Hi
I rented a server from Hetzner where I installed OpenBSD 5.1. Hetzner also
provides IPv6 but somehow with a strange setup. I got something like the
following from them:
Gateway Address: 2001:db8:1:1110::1/64
Subnet I can use: 2001:db8:1:1111/64
If I now assign for example 2001:db8:1:1111:1/64 to the interface on my
server it doesn't let me set the default gateway becaus it's not in the
same subnet:
openbsd# ifconfig rl0 inet6 2001:db8:1:1111:/64
openbsd# route add -inet6 default 2001:db8:1:1110::1
route: writing to routing socket: Network is unreachable
add net default: gateway 2001:db8:1:1110::1: Network is unreachable
For Linux they give these instructions:
linux# ip route add 2001:db8:1:1110::1 dev eth0
linux# ip route add default via 2001:db8:1:1110::1
I tried:
openbsd# route add -inet6 -iface 2001:db8:1:1110::1 2001:db8:1:1111::1
openbsd# route add -inet6 default 2001:db8:1:1110::1
But now it's not possible to ping6 2001:db8:1:1110::1 or any other IPv6
address.
In pf.conf I have the following rules and pflog shows no blocked
icmp6 traffic:
>block in log
>pass out log quick
>block log quick from <sshguard>
>pass log inet proto icmp icmp-type { echoreq, unreach }
>pass log inet6 proto icmp6
>pass in log on egress proto {tcp udp} to any port domain
>pass in log on egress proto tcp to any port ssh
How can I make this work?
Remi
