kemonine

Archived

This repository has been archived on 2022-08-05. You can view files and clone it, but cannot push or open issues or pull requests.

2.8 KiB

Raw Permalink Blame History

Inspiration / Further Reading

Install Jool


# If using raspbian be sure linux-headers package(s)
apt install build-essential pkg-config libnl-genl-3-dev libxtables-dev dkms git autoconf tar

git clone https://github.com/NICMx/Jool.git /scratch/jool
cd /scratch/jool
git checkout `git tag | sort -r | head -n1`
dkms install ./
./autogen.sh
./configure
cd src/usr
make
make install

Figure out NAT64 endpoints via RFC7050

See quectel_ec25.md for details

Figure out address mapping setup

Look at your ipv6 address, pray for a /64 and do some mappings...


2607:fb90:88bd:95b9:999e:f533:32e4:71fa/64
    -> 2607:fb90:88bd:95b9::
    -> 2607:fb90:88bd:95b9::172.17.17.17/120

Setup jool routing for ipv4 <> ipv6

sysctl -w net.ipv4.conf.all.forwarding=1
sysctl -w net.ipv6.conf.all.forwarding=1
modprobe jool_siit
jool_siit instance add "lollipop" --iptables --pool6 2607:7700:0:26::/96 # pool6 is NAT64 endpoints via RFC7050
jool_siit instance display
jool_siit -i "lollipop" eamt add "2607:fb90:88bd:95b9::172.17.17.0/120" "172.17.17.0/24" # ipv6 address map <> ipv4 lan
jool_siit -i "lollipop" eamt display

jool_siit -i "lollipop" stats display --all | less

ip6tables -t mangle -A PREROUTING \
    -s 2607:fb90:88bd:95b9::172.17.17.0/120 \
    -j JOOL_SIIT --instance "lollipop"
iptables  -t mangle -A PREROUTING \
    -s 172.17.17.0/24 \
    -j JOOL_SIIT --instance "lollipop"
ip6tables -I OUTPUT -d 2607:7700:0:26::/96 -j ACCEPT

The iptables commands above were adapted from this block of the jool.mx docs


user@T:~# ip6tables -t mangle -A PREROUTING \
>		-s 2001:db8::198.51.100.8/125 -d 2001:db8::192.0.2.0/120 \
>		-j JOOL_SIIT --instance "example"
user@T:~# iptables  -t mangle -A PREROUTING \
>		-s 192.0.2.0/24 -d 198.51.100.8/29 \
>		-j JOOL_SIIT --instance "example"

2.8 KiB Raw Permalink Blame History