SixXS::Sunset 2017-06-06

windows server 2008 subnet routing
[be] Shadow Hawkins on Saturday, 04 October 2008 01:55:55
Hello, I am having issues routing a subnet over a Windows Server 2008 (with Routing and remote access enabled, and configured as an IPv6 router only). The tunnel is working fine, and icmp packets can reach the outside, a reply gets sent back and reaches the tunnel interface, but is not routed/recieved on the inside. (This conclusion is from Wireshark sniffing) Maybe I'm not seeing the obvious, but I have been staring at it for too long now. Connectivity on the Windows Server 2008 machine directly is working perfect. I am using an x64 build with the Tun/Tap adapter from the OpenVPN project, and the aiccu command-line tool reports no issues on autotesting. Tunnel config: IPv6 Prefix 2001:6f8:222:2e2::1/64 PoP IPv6 2001:6f8:222:2e2::1 Your IPv6 2001:6f8:222:2e2::2 State AYIYA (automatically enabled on the fly) Subnet config: IPv6 Them 2001:6f8:222:2e2::2 Prefix 2001:6f8:115::/48 Here is my netsh output on the Windows 2008 Server: netsh interface ipv6>show interfaces Idx Met MTU State Name --- --- ----- ----------- ------------------- 1 50 4294967295 connected Loopback Pseudo-Interface 1 10 10 1500 connected LAN 12 30 1280 connected aiccu netsh interface ipv6>show interface aiccu Interface aiccu Parameters ---------------------------------------------- IfLuid : ethernet_8 IfIndex : 12 Compartment Id : 1 State : connected Metric : 30 Link MTU : 1280 bytes Reachable Time : 17500 ms Base Reachable Time : 30000 ms Retransmission Interval : 1000 ms DAD Transmits : 1 Site Prefix Length : 64 Site Id : 1 Forwarding : enabled Advertising : disabled Neighbor Discovery : enabled Neighbor Unreachability Detecion : enabled Router Discovery : enabled Managed Address Configuration : disabled Other Stateful Configuration : disabled Weak Host Sends : disabled Weak Host Receives : disabled Use Automatic Metric : enabled Ignore Default routes : disabled netsh interface ipv6>show interface LAN Interface LAN Parameters ---------------------------------------------- IfLuid : ethernet_6 IfIndex : 10 Compartment Id : 1 State : connected Metric : 10 Link MTU : 1500 bytes Reachable Time : 24000 ms Base Reachable Time : 30000 ms Retransmission Interval : 1000 ms DAD Transmits : 1 Site Prefix Length : 64 Site Id : 1 Forwarding : enabled Advertising : enabled Neighbor Discovery : enabled Neighbor Unreachability Detecion : enabled Router Discovery : enabled Managed Address Configuration : disabled Other Stateful Configuration : disabled Weak Host Sends : disabled Weak Host Receives : disabled Use Automatic Metric : enabled Ignore Default routes : disabled netsh interface ipv6>show addresses Interface 1: Loopback Pseudo-Interface 1 Addr Type DAD State Valid Life Pref. Life Address --------- ----------- ---------- ---------- ------------------------ Other Preferred infinite infinite ::1 Interface 10: LAN Addr Type DAD State Valid Life Pref. Life Address --------- ----------- ---------- ---------- ------------------------ Manual Preferred infinite infinite 2001:6f8:115::1 Public Preferred infinite infinite 2001:6f8:115:0:e875:52e7:6be2:cd1b Other Preferred infinite infinite fe80::e875:52e7:6be2:cd1b%10 Interface 12: aiccu Addr Type DAD State Valid Life Pref. Life Address --------- ----------- ---------- ---------- ------------------------ Manual Preferred infinite infinite 2001:6f8:222:2e2::2 Other Preferred infinite infinite fe80::24be:2536:9b3c:c641%12 Interface 10: LAN Addr Type DAD State Valid Life Pref. Life Address --------- ----------- ---------- ---------- ------------------------ Anycast Preferred infinite infinite 2001:6f8:115:: Interface 12: aiccu Addr Type DAD State Valid Life Pref. Life Address --------- ----------- ---------- ---------- ------------------------ Anycast Preferred infinite infinite 2001:6f8:222:2e2:: netsh interface ipv6>show route Publish Type Met Prefix Idx Gateway/Interface Name ------- -------- --- ------------------------ --- ------------------------ Yes Manual 256 ::/0 12 2001:6f8:222:2e2::1 No Manual 256 ::1/128 1 Loopback Pseudo-Interface 1 No Manual 256 2001:6f8:222:2e2::/64 12 aiccu No Manual 256 2001:6f8:222:2e2::/128 12 aiccu No Manual 256 2001:6f8:222:2e2::2/128 12 aiccu Yes Manual 256 2001:6f8:115::/64 10 LAN No Manual 256 2001:6f8:115::/128 10 LAN No Manual 256 2001:6f8:115::1/128 10 LAN No Manual 256 2001:6f8:115:0:e875:52e7:6be2:cd1b/128 10 LAN No Manual 256 fe80::/64 12 aiccu No Manual 256 fe80::/64 10 LAN No Manual 256 fe80::24be:2536:9b3c:c641/128 12 aiccu No Manual 256 fe80::e875:52e7:6be2:cd1b/128 10 LAN No Manual 256 ff00::/8 1 Loopback Pseudo-Interface 1 No Manual 256 ff00::/8 12 aiccu No Manual 256 ff00::/8 10 LAN Am I missing routes, or anything else? Any insight is much appreciated! Thanks.
windows server 2008 subnet routing
[be] Shadow Hawkins on Sunday, 22 March 2009 12:08:06
Hi all, Just a quick note to let you know that I found a better solution, one that does work perfectly : m0n0wall (http://m0n0.ch/wall). This free open-source project has even gone so far as to enable the AICCU client directly, and allows you to use your SIXXS login and tunnel ID to get things configured. It works like a charm, the only thing you need to do is use a heartbeat tunnel, no AYIYA. I still hope that the AICCU will enable IPv6 routing on Windows Server 2008 one day, but at least for now I can use my subnet without any hassle. Cheers!
windows server 2008 subnet routing
[us] Shadow Hawkins on Friday, 12 December 2008 16:03:56
I was hoping someone had replied to this; I'm having the same problem. Clients on the same network are receiving auto config addresses from the router, so that part is working. I'm also able to connect to the Internet from the Server 2008 machine, but it's not routing any of the other machines. I know I'm supposed to post everything, but I'm just going to post my routing table in hopes that someone else can pick up on something. Publish Type Met Prefix Idx Gateway/Interface Name ------- -------- --- ------------------------ --- ------------------------ Yes Manual 256 ::/0 21 2001:4978:f:22e::1 No Manual 256 ::1/128 1 Loopback Pseudo-Interface 1 No Manual 256 2001:4978:f:22e::/64 21 aiccu No Manual 256 2001:4978:f:22e::2/128 21 aiccu Yes Manual 256 2001:4978:1d8:9000::/64 11 Local Area Connection No Manual 256 2001:4978:1d8:9000::/128 11 Local Area Connection No Manual 256 2001:4978:1d8:9000:508c:6869:a0b5:fe2b/128 11 Local Area Connection No Manual 256 fe80::/64 10 Local Area Connection* 11 No Manual 256 fe80::/64 11 Local Area Connection No Manual 256 fe80::/64 21 aiccu No Manual 256 fe80::100:7f:fffe/128 10 Local Area Connection* 11 No Manual 256 fe80::508c:6869:a0b5:fe2b/128 11 Local Area Connection No Manual 256 fe80::545e:8ba:9607:f0e3/128 21 aiccu No Manual 256 ff00::/8 1 Loopback Pseudo-Interface 1 No Manual 256 ff00::/8 10 Local Area Connection* 11 No Manual 256 ff00::/8 11 Local Area Connection No Manual 256 ff00::/8 21 aiccu
windows server 2008 subnet routing
[ch] Jeroen Massar SixXS Staff on Friday, 12 December 2008 16:27:47
Did you enable forwarding and check firewall settings?
windows server 2008 subnet routing
[us] Shadow Hawkins on Friday, 12 December 2008 16:39:05
PS C:\Users\cholzhauer> netsh int ipv6 sh int 11 Interface Local Area Connection Parameters ---------------------------------------------- IfLuid : ethernet_6 IfIndex : 11 Compartment Id : 1 State : connected Metric : 10 Link MTU : 1500 bytes Reachable Time : 29500 ms Base Reachable Time : 30000 ms Retransmission Interval : 1000 ms DAD Transmits : 1 Site Prefix Length : 64 Site Id : 1 Forwarding : enabled Advertising : enabled Neighbor Discovery : enabled Neighbor Unreachability Detecion : enabled Router Discovery : enabled Managed Address Configuration : disabled Other Stateful Configuration : disabled Weak Host Sends : disabled Weak Host Receives : disabled Use Automatic Metric : enabled Ignore Default routes : disabled Interface aiccu Parameters ---------------------------------------------- IfLuid : ethernet_11 IfIndex : 21 Compartment Id : 1 State : connected Metric : 30 Link MTU : 1500 bytes Reachable Time : 16000 ms Base Reachable Time : 30000 ms Retransmission Interval : 1000 ms DAD Transmits : 1 Site Prefix Length : 64 Site Id : 1 Forwarding : enabled Advertising : enabled Neighbor Discovery : enabled Neighbor Unreachability Detecion : enabled Router Discovery : enabled Managed Address Configuration : disabled Other Stateful Configuration : disabled Weak Host Sends : disabled Weak Host Receives : disabled Use Automatic Metric : enabled Ignore Default routes : disabled Firewall is off
windows server 2008 subnet routing
[us] Shadow Hawkins on Friday, 12 December 2008 16:54:52
As far as I can tell, (?) the problem is the fact that the Server 2008 machine is not advertising a default route. On a machine that acquires an auto-config address, it does not have a publicly routeable address...only an FE80 address. As can be seen by my routing table above, I am advertising a default route on the Server 2008 machine.
windows server 2008 subnet routing
[ch] Jeroen Massar SixXS Staff on Friday, 12 December 2008 17:18:53
Are you using an AYIYA tunnel? If that is the case, then you can't forward towards/from that interface as AICCU doesn't understand that. Known problem, will one day be fixed. Forwarding over AYIYA tunnels does work on non-Windows platforms though, but not on Windows due to some weird internals specific to Windows.
windows server 2008 subnet routing
[us] Shadow Hawkins on Friday, 12 December 2008 17:46:44
Sure am..and it looks like the original poster is as well. I was originally going to use FreeBSD, but MS HyperV supports a limited range of OS's. I'll have to scrounge up another machine and try it there. In the mean time, might I suggest that a notice be placed on the wikki so other people don't run into the same problem? Thanks for your help Jeroen.
windows server 2008 subnet routing
[us] Shadow Hawkins on Friday, 12 December 2008 22:05:32
I don't know if this is of any use to you, but I got Vista to forward a subnet to another interface using netsh interface portproxy v6tov6 listenport=* listenaddress=2001:4978:1db::/64 connectport=80 connectaddress=aaaa::/64 I found through trial and error it doesn't work if you put brackets anywhere. This lets me direct the browser to http://[2001:4978:1db::11:22ff:fe33:4455] to get an ipv6 server on a wireless interface at [aaaa::11:22ff:fe33:4455] All on one machine so far as I don't have an ipv6 enabled router. It doesn't work through my tunnel, I guess that awaits the windows forwarding fix, but it does work through AAAA records, so http://edgar.dakx.com also works. If ip6 DNS is disabled the nslookup returns dakx.com:8081 which gets to the server through a v4tov6 portproxy netsh interface portproxy v4tov6 listenport=8081 listenaddress=[192.168.1.6] connectport=80 connectaddress=[aaaa::11:22ff:fe33:4455] where my DSL modem/router forwards port WAN port 8081 to LAN [192.168.1.6]
windows server 2008 subnet routing
[ch] Jeroen Massar SixXS Staff on Friday, 12 December 2008 23:20:16
That is a normal port-forward which is not routing... We hope to have a new AICCU around the x-mas days, but more likely in the first week of January or so.
windows server 2008 subnet routing
[fr] Shadow Hawkins on Thursday, 04 March 2010 12:48:41
Hello, I'm facing with the same issue, It seems that not fixed ? Right ? If yes, any plan to fix it ? Best regards, Pascal
windows server 2008 subnet routing
[nl] Shadow Hawkins on Sunday, 09 May 2010 19:23:24
Hmm i was also trying to route a subnet until i found this message on the forum. Is there still no solution to route the traffic?

Please note Posting is only allowed when you are logged in.
Static Sunset Edition of SixXS
©2001-2017 SixXS - IPv6 Deployment & Tunnel Broker