HP-UX IPv6 Transport Administrator Guide HP-UX 11i v3 (5992-6426, May 2013)
Table Of Contents
- HP-UX IPv6 Transport Administrator Guide
- Contents
- About This Document
- 1 Features Overview
- IPv6 Transport
- New IPv6 Transport Features
- Support for RFC 3542 (Advanced Sockets API for IPv6)
- Configurable Policy Table Support
- Anycast Address Support
- Support for RFC 4291 (IP Version 6 Addressing Architecture)
- Support for RFC 4213 (Basic Transition Mechanisms for IPv6 Hosts and Routers)
- Support for RFC 3484 (Default Address Selection for Internet Protocol version 6 (IPv6))
- Support for RFC 3493 (Basic Socket Interface Extensions for IPv6)
- Support for RFC 4584 (Extension to Sockets API for Mobile IPv6)
- Support for RFC 4193 (Unique Local IPv6 Unicast Addresses)
- Support for RFC 4443 (Internet Control Message Protocol for IPv6 (ICMPv6))
- Support for IPv6 over VLAN
- Ability to Disable Autoconfiguration Based on Router Advertisements
- Support for RFC 3810 (Multicast Listener Discovery Version 2 (MLDv2))
- Support for RFC 3376 (Internet Group Management Protocol Version 3 (IGMPv3))
- Support for RFC 3678 (Socket Extension to Multicast Source Filter API)
- Support for RFC 4941 (Privacy Extensions for Stateless Address Autoconfiguration in IPv6)
- New ndd Tunables
- IPv6 Transport Features Available in the Core HP-UX 11i v3 Operating System
- Limitations
- IPv6 Transport
- 2 Configuration
- Configuring IPv6 Interfaces and Addresses
- Stateless Autoconfiguration
- Manual Configuration
- Configurable Policy Table for Default Address Selection for IPv6
- Host Names and IPv6 Addresses
- 3 Troubleshooting
- 4 IPv6 Addressing and Concepts
- 5 IPv6 Software and Interface Technology
- 6 Utilities
- A IPv6 ndd Tunable Parameters
- Index
a default route to the "6to4" router. All non-local "6to4" addressed packets and native
IPv6 packets are sent to the "6to4" router.
"6to4" router: An IPv6/IPv4 border router that forwards "6to4" addressed traffic between
"6to4" hosts within a site and other "6to4" routers or to "6to4" relay routers across IPv4
internet. "6to4" routers need to have at least one public IPv4 address and the "6to4"
prefix is derived from the public IPv4 address. The "6to4" router advertises the "6to4"
prefix on its attached link. It performs the encapsulation and decapsulation functions.
"6to4" relay router: An IPv6/IPv4 router that performs the functions of the "6to4" router
and forwards "6to4" addressed traffic between "6to4" routers on the IPv4 internet and
IPv6 hosts on the IPv6 internet.
An IPv6 interior routing protocol, such as routing information protocol next generation
(RIPng), is used for routing IPv6 in a "6to4" domain. IPv4 exterior routing protocol handles
the routing of tunneled IPv4 packets between "6to4" routers and relay routers. In addition,
for forwarding native IPv6 addressed packets, a default route from the "6to4" router to
the relay router can be setup or IPv6 exterior routing protocol can be used between
"6to4" routers and relay routers.
“6to4” Security Considerations
By default, “6to4” routers and relay routers accept and decapsulate traffic from any
source. This potentially allows malicious parties to get around access controls and spoof
addresses, to perform denial of service attacks. Before setting up a tunnel from a “6to4”
router to an external “6to4” relay router, review the internet draft Security Considerations
for 6to4 at http://www.ietf.org.
Configuration Example:
For the topology example shown in Figure 13, the following sample ifconfig commands
will (ephemerally) configure the HP-UX 11i v2 dual stack routers to handle “6to4”:
On R1: ifconfig iptu0 inet6 tunnel 6to4 tsrc 15.1.1.1
On R2: ifconfig iptu1 inet6 tunnel 6to4 tsrc 16.2.2.2
On R3: ifconfig iptu2 inet6 tunnel 6to4 tsrc 17.3.3.3
In all three cases, you do not need to explicitly specify the address of the tunnel entry
point, as this special "6to4" address will be automatically created based on the globally
unique IPv4 address that will be the source address in the encapsulating (outer) header.
To configure R1 using the /etc/rc.config.d/netconf-ipv6 file, add the following
lines:
TUN_INTERFACE_NAME[0]=”iptu0”
TUN_TYPE[0]=”6to4”
TUN_LOCAL_ADDRESS[0]=””
TUN_REMOTE_ADDRESS[0]=””
TUN_ENCAP_SRC_ADDRESS[0]=”15.1.1.1”
TUN_ENCAP_DST_ADDRESS[0]=””
TUN_INTERFACE_STATE[0]=”up”
Migrating from IPv4 to IPv6 61