!tCyGickeVqkHsYjWnh:nixos.org

NixOS Networking

906 Members
Declaratively manage your switching, routing, wireless, tunneling and more.265 Servers

Load older messages

SenderMessageTime
2 Jun 2025
@hexa:lossy.networkhexayeah, that is no good 😄 00:08:25
@hexa:lossy.networkhexafor each LAN interface you want an individual /64 ideally00:08:38
@hexa:lossy.networkhexaand for that you need DHCPv6 IA_PD (aka Prefix Delegation)00:08:56
@hexa:lossy.networkhexa

so on the WAN side I do

        dhcpV6Config = {
          WithoutRA = "solicit";
          PrefixDelegationHint = "::/56";
        };
00:09:36
@hexa:lossy.networkhexaand on the LAN side00:10:06
@hexa:lossy.networkhexa 
          networkConfig.DHCPPrefixDelegation = true;
00:10:12
@hexa:lossy.networkhexa * 
        \networkConfig.DHCPPrefixDelegation = true;
00:10:17
@hexa:lossy.networkhexa * 
        networkConfig.DHCPPrefixDelegation = true;
00:10:22
@hexa:lossy.networkhexathis means it will request a /56 prefix on WAN00:10:30
@hexa:lossy.networkhexaand try to delegate that to the LAN interface00:10:37
@hexa:lossy.networkhexawhich means it puts a /64 subnet onto your LAN interface00:11:02
@hexa:lossy.networkhexawhen that is in place, all you need is 00:11:17
@hexa:lossy.networkhexa 
          networkConfig.IPv6SendRA = true;
00:11:23
@hexa:lossy.networkhexaon the LAN side to send router advertisements00:11:34
@charles:computer.surgeryCharlesi see00:12:06
@hexa:lossy.networkhexathis all hinges on your ISP actually delegating you a prefix00:12:09
@charles:computer.surgeryCharleswhy00:12:15
@charles:computer.surgeryCharlesright00:12:18
@hexa:lossy.networkhexabecause with autoconfig there is algorithm to generate a collision free host suffix00:12:42
@hexa:lossy.networkhexa* because with autoconfig there is an algorithm to generate a collision free host suffix00:12:49
@hexa:lossy.networkhexaand it requires 64 bits on the host side00:12:59
@hexa:lossy.networkhexa* because with autoconfig there is an algorithm (EUI-64) to generate a collision free host suffix00:13:39
@hexa:lossy.networkhexa* and that requires 64 bits on the host side00:13:48
@hexa:lossy.networkhexaand router advertisements basically send the prefix side and tell the client it can pick an address inside that prefix00:14:08
@hexa:lossy.networkhexa* and router advertisements basically send the prefix and tell the client it can pick an address inside that prefix00:14:17
@charles:computer.surgeryCharlesi see00:16:30
@charles:computer.surgeryCharles well, i guess i don't get why that has to be for each lan interface, why can't the bridge interface have 1 /64 and be sufficient 00:17:45
@hexa:lossy.networkhexabecause a unique route should go in one direction00:18:27
@hexa:lossy.networkhexa* because a unique route should go onto one dedicated interface00:18:38
@hexa:lossy.networkhexa* because a route should go onto one dedicated interface00:18:42

Show newer messages

Back to Room ListRoom Version: 6