DDNS IPv6 Cloudflare
-
I have to correct myself. I just looked at my DNS config. I have CNAME (alias) for IPv4 names that point to the long MAC based host name and AAAA records for IPv6. One thing I have found is that if I have an alias for IPv4, the AAAA for the same host name won't be used. If I have A and AAAA records, then the appropriate one is used.
-
@JKnott said in DDNS IPv6 Cloudflare:
I have CNAME (alias) for IPv4 names that point to the long MAC based host name and AAAA records for IPv6.
I don't know what you mean by "long MAC based host name"
-
@Bob-Dig said in DDNS IPv6 Cloudflare:
I don't know what you mean by "long MAC based host name"
The host name is very long, as it includes both the modem and firewall MAC addresses. It's cpe<firewall MAC>-cm<cable modem MAC>.cpe.net.cable.rogers.com. The actual MACs have been disguised to protect the guilty.
In the DNS server, I create an alias to that host name for the host name in my domain.
-
@JKnott When you talk about DNS config, you meant your domain-DNS-Hoster (e.g. cloudflare) or do you meant pfsense?
@JKnott said in DDNS IPv6 Cloudflare:
I have to correct myself. I just looked at my DNS config.
-
My DNS is on an Enom server, which I get through Google. I also have my own DNS running on pfSense. The pfSense DNS records point to the unique local addresses and the Enom records point to my global addresses.
-
You have some IPv6 Global address.. Yeah you can have a lot of them.. But you should have atleast 1 that doesn't change that you use to provide services.
Set this IP as your AAAA in your dns... If this global that your going to serve services off is going to change, then on the box with this IP on it, not your router... Have it register its IPv6 as AAAA record in cloudflare.. That is the whole point of their api.. There are scripts for for whatever OS your running to do this.. using your cloudflare api key and token..
Pfsense isn't going to do this for you..
Serving services off IPs that change be ipv4 or ipv6 is bad idea... If you have a prefix that your going to use to service services off of... Then give your boxes IPs in that prefix, be it static or set to be handed out via dhcp6 so they always have this IP, no put that in dns!! Static record is easiest since this boxes IP isn't going to be changing... Or sure you can dynamically do it... Just make sure your TTLs our short - and expect problems when the IPs change, etc.
-
@JKnott said in DDNS IPv6 Cloudflare:
My DNS is on an Enom server, which I get through Google. I also have my own DNS running on pfSense. The pfSense DNS records point to the unique local addresses and the enom records point to my global addresses.
Sounds interesting but i don't get it.
Is there an article or post or something which explains this? -
Don't get what? Unique local addresses are the IPv6 version of IPv4 RFC 1918 addresses. It's entirely normal to have both global and unique local addresses on IPv6. As I mentioned above, I have 8 each global and unique local addresses on this computer. I have the pfSense DNS configured with the unique local addresses and Enom with the global. There's nothing difficult about that.
-
-
No. As I said, I don't use dynamic DNS. However, as long as you can create AAAA records, you shouldn't need it for IPv6.
-
@johnpoz said in DDNS IPv6 Cloudflare:
If you have a prefix that your going to use to service services off of... Then give your boxes IPs in that prefix, be it static or set to be handed out via dhcp6 so they always have this IP,
Will have to learn this.
-
@JKnott said in DDNS IPv6 Cloudflare:
No. As I said, I don't use dynamic DNS. However, as long as you can create AAAA records, you shouldn't need it for IPv6.
I will use clients if possible. Friend of mine has DSL and it changing the prefix every time he restarts his router (fritzbox)!
-
You shouldn't be doing services off IPs that change to be honest... But how you update those records via cloudflare is all here... This has nothing to do with pfsense..
https://support.cloudflare.com/hc/en-us/articles/360020524512-Manage-dynamic-IPs-in-Cloudflare-DNS-programmatically
You can have pfsense update ITs IPs both ipv4 and IPv6 in cloudflare sure -- but not some client on network behind pfsense...
edit: All that being said... I have been hosting ntp via IPv6 for years... The IP hasn't ever changed even moving to different isp... Since I use a /48 from HE... and the ntp server has a IPv6 address that I assign it, and create a AAAA record for... If your trying to serve services to the public via some IP that is going to change willy nilly, your doing it wrong ;)
Its fine if your wanting to connect to your home connection, etc.. But even then - I have had the same IPv4 address since I have been with this ISP, got a be a year now - has never changed... Why should it - pfsense is online 24/7 and renews the lease... As for the IPv6 - that is static is as well since its one of /48 addresses...
-
@johnpoz It is just a homeserver.
Interestingly my friends router (fritzbox) saves its firewall rules for IPv4 (NAT) and IPv6. And after a reboot it changes the ipv6 in the rule automatically to the new one. This means it is theoretically possible that the router knows the IPv6 addresses and also updates them, theoretically!
-
Not saying its technically not possible... I could have a any client on my network update the IPv6 address of some other box on my network.. Especially dhcpv6 that is handing the client the IPv6 address, etc.
What I am telling you is pfsense isn't going to do this for you with some click of a gui button...
But if that is what your looking for - its the wrong path... You should be looking for your IP address to not be changing if your wanting to serve services off of it..
-
To bad, dnsomatic seems not to support ipv6 with cloudflare. So I am in need of a client for windows.
When the IPv6 changes I will probably not notice it because I don't use IPv6... But some people ask, why IPv6 is not used, this is why! -
Who asks this? There is no actual need for IPv6 at this point in time... No matter how much jknott for it too be true...
There is a powershell script floating around that works with cloudflare api I believe, or you should just be able to use the perl ddclient on windows as well..
this powershell should work
https://port1433.com/2017/02/20/updating-google-domains-dynamic-dns-with-powershell/ -
@Bob-Dig said in DDNS IPv6 Cloudflare:
To bad, dnsomatic seems not to support ipv6 with cloudflare. So I am in need of a client for windows.
When the IPv6 changes I will probably not notice it because I don't use IPv6... But some people ask, why IPv6 is not used, this is why!Why do you think IPv6 addresses will change? Unless your ISP screws up, your addresses are essentially static. It's only IPv4 you have to worry about.
-
@JKnott said in DDNS IPv6 Cloudflare:
@Bob-Dig said in DDNS IPv6 Cloudflare:
To bad, dnsomatic seems not to support ipv6 with cloudflare. So I am in need of a client for windows.
When the IPv6 changes I will probably not notice it because I don't use IPv6... But some people ask, why IPv6 is not used, this is why!Why do you think IPv6 addresses will change? Unless your ISP screws up, your addresses are essentially static. It's only IPv4 you have to worry about.
Like I said, my friends IPv6 changes all the time after each reboot of his router... Haven't watched mine.
-
And what does your friends IPv6 address have to do with anything? What does it matter what their IP is?
Them talking to you would prob always change - because they would be using one of the privacy IPs... That is not the IP you would serve up services with..
What exactly are you trying to accomplish?? What do you want to happen - and why do you want it to be ipv6?
If your wanting to serve up services - then you should be looking to make sure your IP doesn't change and use that/those IP(s).
What are you and your friends trying to accomplish - play a game? what?