From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from web.penguinfriends.org (web.penguinfriends.org [IPv6:2a01:4f8:190:3484::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id A6FD73B2A4 for ; Tue, 18 May 2021 07:41:44 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by web.penguinfriends.org (Postfix) with ESMTP id 1393CAC177C for ; Tue, 18 May 2021 13:41:43 +0200 (CEST) X-Virus-Scanned: amavisd-new at web.penguinfriends.org Received: from web.penguinfriends.org ([127.0.0.1]) by localhost (web.penguinfriends.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Jp3maOdsL4pm for ; Tue, 18 May 2021 13:41:41 +0200 (CEST) Received: from smtpclient.apple (unknown [IPv6:2a0d:3340:2310:902:a536:99ed:e6b0:bbf5]) (Authenticated sender: aw@awlnx.space) by web.penguinfriends.org (Postfix) with ESMTPSA id D4029AC1774 for ; Tue, 18 May 2021 13:41:40 +0200 (CEST) From: Annika Wickert Content-Type: multipart/alternative; boundary="Apple-Mail=_3CDB81FF-054F-40DA-9BBE-186E52693D0E" Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.43\)) Date: Tue, 18 May 2021 13:41:40 +0200 In-Reply-To: Cc: Starlink@lists.bufferbloat.net References: Message-Id: <39D4FA68-A096-4874-9DB8-33B2F914B1C0@awlnx.space> X-Mailer: Apple Mail (2.3654.80.0.2.43) Subject: Re: [Starlink] dhcpv6-pd details X-BeenThere: starlink@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Starlink has bufferbloat. Bad." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 May 2021 11:41:45 -0000 --Apple-Mail=_3CDB81FF-054F-40DA-9BBE-186E52693D0E Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 My lease time is also at 5min, I am in Germany close to Munich. Maybe it stops changing when my pole mount finally arrives and I get a = more stable connection. > On 18. May 2021, at 13:37, Nick Buraglio = wrote: >=20 > Interesting. My lease time is set to 5m(!!!) but it=E2=80=99s only = changed once in about 2 months. Where are you located?=20 >=20 > nb >=20 > On Tue, May 18, 2021 at 3:33 AM Annika Wickert > wrote: > I got dhcpv6-pd running some time ago with wide-dhcpv6 and the = following settings: >=20 > profile default > { > information-only; >=20 > request domain-name-servers; > request domain-name; >=20 > script "/etc/wide-dhcpv6/dhcp6c-script"; > }; >=20 > interface eth0 { > send ia-pd 0; > send ia-na 0; > }; >=20 > id-assoc na 0 { > }; >=20 > id-assoc pd 0 { > prefix-interface wlan0 { > sla-len 8; > sla-id 1; > }; > prefix-interface eth0.222 { > sla-len 8; > sla-id 2; > }; >=20 > }; >=20 >=20 > To request my IPv6 /64 on my WAN interface I run the following every = two minutes, otherwise I lose the address: > /bin/rdisc6 -v eth0 >=20 > With this v6 works very good and I have no issues at all. >=20 > But prefixes change every 24 hours or so >=20 > Best, > Annika >=20 >=20 >> On 17. May 2021, at 21:15, Dave Taht > wrote: >>=20 >> On Mon, May 17, 2021 at 12:04 PM Nick Buraglio > wrote: >>>=20 >>> As discussed privately with Dave, I have removed the starlink = provided >>> router and replaced it with a Mikrotik RB2011 to allow for more >>=20 >> Running routerOS? Latest beta's of that have cake in 'em. >>=20 >>> granular control, and to better tie into my existing network. >>=20 >> Starlink provides a router, also? I'm so confused. I thought the = dishy >> was all there was. Care to tear it apart and describe what's in it? >>=20 >>> This has >>> allowed me to make a dhcpv6-pd request that is reasonably stable (so >>> far it has changed once in the last 2 months). The lease time is >>> incredibly short, which is a little strange but as long as the = DHCPv6 >>> server is the same and remains unchanged, it should just hand out = the >>> same prefix upon request. >>=20 >> That was a terrible habit that comcast had got into in the early days >> that forced >> openwrt to flush and reload the firewall every minute, or less. >>=20 >> I'd pioneered a stateless firewall in cerowrt that never ever ever >> needed to reload the >> rules, using a pattern match for each specifically renamed ethernet = interface. >>=20 >> Regrettably that was not accepted into openwrt, because "nftables" = was >> just around the corner. >> It scaled beautifully to tons of interfaces going up and down so long >> as they were named appropriately, >> at far less cpu overhead for complicated rules than the standard >> openwrt firewall. >>=20 >> https://www.bufferbloat.net/projects/cerowrt/wiki/CeroWall/?version=3D9= = >>=20 >> Anyway, I don't remember all that we did to suppress the flood of >> useless static changes >> to everything ipv6, but I hope that whatever we ended up doing still >> works in this case. >>=20 >>> I also built a very crude measurement display that just uses curl = get >>> and dig via smokeping to display reasonable RTT. It's detailed in = the >>> reddit post here: >>> = https://www.reddit.com/r/Starlink/comments/mykxjv/functional_ipv6_and_some= _crude_starlink_latency/ = >>> and can be viewed directly here: >>> https://starmon.qosbox.com/ >>=20 >> THX! We really need to collect the "good" information and publish it >> somewhere, the reddit noise level is too high. >>=20 >> One piece of mis-information I think was the news you can "route" >> packets over ipv4 with a box in front of it and >> a default gw of 192.168.100.1 Not clear from that news whether or not >> NAT was required on the next hop or not... ? >>=20 >> (that's from another reddit post I mis-remember) >>=20 >>>=20 >>> Making dhcpv6-pd work is pretty standard: >>>=20 >>> /ipv6 dhcp-client >>>=20 >>> add add-default-route=3Dyes interface=3Dether2 = pool-name=3Dstarlink-ipv6 >>> prefix-hint=3D::/56 request=3Dprefix >>>=20 >>> On each interface you want to have IPv6 on: >>>=20 >>> /ipv6 address >>>=20 >>> add address=3D::1 from-pool=3Dstarlink-ipv6 interface=3Dbridge.8 >>>=20 >>> add address=3D::1 from-pool=3Dstarlink-ipv6 interface=3Dbridge.6 >>=20 >> THANKS SO MUCH. I am thinking at the moment that openwrt's dhcp-pd >> implementation is currently >> broken (it's not working on admittedly a comcast modem I just got = that >> I'd not used before), but >> as soon as I get a chance I'll try configuring odhcpd6 to do = something >> like this. If I can remember how. >>=20 >>=20 >>> _______________________________________________ >>> Starlink mailing list >>> Starlink@lists.bufferbloat.net = >>> https://lists.bufferbloat.net/listinfo/starlink = >>=20 >>=20 >>=20 >> --=20 >> Latest Podcast: >> = https://www.linkedin.com/feed/update/urn:li:activity:6791014284936785920/ = >>=20 >> Dave T=C3=A4ht CTO, TekLibre, LLC >> _______________________________________________ >> Starlink mailing list >> Starlink@lists.bufferbloat.net = >> https://lists.bufferbloat.net/listinfo/starlink = > _______________________________________________ > Starlink mailing list > Starlink@lists.bufferbloat.net > https://lists.bufferbloat.net/listinfo/starlink = --Apple-Mail=_3CDB81FF-054F-40DA-9BBE-186E52693D0E Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 My = lease time is also at 5min, I am in Germany close to Munich.

Maybe it stops changing = when my pole mount finally arrives and I get a more stable = connection.

On 18. May 2021, at 13:37, Nick Buraglio = <buraglio@forwardingplane.net> wrote:

Interesting. My lease time is set to 5m(!!!) but it=E2=80=99s = only changed once in about 2 months. Where are you = located? 

nb

On Tue, May = 18, 2021 at 3:33 AM Annika Wickert <aw@awlnx.space> wrote:
I = got dhcpv6-pd running some time ago with wide-dhcpv6 and the following = settings:

profile = default
{
  information-only;

  request domain-name-servers;
  request domain-name;

  script "/etc/wide-dhcpv6/dhcp6c-script";
};

interface eth0 {
        send ia-pd 0;
        send ia-na 0;
};

id-assoc na 0 {
};

id-assoc pd 0 {
        prefix-interface wlan0 {
              =   sla-len 8;
          =       sla-id 1;
      =   };
      =   prefix-interface eth0.222 {
    =             sla-len 8;
              =   sla-id 2;
      =   };

};


To = request my IPv6 /64 on my WAN interface I run the following every two = minutes, otherwise I lose the address:
/bin/rdisc6 = -v eth0

With = this v6 works very good and I have no issues at all.

But prefixes change = every 24 hours or so

Best,
Annika


On 17. May 2021, at 21:15, Dave Taht <dave.taht@gmail.com> wrote:

On = Mon, May 17, 2021 at 12:04 PM Nick Buraglio <nick@buraglio.com> = wrote:

As discussed privately with = Dave, I have removed the starlink provided
router and = replaced it with a Mikrotik RB2011 to allow for more

Running = routerOS? Latest beta's of that have cake in 'em.

granular control, and to better tie into = my existing network.

Starlink= provides a router, also? I'm so confused. I thought the dishy
was = all there was. Care to tear it apart and describe what's in = it?

This has
allowed me to make = a dhcpv6-pd request that is reasonably stable (so
far it = has changed once in the last 2 months). The lease time is
incredibly short, which is a little strange but as long as = the DHCPv6
server is the same and remains unchanged, it = should just hand out the
same prefix upon request.

That = was a terrible habit that comcast had got into in the early = days
that = forced
openwrt = to flush and reload the firewall every minute, or less.

I'd = pioneered a stateless firewall in cerowrt that never ever ever
needed = to reload the
rules, = using a pattern match for each specifically renamed ethernet = interface.

Regrettably that was not accepted into openwrt, because = "nftables" was
just = around the corner.
It = scaled beautifully to tons of interfaces going up and down so = long
as = they were named appropriately,
at far = less cpu overhead for complicated rules than the standard
openwrt = firewall.

https://www.bufferbloat.net/projects/cerowrt/wiki/CeroWall/?ver= sion=3D9

Anyway, = I don't remember all that we did to suppress the flood of
useless = static changes
to = everything ipv6, but I hope that whatever we ended up doing = still
works = in this case.

I also built a very crude measurement = display that just uses curl get
and dig via smokeping to = display reasonable RTT. It's detailed in the
reddit post = here:
https://www.reddit.com/r/Starlink/comments/mykxjv/functional_ip= v6_and_some_crude_starlink_latency/
and can be viewed = directly here:
https://starmon.qosbox.com/

THX! = We really need to collect the "good" information and publish = it
somewhere, the reddit noise level is too high.

One = piece of mis-information I think was the news you can "route"
packets = over ipv4 with a box in front of it and
a = default gw of 192.168.100.1 Not clear from that news whether or = not
NAT = was required on the next hop or not... ?

(that's = from another reddit post I mis-remember)


Making dhcpv6-pd work is = pretty standard:

/ipv6 dhcp-client

add add-default-route=3Dyes interface=3Dether2 = pool-name=3Dstarlink-ipv6
prefix-hint=3D::/56 = request=3Dprefix

On each interface you want = to have IPv6 on:

/ipv6 address

add address=3D::1 from-pool=3Dstarlink-ipv6 = interface=3Dbridge.8

add address=3D::1 = from-pool=3Dstarlink-ipv6 interface=3Dbridge.6

THANKS = SO MUCH. I am thinking at the moment that openwrt's dhcp-pd
implementation is currently
broken = (it's not working on admittedly a comcast modem I just got = that
I'd = not used before), but
as = soon as I get a chance I'll try configuring odhcpd6 to do = something
like = this. If I can remember how.


_______________________________________________
Starlink mailing list
Starlink@lists.bufferbloat.net
https://lists.bufferbloat.net/listinfo/starlink



-- 
Latest = Podcast:
https://www.linkedin.com/feed/update/urn:li:activity:6791014284= 936785920/

Dave = T=C3=A4ht CTO, TekLibre, LLC
_______________________________________________
Starlink= mailing list
Starlink@lists.bufferbloat.net
https://lists.bufferbloat.net/listinfo/starlink

_____________________________________________= __
Starlink mailing list
Starlink@lists.bufferbloat.net
https://lists.bufferbloat.net/listinfo/starlink

= --Apple-Mail=_3CDB81FF-054F-40DA-9BBE-186E52693D0E--