SlideShare una empresa de Scribd logo

Максим Мельников — IPv6 at Home: NAT64, DNS64, OpenVPN

Minsk Linux User Group
Minsk Linux User Group

Доклад Максима Мельникова на мартовской линуксовке MLUG 2014

Tecnología
1 de 14
Descargar para leer sin conexión
IPv6 at Home NAT64, DNS64, OpenVPN Maksim Melnikau
IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 inet6 addr: fe80::5054:ff:fe03:c2e6/64 Scope:Link IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 inet6 addr: fe80::5054:ff:fe03:c2e6/64 Scope:Link inet6 addr: 2001:67c:2268:1003:5054:ff:fe03:c2e6/64 Scope:Global IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
IPv6 in Belarus Providers MTS* Velcom* who else ?! host google.com google.com has address 173.194.112.32 google.com has IPv6 address 2a00:1450:4001:801::1003 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
VPS with IPv6 (1/2) Requirements IPv6 andress subnet /64 as closer as possible IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
VPS with IPv6 (1/2) Requirements IPv6 andress subnet /64 as closer as possible Advertisement http://www.datahata.by/ IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
VPS with IPv6 (2/2) ping6 -c 1 -n google.com PING google.com(2a00:1450:4001:c02::8a) 56 data bytes 64 bytes from 2a00:1450:4001:c02::8a: icmp_seq=1 ttl=55 time=46.5 ms --- google.com ping statistics --- 1 packets transmitted, 1 received, 0% packet loss, time 0ms rtt min/avg/max/mdev = 46.518/46.518/46.518/0.000 ms IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
OpenVPN /etc/openvpn/server.conf dev tun tun-ipv6 push tun-ipv6 push "route-ipv6 2000::/3" push "dhcp-option DNS 31.130.202.37" # nat64/dns64 server-ipv6 2001:67c:2268:1007:1::/64 /etc/sysctl.conf net.ipv6.conf.all.forwarding=1 net.ipv6.conf.all.accept_ra=2 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
NAT64, DNS64 (2/3) /etc/tayga.conf prefix 2001:67c:2268:1007:ffff::/96 /etc/bind/named.conf.options options { listen-on-v6 { any; }; allow-query { any; }; dns64 2001:67c:2268:1007:ffff::/96 { clients { any; }; }; }; IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
NAT64, DNS64 (3/3) host mlug.linux.by mlug.linux.by has address 216.59.3.46 mlug.linux.by has IPv6 address 2001:67c:2268:1007:ffff:0:d83b:32e curl -6 -v ’http://mlug.linux.by’ * Rebuilt URL to: http://mlug.linux.by/ * Hostname was NOT found in DNS cache * Trying 2001:67c:2268:1007:ffff:0:d83b:32e... > GET / HTTP/1.1 ... < HTTP/1.1 200 OK ... IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
Demo IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
Thank You. Questions Maksim Melnikau mailto:maxposedon@gmail.com https://plus.google.com/+MaksimMelnikau http://en.wikipedia.org/wiki/IPv6 https://community.openvpn.net/openvpn/wiki/IPv6 https://ipvsix.me/?p=106 http://www.datahata.by/

Recomendados

Incident Response: Tunnelling
Incident Response: TunnellingIncident Response: Tunnelling
Incident Response: Tunnelling
Napier University
 
SIEM
SIEMSIEM
SIEM
Napier University
 
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้องอาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
jiranut
 
Incident response: Advanced Network Forensics
Incident response: Advanced Network ForensicsIncident response: Advanced Network Forensics
Incident response: Advanced Network Forensics
Napier University
 
Subnetmask
SubnetmaskSubnetmask
Subnetmask
Vánn Tóng Hánn
 
Hyperlink
HyperlinkHyperlink
Hyperlink
Bhgn. Pembangunan Bibliografik & Pemprosesan Teknikal
 
Network commands
Network commandsNetwork commands
Network commands
Dr. Mahadev Gawas
 
Useful Linux commands
Useful Linux commandsUseful Linux commands
Useful Linux commands
Sukanta Pradhan
 

Recomendados

Incident Response: Tunnelling
Incident Response: TunnellingIncident Response: Tunnelling
Incident Response: Tunnelling
Napier University
 
SIEM
SIEMSIEM
SIEM
Napier University
 
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้องอาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
อาชญากรรมทางคอมพิวเตอร์และกฎหมายที่เกี่ยวข้อง
jiranut
 
Incident response: Advanced Network Forensics
Incident response: Advanced Network ForensicsIncident response: Advanced Network Forensics
Incident response: Advanced Network Forensics
Napier University
 
Subnetmask
SubnetmaskSubnetmask
Subnetmask
Vánn Tóng Hánn
 
Hyperlink
HyperlinkHyperlink
Hyperlink
Bhgn. Pembangunan Bibliografik & Pemprosesan Teknikal
 
Network commands
Network commandsNetwork commands
Network commands
Dr. Mahadev Gawas
 
Useful Linux commands
Useful Linux commandsUseful Linux commands
Useful Linux commands
Sukanta Pradhan
 
Installing spark 2
Installing spark 2Installing spark 2
Installing spark 2
Ahmed Mekawy
 
Konfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lanKonfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lan
Guntjoro Ningrat
 
Load balancing n_fail_over
Load balancing n_fail_overLoad balancing n_fail_over
Load balancing n_fail_over
miissie
 
How the Internet Works
How the Internet WorksHow the Internet Works
How the Internet Works
Will Bradley
 
การติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่ายการติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่าย
su090838
 
Wireless Network Pentestration
Wireless Network PentestrationWireless Network Pentestration
Wireless Network Pentestration
KHNOG
 
Vyos clustering ipsec
Vyos clustering ipsecVyos clustering ipsec
Vyos clustering ipsec
Gireesh Hariharasubramony
 
Rasperry pi Part 12
Rasperry pi Part 12Rasperry pi Part 12
Rasperry pi Part 12
Techvilla
 
Linux network tools (Maarten Blomme)
Linux network tools (Maarten Blomme)Linux network tools (Maarten Blomme)
Linux network tools (Maarten Blomme)
Avansa Mid- en Zuidwest
 
Triangle OpenStack meetup 09 2013
Triangle OpenStack meetup 09 2013Triangle OpenStack meetup 09 2013
Triangle OpenStack meetup 09 2013
Dan Radez
 
Instalasaun ubuntu 12+ subsonic
Instalasaun ubuntu 12+ subsonicInstalasaun ubuntu 12+ subsonic
Instalasaun ubuntu 12+ subsonic
Joel Jermias
 
Intrusion Detection System using Snort
Intrusion Detection System using Snort Intrusion Detection System using Snort
Intrusion Detection System using Snort
webhostingguy
 
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Naoto MATSUMOTO
 
Cpu utilization
Cpu utilizationCpu utilization
Cpu utilization
Rahimullah Hashimi
 
Peer- to -peer connection using ciscio packet tracer
Peer- to -peer connection using ciscio packet tracerPeer- to -peer connection using ciscio packet tracer
Peer- to -peer connection using ciscio packet tracer
JalalMiah5
 
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
Naoto MATSUMOTO
 
11
1111
11
Pm'Kung Smile
 
debugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitchdebugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitch
어형 이
 
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
Louis Göhl
 
Short Introduction to IPv6
Short Introduction to IPv6Short Introduction to IPv6
Short Introduction to IPv6
Martin Schütte
 
Understanding the IP Protocol.pdf
Understanding the IP Protocol.pdfUnderstanding the IP Protocol.pdf
Understanding the IP Protocol.pdf
LandoMuzychuk
 
CCNA 200-301 IPv6 addressing and subnetting MCQs Collection
CCNA 200-301 IPv6 addressing and subnetting MCQs CollectionCCNA 200-301 IPv6 addressing and subnetting MCQs Collection
CCNA 200-301 IPv6 addressing and subnetting MCQs Collection
CAS
 

Más contenido relacionado

La actualidad más candente

Konfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lanKonfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lan
Guntjoro Ningrat
 
Load balancing n_fail_over
Load balancing n_fail_overLoad balancing n_fail_over
Load balancing n_fail_over
miissie
 
การติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่ายการติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่าย
su090838
 
Rasperry pi Part 12
Rasperry pi Part 12Rasperry pi Part 12
Rasperry pi Part 12
Techvilla
 
Intrusion Detection System using Snort
Intrusion Detection System using Snort Intrusion Detection System using Snort
Intrusion Detection System using Snort
webhostingguy
 

La actualidad más candente (17)

Installing spark 2
Installing spark 2Installing spark 2
Installing spark 2
 
Konfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lanKonfigurasi mikrotik untuk jaringan lan
Konfigurasi mikrotik untuk jaringan lan
 
Load balancing n_fail_over
Load balancing n_fail_overLoad balancing n_fail_over
Load balancing n_fail_over
 
How the Internet Works
How the Internet WorksHow the Internet Works
How the Internet Works
 
การติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่ายการติดตั้งระบบเครือข่าย
การติดตั้งระบบเครือข่าย
 
Wireless Network Pentestration
Wireless Network PentestrationWireless Network Pentestration
Wireless Network Pentestration
 
Vyos clustering ipsec
Vyos clustering ipsecVyos clustering ipsec
Vyos clustering ipsec
 
Rasperry pi Part 12
Rasperry pi Part 12Rasperry pi Part 12
Rasperry pi Part 12
 
Linux network tools (Maarten Blomme)
Linux network tools (Maarten Blomme)Linux network tools (Maarten Blomme)
Linux network tools (Maarten Blomme)
 
Triangle OpenStack meetup 09 2013
Triangle OpenStack meetup 09 2013Triangle OpenStack meetup 09 2013
Triangle OpenStack meetup 09 2013
 
Instalasaun ubuntu 12+ subsonic
Instalasaun ubuntu 12+ subsonicInstalasaun ubuntu 12+ subsonic
Instalasaun ubuntu 12+ subsonic
 
Intrusion Detection System using Snort
Intrusion Detection System using Snort Intrusion Detection System using Snort
Intrusion Detection System using Snort
 
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
 
Cpu utilization
Cpu utilizationCpu utilization
Cpu utilization
 
Peer- to -peer connection using ciscio packet tracer
Peer- to -peer connection using ciscio packet tracerPeer- to -peer connection using ciscio packet tracer
Peer- to -peer connection using ciscio packet tracer
 
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
 
11
1111
11
 

Similar a Максим Мельников — IPv6 at Home: NAT64, DNS64, OpenVPN

debugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitchdebugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitch
어형 이
 
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
Louis Göhl
 
AusNOG 2019 - Getting IPv6 Private Addressing Right
AusNOG 2019 - Getting IPv6 Private Addressing RightAusNOG 2019 - Getting IPv6 Private Addressing Right
AusNOG 2019 - Getting IPv6 Private Addressing Right
Mark Smith
 
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
Đồng Quốc Vương
 
Tri aoi training-supplementary_2011.01
Tri aoi training-supplementary_2011.01Tri aoi training-supplementary_2011.01
Tri aoi training-supplementary_2011.01
Ralph Nguyen
 
Sharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linuxSharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linux
jasembo
 

Similar a Максим Мельников — IPv6 at Home: NAT64, DNS64, OpenVPN (20)

debugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitchdebugging openstack neutron /w openvswitch
debugging openstack neutron /w openvswitch
 
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
 
Short Introduction to IPv6
Short Introduction to IPv6Short Introduction to IPv6
Short Introduction to IPv6
 
Understanding the IP Protocol.pdf
Understanding the IP Protocol.pdfUnderstanding the IP Protocol.pdf
Understanding the IP Protocol.pdf
 
CCNA 200-301 IPv6 addressing and subnetting MCQs Collection
CCNA 200-301 IPv6 addressing and subnetting MCQs CollectionCCNA 200-301 IPv6 addressing and subnetting MCQs Collection
CCNA 200-301 IPv6 addressing and subnetting MCQs Collection
 
AusNOG 2019 - Getting IPv6 Private Addressing Right
AusNOG 2019 - Getting IPv6 Private Addressing RightAusNOG 2019 - Getting IPv6 Private Addressing Right
AusNOG 2019 - Getting IPv6 Private Addressing Right
 
Linux networking
Linux networkingLinux networking
Linux networking
 
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
Www ccnav5 net_ccna_1_chapter_8_v5_0_exam_answers_2014
 
QuickTutorial Guide Advanced Topics in IP Addressing
QuickTutorial Guide Advanced Topics in IP AddressingQuickTutorial Guide Advanced Topics in IP Addressing
QuickTutorial Guide Advanced Topics in IP Addressing
 
IPv6 in CloudStack Basic Networking
IPv6 in CloudStack Basic NetworkingIPv6 in CloudStack Basic Networking
IPv6 in CloudStack Basic Networking
 
IPv6 Addressing Architecture
IPv6 Addressing ArchitectureIPv6 Addressing Architecture
IPv6 Addressing Architecture
 
SAS (Secure Active Switch)
SAS (Secure Active Switch)SAS (Secure Active Switch)
SAS (Secure Active Switch)
 
Getting started with IPv6
Getting started with IPv6Getting started with IPv6
Getting started with IPv6
 
Tri aoi training-supplementary_2011.01
Tri aoi training-supplementary_2011.01Tri aoi training-supplementary_2011.01
Tri aoi training-supplementary_2011.01
 
Sharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linuxSharing your-internet-connection-on-linux
Sharing your-internet-connection-on-linux
 
Setting ubuntu server sebagai pc router
Setting ubuntu server sebagai pc routerSetting ubuntu server sebagai pc router
Setting ubuntu server sebagai pc router
 
ULA network experience @ JANOG34, by Shishio Tsuchiya [APNIC 38 / APIPv6TF]
ULA network experience @ JANOG34, by Shishio Tsuchiya [APNIC 38 / APIPv6TF]ULA network experience @ JANOG34, by Shishio Tsuchiya [APNIC 38 / APIPv6TF]
ULA network experience @ JANOG34, by Shishio Tsuchiya [APNIC 38 / APIPv6TF]
 
IPv6
IPv6IPv6
IPv6
 
[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network Troubleshooting[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network Troubleshooting
 
Your app lives on the network - networking for web developers
Your app lives on the network - networking for web developersYour app lives on the network - networking for web developers
Your app lives on the network - networking for web developers
 

Más de Minsk Linux User Group

Más de Minsk Linux User Group (20)

Vladimir ’mend0za’ Shakhov — Linux firmware for iRMC controller on Fujitsu P...
Vladimir ’mend0za’ Shakhov — Linux firmware for iRMC controller on Fujitsu P... Vladimir ’mend0za’ Shakhov — Linux firmware for iRMC controller on Fujitsu P...
Vladimir ’mend0za’ Shakhov — Linux firmware for iRMC controller on Fujitsu P...
 
Андрэй Захарэвіч — Hack the Hackpad: Першая спроба публічнага кіравання задач...
Андрэй Захарэвіч — Hack the Hackpad: Першая спроба публічнага кіравання задач...Андрэй Захарэвіч — Hack the Hackpad: Першая спроба публічнага кіравання задач...
Андрэй Захарэвіч — Hack the Hackpad: Першая спроба публічнага кіравання задач...
 
Святлана Ермаковіч — Вікі-дапаможнік. Як узмацніць беларускую вікі-супольнасць
Святлана Ермаковіч — Вікі-дапаможнік. Як узмацніць беларускую вікі-супольнасцьСвятлана Ермаковіч — Вікі-дапаможнік. Як узмацніць беларускую вікі-супольнасць
Святлана Ермаковіч — Вікі-дапаможнік. Як узмацніць беларускую вікі-супольнасць
 
Тимофей Титовец — Elastic+Logstash+Kibana: Архитектура и опыт использования
Тимофей Титовец — Elastic+Logstash+Kibana: Архитектура и опыт использованияТимофей Титовец — Elastic+Logstash+Kibana: Архитектура и опыт использования
Тимофей Титовец — Elastic+Logstash+Kibana: Архитектура и опыт использования
 
Андрэй Захарэвіч - Як мы ставілі KDE пад FreeBSD
Андрэй Захарэвіч - Як мы ставілі KDE пад FreeBSDАндрэй Захарэвіч - Як мы ставілі KDE пад FreeBSD
Андрэй Захарэвіч - Як мы ставілі KDE пад FreeBSD
 
Vitaly ̈_Vi ̈ Shukela - My FOSS projects
Vitaly ̈_Vi ̈ Shukela - My FOSS projectsVitaly ̈_Vi ̈ Shukela - My FOSS projects
Vitaly ̈_Vi ̈ Shukela - My FOSS projects
 
Vitaly ̈_Vi ̈ Shukela - Dive
Vitaly ̈_Vi ̈ Shukela - DiveVitaly ̈_Vi ̈ Shukela - Dive
Vitaly ̈_Vi ̈ Shukela - Dive
 
Alexander Lomov - Cloud Foundry и BOSH: истории из жизни
Alexander Lomov - Cloud Foundry и BOSH: истории из жизниAlexander Lomov - Cloud Foundry и BOSH: истории из жизни
Alexander Lomov - Cloud Foundry и BOSH: истории из жизни
 
Vikentsi Lapa — How does software testing become software development?
Vikentsi Lapa — How does software testing become software development?Vikentsi Lapa — How does software testing become software development?
Vikentsi Lapa — How does software testing become software development?
 
Михаил Волчек — Свободные лицензии. быть или не быть? Продолжение
Михаил Волчек — Свободные лицензии. быть или не быть? ПродолжениеМихаил Волчек — Свободные лицензии. быть или не быть? Продолжение
Михаил Волчек — Свободные лицензии. быть или не быть? Продолжение
 
Слава Машканов — “Wubuntu”: Построение гетерогенной среды Windows+Linux на н...
Слава Машканов — “Wubuntu”: Построение гетерогенной среды Windows+Linux на н...Слава Машканов — “Wubuntu”: Построение гетерогенной среды Windows+Linux на н...
Слава Машканов — “Wubuntu”: Построение гетерогенной среды Windows+Linux на н...
 
MajorDoMo: Открытая платформа Умного Дома
MajorDoMo: Открытая платформа Умного ДомаMajorDoMo: Открытая платформа Умного Дома
MajorDoMo: Открытая платформа Умного Дома
 
Максим Салов - Отладочный монитор
Максим Салов - Отладочный мониторМаксим Салов - Отладочный монитор
Максим Салов - Отладочный монитор
 
Максим Мельников - FOSDEM 2014 overview
Максим Мельников - FOSDEM 2014 overviewМаксим Мельников - FOSDEM 2014 overview
Максим Мельников - FOSDEM 2014 overview
 
Константин Шевцов - Пара слов о Jenkins
Константин Шевцов - Пара слов о JenkinsКонстантин Шевцов - Пара слов о Jenkins
Константин Шевцов - Пара слов о Jenkins
 
Ермакович Света - Операция «Пингвин»
Ермакович Света - Операция «Пингвин»Ермакович Света - Операция «Пингвин»
Ермакович Света - Операция «Пингвин»
 
Михаил Волчек - Смогут ли беларусы вкусить плоды Творческих Общин? Creative C...
Михаил Волчек - Смогут ли беларусы вкусить плоды Творческих Общин? Creative C...Михаил Волчек - Смогут ли беларусы вкусить плоды Творческих Общин? Creative C...
Михаил Волчек - Смогут ли беларусы вкусить плоды Творческих Общин? Creative C...
 
Vikentsi Lapa - Tools for testing
Vikentsi Lapa - Tools for testingVikentsi Lapa - Tools for testing
Vikentsi Lapa - Tools for testing
 
Алексей Туля - А нужен ли вам erlang?
Алексей Туля - А нужен ли вам erlang?Алексей Туля - А нужен ли вам erlang?
Алексей Туля - А нужен ли вам erlang?
 
Виктор Сергейчик - Как пользоваться PGP безопасно и правильно. Вводная к Keys...
Виктор Сергейчик - Как пользоваться PGP безопасно и правильно. Вводная к Keys...Виктор Сергейчик - Как пользоваться PGP безопасно и правильно. Вводная к Keys...
Виктор Сергейчик - Как пользоваться PGP безопасно и правильно. Вводная к Keys...
 

Último

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Angeliki Cooney
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 

Último (20)

Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 

Максим Мельников — IPv6 at Home: NAT64, DNS64, OpenVPN

  • 1. IPv6 at Home NAT64, DNS64, OpenVPN Maksim Melnikau
  • 2. IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 3. IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 inet6 addr: fe80::5054:ff:fe03:c2e6/64 Scope:Link IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 4. IPv6 ifconfig eth0 Link encap:Ethernet HWaddr 52:54:00:03:c2:e6 inet addr:31.130.202.37 Bcast:31.130.202.63 Mask:255.255.255.192 inet6 addr: fe80::5054:ff:fe03:c2e6/64 Scope:Link inet6 addr: 2001:67c:2268:1003:5054:ff:fe03:c2e6/64 Scope:Global IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 5. IPv6 in Belarus Providers MTS* Velcom* who else ?! host google.com google.com has address 173.194.112.32 google.com has IPv6 address 2a00:1450:4001:801::1003 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 6. VPS with IPv6 (1/2) Requirements IPv6 andress subnet /64 as closer as possible IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 7. VPS with IPv6 (1/2) Requirements IPv6 andress subnet /64 as closer as possible Advertisement http://www.datahata.by/ IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 8. VPS with IPv6 (2/2) ping6 -c 1 -n google.com PING google.com(2a00:1450:4001:c02::8a) 56 data bytes 64 bytes from 2a00:1450:4001:c02::8a: icmp_seq=1 ttl=55 time=46.5 ms --- google.com ping statistics --- 1 packets transmitted, 1 received, 0% packet loss, time 0ms rtt min/avg/max/mdev = 46.518/46.518/46.518/0.000 ms IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 9. OpenVPN /etc/openvpn/server.conf dev tun tun-ipv6 push tun-ipv6 push "route-ipv6 2000::/3" push "dhcp-option DNS 31.130.202.37" # nat64/dns64 server-ipv6 2001:67c:2268:1007:1::/64 /etc/sysctl.conf net.ipv6.conf.all.forwarding=1 net.ipv6.conf.all.accept_ra=2 IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 10.
  • 11. NAT64, DNS64 (2/3) /etc/tayga.conf prefix 2001:67c:2268:1007:ffff::/96 /etc/bind/named.conf.options options { listen-on-v6 { any; }; allow-query { any; }; dns64 2001:67c:2268:1007:ffff::/96 { clients { any; }; }; }; IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 12. NAT64, DNS64 (3/3) host mlug.linux.by mlug.linux.by has address 216.59.3.46 mlug.linux.by has IPv6 address 2001:67c:2268:1007:ffff:0:d83b:32e curl -6 -v ’http://mlug.linux.by’ * Rebuilt URL to: http://mlug.linux.by/ * Hostname was NOT found in DNS cache * Trying 2001:67c:2268:1007:ffff:0:d83b:32e... > GET / HTTP/1.1 ... < HTTP/1.1 200 OK ... IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 13. Demo IPv6 at home: NAT64, DNS64, OpenVPN, Maksim Melnikau
  • 14. Thank You. Questions Maksim Melnikau mailto:maxposedon@gmail.com https://plus.google.com/+MaksimMelnikau http://en.wikipedia.org/wiki/IPv6 https://community.openvpn.net/openvpn/wiki/IPv6 https://ipvsix.me/?p=106 http://www.datahata.by/