Hi!
My ISP (Telia) have been deploying IPv6 for some time, and today I thought I'd see if I can get it running on my SRX320. My ISP doesn't provide any documentation, and their support isn't helpful so I'm pretty much on my own. What I do know is that they are delegating a /56 using DHCPv6, but that's it. I'm not speaking IPv6 fluently yet, so that's also a problem. :)
Anyway, I made couple of changes to my SRX (enabled dhcpv6-client on the external interface, see config at the bottom of the post) and yes, I immediately got IPv6 up and running.
However, the SRX doesn't pickup and install any default route from my ISP. I don't know if that is by design, or if I've forgotten something on my side? Perhaps the routing info should come from somewhere else?
I guess I could set a static ::/0 route with fe80::1234:1234:1234:9c00 as the next hop, but that feels a bit fragile.
Would appreciate some words of wisdom here, thanks. :)
> show dhcpv6 client binding detail
Client Interface/Id: ge-0/0/0.0
Hardware Address: 80:7f:f8:01:96:00
State: BOUND(DHCPV6_CLIENT_STATE_BOUND)
ClientType: STATEFUL
Lease Expires: 2024-02-18 14:23:54 CET
Lease Expires in: 389 seconds
Lease Start: 2024-02-18 14:03:54 CET
Bind Type: IA_PD
Preferred prefix length 0
Sub prefix length 0
Client DUID: LL0x3-80:7f:f8:01:a0:00
Rapid Commit: On
Server Identifier: fe80::1234:1234:1234:9c00
Client IP Prefix: 2001:2001:2001:2001::/56
DHCP options:
Name: server-identifier, Value: LL0x1-1c:2a:8b:bb:9c:00
Name: dns-recursive-server, Value: 2001:2000::2,2001:2000::248
> show ipv6 neighbors
IPv6 Address Linklayer Address State Exp Rtr Secure Interface
fe80::1234:1234:1234:9c00 00:00:5e:00:01:1d stale 82 yes no ge-0/0/0.0
> show interfaces terse ge-0/0/0.0
Interface Admin Link Proto Local Remote
ge-0/0/0.0 up up inet 1.2.3.4/40
inet6 fe80::8888:8888:fe01:9600/64
> show route table inet6.0
inet6.0: 5 destinations, 5 routes (4 active, 0 holddown, 1 hidden)
+ = Active Route, - = Last Active, * = Both
2001:2001:2001:2001::/56
*[Access-internal/12] 00:21:31
Reject
fe80::8888:8888:fc01:9600/128
*[Direct/0] 00:23:08
> via lo0.0
fe80::8888:8888:fe01:9600/128
*[Local/0] 00:21:34
Local via ge-0/0/0.0
ff02::2/128 *[INET6/0] 00:23:13
MultiRecv
> show configuration
version 21.4R3-S5.4;
security {
forwarding-options {
family {
inet6 {
mode flow-based;
}
}
}
zones {
security-zone internet {
interfaces {
ge-0/0/0.0 {
host-inbound-traffic {
system-services {
ping;
traceroute;
dhcp;
dhcpv6;
}
protocols {
router-discovery;
}
}
}
}
}
}
}
interfaces {
ge-0/0/0 {
description INTERNET;
unit 0 {
family inet {
dhcp {
force-discover;
}
}
family inet6 {
dhcpv6-client {
client-type stateful;
client-ia-type ia-pd;
rapid-commit;
client-identifier duid-type duid-ll;
}
}
}
}
lo0 {
unit 0 {
family inet {
address 127.0.0.1/32;
}
family inet6 {
address ::1/128;
}
}
}
}