CARP and IPv6-PD - trying to understand things
-
Hi
While I'm trying to figure out how the national incumbent (who has a tendency of doing things always a bit different from anyone else here) is doing IPv6-PD for our business line I've been trying to understand on how IPv6-PD and CARP can be done together.
At work I have one static /48 from that provider and I'd like to get this also working with CARP, however where my brain is not following through the IPv6 rabbit hole is how both nodes in a CARP cluster will know who is the router and how radvd will know that it should announce the CARP IP address as they default gateway and not the interface IP to clients.
I've done this one a single node setup, and it's really simple for me on my private line where I have a mostly sane ISP which doesn't expect any extra arguments or does some weird dual session PPPoE... I've tried find something in the docs but so far most examples mention IPv4 only.
Any pointers would be appreciated. So far haven't come far after trying to do my due diligence of searching myself.
-
@msi said in CARP and IPv6-PD - trying to understand things:
how radvd will know that it should announce the CARP IP address
Because you would pick the carp vip as the RA interface would be my assumtion.. From what this says HA with IPv6 requires static.
https://docs.netgate.com/pfsense/en/latest/book/highavailability/example-redundant-configuration.html
"High Availability is compatible with IPv6, but it requires static addressing on the firewall interfaces. When preparing to configure HA, if static IPv6 assignments are not available, set IPv6 to None on all interfaces." -
Thanks, I got that part in that article, but I wasn't certain, but I guess that's what we need.
The issue boils down to the ISP being quite "selective" or should I say "minimalistic" about what they give out for specification to customers. All I get from them is that we have a static /48 delegated to that FTTH line. Absolutely nothing more like a technical specification.
The endpoint is a semi-managed box from them and they (unfortunately) seem to count on having customers who don't run a more elaborate system such as pfSense - even though their service is called a business solution...I guess that I will have to bugger their support as otherwise I'm likely going to spend many hours on trying to understand what their service actually expects. If the location would be a couple of blocks closer to the city, things would be different and other ISPs would have been chose for certain.
-
Well if they are giving you a /48.. Ask them what that /48 is and then you should be able to do whatever you want with that..
Why would they be dicking with delegation if they have assigned you a /48?
-
Why would they be dicking you ask: They are the national incumbent and they have a history of doing things differently and hiding information from customers unless specifically asked...
It's also their CPE which is a quite dumbed down box, and their documentation is really a lackluster when you are only a bit more than just a "mom and pop" shop even for SME products... allas, thanks nonetheless.
-
Don't feel too bad the DOD is still dicking around with even trying to roll out dual stack support ;) And they have been at its since 2003 ;)