
}
}
},
"interfaces": {
"ethernet": {
"eth2": {
"dhcp-options": {
"default-route": "no-update",
"default-route-distance": "1",
"name-server": "no-update"
},
"description": "WAN",
"vif": {
"4": {
"address": [
"dhcp"
],
"description": "IPTV",
"dhcp-options": {
"client-option": [
"send vendor-class-identifier "IPTV_RG";",
"request subnet-mask, routers, rfc3442-classless-static-routes;"
],
"default-route": "no-update",
"default-route-distance": "210",
"name-server": "no-update"
},
"ip": {
"source-validation": "loose"
},
"mtu": "1500"
},
"6": {
"firewall": {
"in": {
"ipv6-name": "WANv6_IN",
"name": "WAN_IN"
},
"local": {
"ipv6-name": "WANv6_LOCAL",
"name": "WAN_LOCAL"
},
"out": {
"ipv6-name": "WANv6_OUT",
"name": "WAN_OUT"
}
},
"pppoe": {
"2": {
"default-route": "auto",
"firewall": {
"in": {
"ipv6-name": "WANv6_IN",
"name": "WAN_IN"
},
"local": {
"ipv6-name": "WANv6_LOCAL",
"name": "WAN_LOCAL"
},
"out": {
"ipv6-name": "WANv6_OUT",
"name": "WAN_OUT"
}
},
"ipv6": {
"address": {
"autoconf": "''"
},
"dup-addr-detect-transmits": "1",
"enable": "''"
},
"mtu": "1500",
"name-server": "auto",
"password": "xs4all",
"user-id": "xs4all"
}
}
}
}
},
"eth0": {
"description": "LAN",
"ipv6": {
"address": {
"autoconf": "''"
},
"dup-addr-detect-transmits": "1",
"router-advert": {
"cur-hop-limit": "64",
"link-mtu": "0",
"managed-flag": "true",
"max-interval": "600",
"name-server": [
"2001:888:0:6::66",
"2001:888:0:9::99"
],
"other-config-flag": "false",
"prefix": {
"::/64": {
"autonomous-flag": "true",
"on-link-flag": "true",
"valid-lifetime": "2592000"
}
},
"radvd-options": "RDNSS 2001:888:0:6::66 2001:888:0:9::99 {};",
"reachable-time": "0",
"retrans-timer": "0",
"send-advert": "true"
}
}
}
}
},
"protocols": {
"igmp-proxy": {
"interface": {
"eth2.4": {
"alt-subnet": [
"0.0.0.0/0"
],
"role": "upstream",
"threshold": "1"
},
"eth0": {
"alt-subnet": [
"0.0.0.0/0"
],
"role": "downstream",
"threshold": "1"
}
}
},
"static": {
"interface-route6": {
"::/0": {
"next-hop-interface": {
"pppoe2": "''"
}
}
}
}
},
"port-forward": {
"wan-interface": "pppoe2"
},
"service": {
"dns": {
"forwarding": {
"except-interface": [
"pppoe2"
]
}
},
"nat": {
"rule": {
"5000": {
"description": "MASQ all traffic to IPTV network",
"destination": {
"address": "0.0.0.0/0"
},
"log": "disable",
"outbound-interface": "eth2.4",
"protocol": "all",
"type": "masquerade"
},
"6001": {
"outbound-interface": "pppoe2"
},
"6002": {
"outbound-interface": "pppoe2"
},
"6003": {
"outbound-interface": "pppoe2"
}
}
}
}
} |
dhcp6.sh (prefix-id: 1 ook getest.)
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
| #!/bin/vbash
readonly logFile="/var/log/postprovision.log"
source /opt/vyatta/etc/functions/script-template
configure > ${logFile}
delete system task-scheduler task postprovision >> ${logFile}
set interfaces ethernet eth2 vif 6 pppoe 2 dhcpv6-pd no-dns >> ${logFile}
set interfaces ethernet eth2 vif 6 pppoe 2 dhcpv6-pd pd 0 interface eth0 prefix-id :0 >> ${logFile}
set interfaces ethernet eth2 vif 6 pppoe 2 dhcpv6-pd pd 0 interface eth0 service slaac >> ${logFile}
set interfaces ethernet eth2 vif 6 pppoe 2 dhcpv6-pd pd 0 prefix-length /48 >> ${logFile}
set interfaces ethernet eth2 vif 6 pppoe 2 dhcpv6-pd rapid-commit disable >> ${logFile}
commit
exit |
setroutes.sh
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
| #!/bin/vbash
if [ ! -f "/etc/dhcp3/dhclient-exit-hooks.d/routes" ]; then
read -r -d '' ROUTES <<- EndOfFile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EndOfFile
echo "$ROUTES" | base64 -d > /etc/dhcp3/dhclient-exit-hooks.d/routes
chmod +x /etc/dhcp3/dhclient-exit-hooks.d/routes
release dhcp interface eth2.4
renew dhcp interface eth2.4
restart igmp-proxy
fi
readonly logFile="/var/log/postprovisionroutes.log"
source /opt/vyatta/etc/functions/script-template
configure > ${logFile}
delete system task-scheduler task postprovisionroutes >> ${logFile}
commit
exit |
Opgelost dankzij @Coolhva, oplossing kan hieronder gevonden worden:
Coolhva in "[Ubiquiti & IPTV] Ervaringen & Discussie"
[ Voor 38% gewijzigd door Yahiko750 op 15-04-2020 21:15 ]
:strip_icc():strip_exif()/u/85951/crop651b30b545187_cropped.jpg?f=community)