DHCP-PD with dhcpcd client on wan and dhcpd on lan side. Need to dynamically configure ipv6 prefix on lan...
Why should public servants be apolitical?
Did Apollo leave poop on the moon?
Can chords be inferred from melody alone?
How to realistically deal with a shield user?
Cobb-Douglas production function with expenditures rather than units
Will a paper be retracted if a flaw in released software code invalidates its central idea?
Is DC heating faster than AC heating?
How to halve redstone signal strength?
What is the bio-mechanical plausibility of a fox with venomous fangs?
Where to pee in London?
Validation and verification of mathematical models
How do these cubesats' whip antennas work?
Does the United States guarantee any unique freedoms?
Probably terminated or laid off soon; confront or not?
Should I self-publish my novella on Amazon or try my luck getting publishers?
Can ads on a page read my password?
Who is the god Ao?
Is it a bad idea to offer variants of a final exam based on the type of allowed calculators?
Why should I "believe in" weak solutions to PDEs?
Colleagues speaking another language and it impacts work
What is a Casino Word™?
Secure my password from unsafe servers
12V lead acid charger with LM317 not charging
How many years before enough atoms of your body are replaced to survive the sudden disappearance of the original body’s atoms?
DHCP-PD with dhcpcd client on wan and dhcpd on lan side. Need to dynamically configure ipv6 prefix on lan side
How to configure an OpenWrt 10.03 router to forward an IPv6 connection to the clients?dhcp ipv6 dynamic prefix delegationOpenWrt wifi bridge with IPv6Linux routing two different LANs with two different gatewaysRedirecting subnet traffic to a different gatewayHow to get Pi-Hole to work with IPv6?How to set up ipv6 home routing?IPv6 address range for LAN static IP assignmentHow does avahi enable mDNS and expose it via LAN with ipv6 compared to Apple's mDNSResponder?How to configure my laptop wireless adapter for DHCPv6
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}
I'm currently neck deep in building an internet gateway out of an old fanless, headless Intel Atom/ITX computer I had laying around. My ISP provides ipv6 and ipv4 resolution via dhcp. They also provide an IPv6 prefix. My goal is to have a ipv4 and ipv6 provided by my ISP's DCHP facing the internet, a static v4 ip facing the lan hosting it's own DHCP server, and a DHCPv6 server providing assignment of addresses within the prefix provided by my isp and setting it's own lan-side v6 ip to <prefix>::1/64. I want to use dhcpv6 instead of router advertisement because I will be setting up ddns managed by my new gateway as well as radius and a few other odds an ends... some of which will be used to determine what ip clients end up with. The final wrinkle is that it must be resilient to disconnects and reconnects of the ethernet which I currently have managed by ifplugd. I want this to function as a network appliance: minimal need for me to perform maintenance beyond security updates. Plug-and-go.
I currently have everything working on the ipv4 side. Like clockwork. The gateway itself has a fully functioning dual-stack connection to the internet and can access resources both via ipv4 and ipv6. I've also implemented a netfilter based firewall for both ipv4 and ipv6. I've even got the lan side assigned a static-private ipv4 address and a <prefix>::1/64 address. And I can provide clients on my lan with an ipv4 address, dns, domain, gateway and all the rest via DHCP.
What I can't do is provide IPv6 addresses in the range of <prefix>::0/64 to clients via dhcp. I'm stuck with the reality that dhcpd needs me to set a static name server, static gateway, and static prefix in it's config file... yet all of those are dynamically assigned based on the prefix given by my ISP. I've been through the dhcpd.conf manpage a number of times now and I don't see anything offering a way to assign these dynamically. That dhcpcd stores it's lease data in binary format doesn't help matters.
My next step is to write some scripts, and probably a systemd unit or two, to manage querying the data I need from dhcpcd and (re)starting dhcpd with the appropriate flags. But this is clunky and I fear all the ways it could quirk out on what is meant to be a plug-and-go unit. If I have to ssh into my gateway later to fix something... it means I've failed.
I've also considered scrapping everything I have so far and switching to an all-in-one solution like WIDE... but I'm uncertain about WIDE's ability to integrate with bind, radius, and the like. It would be a real pita to tear down all my existing work, spend time learning and configuring WIDE, get past the current problem... and then find out something else I planned isn't possible with WIDE.
Am I just missing the obvious here? If so, what am I missing? Can WIDE or another all-in-one DCHP client/server provide for my lofty goals? Is kludging together some scripts to bridge the gap (and custom units to solve race conditions) between dhcpcd and dhcpd the best way?
P.S. Before anyone asks, I started off trying to use dhclient on the wan side (sticking with ISC tools for dns/dhcp), but it didn't want to resolve ipv6 and ipv4 on the same interface and wouldn't let me query an v6 ip and a v6 prefix at the same time. Probably my fault... but I gave up and switched to dhcpcd as a result.
networking arch-linux ipv6 isc-dhcpd gateway
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
add a comment |
I'm currently neck deep in building an internet gateway out of an old fanless, headless Intel Atom/ITX computer I had laying around. My ISP provides ipv6 and ipv4 resolution via dhcp. They also provide an IPv6 prefix. My goal is to have a ipv4 and ipv6 provided by my ISP's DCHP facing the internet, a static v4 ip facing the lan hosting it's own DHCP server, and a DHCPv6 server providing assignment of addresses within the prefix provided by my isp and setting it's own lan-side v6 ip to <prefix>::1/64. I want to use dhcpv6 instead of router advertisement because I will be setting up ddns managed by my new gateway as well as radius and a few other odds an ends... some of which will be used to determine what ip clients end up with. The final wrinkle is that it must be resilient to disconnects and reconnects of the ethernet which I currently have managed by ifplugd. I want this to function as a network appliance: minimal need for me to perform maintenance beyond security updates. Plug-and-go.
I currently have everything working on the ipv4 side. Like clockwork. The gateway itself has a fully functioning dual-stack connection to the internet and can access resources both via ipv4 and ipv6. I've also implemented a netfilter based firewall for both ipv4 and ipv6. I've even got the lan side assigned a static-private ipv4 address and a <prefix>::1/64 address. And I can provide clients on my lan with an ipv4 address, dns, domain, gateway and all the rest via DHCP.
What I can't do is provide IPv6 addresses in the range of <prefix>::0/64 to clients via dhcp. I'm stuck with the reality that dhcpd needs me to set a static name server, static gateway, and static prefix in it's config file... yet all of those are dynamically assigned based on the prefix given by my ISP. I've been through the dhcpd.conf manpage a number of times now and I don't see anything offering a way to assign these dynamically. That dhcpcd stores it's lease data in binary format doesn't help matters.
My next step is to write some scripts, and probably a systemd unit or two, to manage querying the data I need from dhcpcd and (re)starting dhcpd with the appropriate flags. But this is clunky and I fear all the ways it could quirk out on what is meant to be a plug-and-go unit. If I have to ssh into my gateway later to fix something... it means I've failed.
I've also considered scrapping everything I have so far and switching to an all-in-one solution like WIDE... but I'm uncertain about WIDE's ability to integrate with bind, radius, and the like. It would be a real pita to tear down all my existing work, spend time learning and configuring WIDE, get past the current problem... and then find out something else I planned isn't possible with WIDE.
Am I just missing the obvious here? If so, what am I missing? Can WIDE or another all-in-one DCHP client/server provide for my lofty goals? Is kludging together some scripts to bridge the gap (and custom units to solve race conditions) between dhcpcd and dhcpd the best way?
P.S. Before anyone asks, I started off trying to use dhclient on the wan side (sticking with ISC tools for dns/dhcp), but it didn't want to resolve ipv6 and ipv4 on the same interface and wouldn't let me query an v6 ip and a v6 prefix at the same time. Probably my fault... but I gave up and switched to dhcpcd as a result.
networking arch-linux ipv6 isc-dhcpd gateway
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
add a comment |
I'm currently neck deep in building an internet gateway out of an old fanless, headless Intel Atom/ITX computer I had laying around. My ISP provides ipv6 and ipv4 resolution via dhcp. They also provide an IPv6 prefix. My goal is to have a ipv4 and ipv6 provided by my ISP's DCHP facing the internet, a static v4 ip facing the lan hosting it's own DHCP server, and a DHCPv6 server providing assignment of addresses within the prefix provided by my isp and setting it's own lan-side v6 ip to <prefix>::1/64. I want to use dhcpv6 instead of router advertisement because I will be setting up ddns managed by my new gateway as well as radius and a few other odds an ends... some of which will be used to determine what ip clients end up with. The final wrinkle is that it must be resilient to disconnects and reconnects of the ethernet which I currently have managed by ifplugd. I want this to function as a network appliance: minimal need for me to perform maintenance beyond security updates. Plug-and-go.
I currently have everything working on the ipv4 side. Like clockwork. The gateway itself has a fully functioning dual-stack connection to the internet and can access resources both via ipv4 and ipv6. I've also implemented a netfilter based firewall for both ipv4 and ipv6. I've even got the lan side assigned a static-private ipv4 address and a <prefix>::1/64 address. And I can provide clients on my lan with an ipv4 address, dns, domain, gateway and all the rest via DHCP.
What I can't do is provide IPv6 addresses in the range of <prefix>::0/64 to clients via dhcp. I'm stuck with the reality that dhcpd needs me to set a static name server, static gateway, and static prefix in it's config file... yet all of those are dynamically assigned based on the prefix given by my ISP. I've been through the dhcpd.conf manpage a number of times now and I don't see anything offering a way to assign these dynamically. That dhcpcd stores it's lease data in binary format doesn't help matters.
My next step is to write some scripts, and probably a systemd unit or two, to manage querying the data I need from dhcpcd and (re)starting dhcpd with the appropriate flags. But this is clunky and I fear all the ways it could quirk out on what is meant to be a plug-and-go unit. If I have to ssh into my gateway later to fix something... it means I've failed.
I've also considered scrapping everything I have so far and switching to an all-in-one solution like WIDE... but I'm uncertain about WIDE's ability to integrate with bind, radius, and the like. It would be a real pita to tear down all my existing work, spend time learning and configuring WIDE, get past the current problem... and then find out something else I planned isn't possible with WIDE.
Am I just missing the obvious here? If so, what am I missing? Can WIDE or another all-in-one DCHP client/server provide for my lofty goals? Is kludging together some scripts to bridge the gap (and custom units to solve race conditions) between dhcpcd and dhcpd the best way?
P.S. Before anyone asks, I started off trying to use dhclient on the wan side (sticking with ISC tools for dns/dhcp), but it didn't want to resolve ipv6 and ipv4 on the same interface and wouldn't let me query an v6 ip and a v6 prefix at the same time. Probably my fault... but I gave up and switched to dhcpcd as a result.
networking arch-linux ipv6 isc-dhcpd gateway
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
I'm currently neck deep in building an internet gateway out of an old fanless, headless Intel Atom/ITX computer I had laying around. My ISP provides ipv6 and ipv4 resolution via dhcp. They also provide an IPv6 prefix. My goal is to have a ipv4 and ipv6 provided by my ISP's DCHP facing the internet, a static v4 ip facing the lan hosting it's own DHCP server, and a DHCPv6 server providing assignment of addresses within the prefix provided by my isp and setting it's own lan-side v6 ip to <prefix>::1/64. I want to use dhcpv6 instead of router advertisement because I will be setting up ddns managed by my new gateway as well as radius and a few other odds an ends... some of which will be used to determine what ip clients end up with. The final wrinkle is that it must be resilient to disconnects and reconnects of the ethernet which I currently have managed by ifplugd. I want this to function as a network appliance: minimal need for me to perform maintenance beyond security updates. Plug-and-go.
I currently have everything working on the ipv4 side. Like clockwork. The gateway itself has a fully functioning dual-stack connection to the internet and can access resources both via ipv4 and ipv6. I've also implemented a netfilter based firewall for both ipv4 and ipv6. I've even got the lan side assigned a static-private ipv4 address and a <prefix>::1/64 address. And I can provide clients on my lan with an ipv4 address, dns, domain, gateway and all the rest via DHCP.
What I can't do is provide IPv6 addresses in the range of <prefix>::0/64 to clients via dhcp. I'm stuck with the reality that dhcpd needs me to set a static name server, static gateway, and static prefix in it's config file... yet all of those are dynamically assigned based on the prefix given by my ISP. I've been through the dhcpd.conf manpage a number of times now and I don't see anything offering a way to assign these dynamically. That dhcpcd stores it's lease data in binary format doesn't help matters.
My next step is to write some scripts, and probably a systemd unit or two, to manage querying the data I need from dhcpcd and (re)starting dhcpd with the appropriate flags. But this is clunky and I fear all the ways it could quirk out on what is meant to be a plug-and-go unit. If I have to ssh into my gateway later to fix something... it means I've failed.
I've also considered scrapping everything I have so far and switching to an all-in-one solution like WIDE... but I'm uncertain about WIDE's ability to integrate with bind, radius, and the like. It would be a real pita to tear down all my existing work, spend time learning and configuring WIDE, get past the current problem... and then find out something else I planned isn't possible with WIDE.
Am I just missing the obvious here? If so, what am I missing? Can WIDE or another all-in-one DCHP client/server provide for my lofty goals? Is kludging together some scripts to bridge the gap (and custom units to solve race conditions) between dhcpcd and dhcpd the best way?
P.S. Before anyone asks, I started off trying to use dhclient on the wan side (sticking with ISC tools for dns/dhcp), but it didn't want to resolve ipv6 and ipv4 on the same interface and wouldn't let me query an v6 ip and a v6 prefix at the same time. Probably my fault... but I gave up and switched to dhcpcd as a result.
networking arch-linux ipv6 isc-dhcpd gateway
networking arch-linux ipv6 isc-dhcpd gateway
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
asked 18 mins ago
Cliff ArmstrongCliff Armstrong
2611 gold badge3 silver badges11 bronze badges
2611 gold badge3 silver badges11 bronze badges
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f534478%2fdhcp-pd-with-dhcpcd-client-on-wan-and-dhcpd-on-lan-side-need-to-dynamically-con%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f534478%2fdhcp-pd-with-dhcpcd-client-on-wan-and-dhcpd-on-lan-side-need-to-dynamically-con%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
