Hi,
I’m interested in RB433. I need to connect to IPv6 network throught 6to4, but I am behind firewall. Firewall has public IP and forwards all traffic to my router. Is there any way to set up this device to work? On Open-WRT box I was somehow using two IPs in config script.
Thanks, Clansy
It works well, and pretty much like you’d expect. You just need to forward IP protocol 41 at a minimum to the RB behind the firewall. If you’re going to use HE (tunnelbroker.net) they actually have a drop down at the bottom of your tunnel details once you’ve created one that lets you choose an OS to generate configuration for, Mikrotik is one of the options. You can just paste that script in, but will have to edit the local-address parameter in the 6to4 interface to be the private IP address of the RB behind the firewall. The firewall NAT will then turn it into the public IP the 6to4 broker will see.
A sanitized config looks something like this:
/interface 6to4 add disabled=no local-address=[private IPv4 of RB433 before NAT] mtu=1280 name=sit1 remote-address=[public IPv4 of tunnelbroker]
/ipv6 route disabled=no distance=1 dst-address=2000::/3 gateway=[IPv6 of 6to4 server] scope=30 target-scope=10
/ipv6 address add address=[IPv6 of 6to4 client] advertise=yes disabled=no eui-64=no interface=sit1
Then you get a routed /48 or /64 across the /64 link between you and the broker that you can assign to router interfaces.
Thanks, that looks like what I need.