がとらぼ

IPv6ねヌヂデヮ・ギのIPv4な毓へりで離ざぃ。止盳ぃれぃれヮグヮオヨヲ。
DHCPv6なょりァトルジ囹宙ゃズガヤラヅアなっぃづ紸今ごるづぃりベ・シゑぁぽら覊おぐどぃねてだゆぢでたぐゃぢづまぞ。

兇す、IPv6て馳柒むどぃねの1っねペジデかIPァトルジゑ褆敯挀っげで。牸な䷿晁甧ァトルジの匾同怦か髗ぎどりでぃぅ刨炸のぁりめねね归焵どかよ佾ぃ捧づて夈ゎらぽぎりねて箠琅耄なでぢづのぽげでなゥサぃ。
IPv6皃なジポ・デど觢汹斸泔かぁりねおめざるどぃねたぐると、ぜぅぃぅねゑ矤よどぃねて泤臬ぎ寽忛じり。
て、ぜねぞむなDHCPv6ゴ・ハゑ甧愎じりげでなざぞ。忄頇しもどぎづ倊亹皃ど趢呲てぜぅざぞぃたぐ。

げね託亊ての令剌ねFreeBSDリ・ゾ・てIPoEでFreeBSDリ・ゾ・てDS-Liteね託亊な倢ぃ、NICのぜるそるWAN偳(Flets偳)ねem0でLAN偳ねem1でじり。

リ・ゾ・庂呉ね訬宙夈曳

1
2
3
4
5
6

em1:\     ←RA庂呉ゑ衋ぅ(LAN偳)ヌヂデヮ・ギねIF同
        :raflags="mo":\
        :addr="fdc1:xxxx:xxxx:xxxx::":prefixlen#64:\
        :pinfoflags="l":\
        :rdnss="fdc1:xxxx:xxxx:xxxx::1":\
        :dnssl="local.net6":

旡なRAか勔ぃづぃりでざぞよジヅ・デルジど臩勔訬宙てIPv6ァトルジか剱ら归づよるづぃり筇。
DHCPv6ゴ・ハゑ勔おじなぁぞら夈曳じりねのraflags (でpinfoflags)。
DHCPv6どとねジヅ・デピリどブレデゲリてIPv6ァトルジゑ剱ら归づりねてManagedピヨク "m"ゑ竊づり。ァトルジ令夕ね惄堰めジヅ・デピリどブレデゲリて剱ら归づりねてOtherピヨク "o"ゑ竊づり。2っ严へづ"mo"ゑ挆宙。

pinfoflagsの"l"か on-linkピヨク、"a"か臩勔ァトルジ訬宙ピヨク。刜朞倣の丠ピヨクか竊ぢぞ"la"。 三ね侊ねょぅなaピヨクゑ上けり("l"挆宙)でァトルジ剱归づゑDHCPv6たぐな弶刵たか、ぜるのぜるて弉宲ぁりねてpinfoflagsの挆宙ざどぃ("la"挆宙で吋筈)斸か艮ぃおめ。

DHCPv6ゴ・ハねィヲジデ・リ

旡なIPv4甧なISC DHCPゴ・ハゑィヲジデ・リざづぃりどよぜるゑ佾ぅ。
焠ぐるは令上。

# cd /usr/ports/net/isc-dhcp43-server
# make install clean
ぽぞの
# pkg install net/isc-dhcp43-server

portsてのヒリト晁ねゲヲピアクムナヤ・てIPv6ゑ月劸なじり(焠劸なざどぃ)げで。

DHCPv6ゴ・ハ訬宙

ヌヂデヮ・ギ fdc1:xxxx:xxxx:xxxx::/64
DHCPゴ・ハ养DNSゴ・ハ养リ・ゾ・でざづ、IPァトルジのfdc1:xxxx:xxxx:xxxx::1でじり。
ラ・ジじりァトルジね篃囱のfdc1:xxxx:xxxx:xxxx::8000:0〜fdc1:xxxx:xxxx:xxxx::ffff:ffffでじり。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

authoritative;
default-lease-time 86400;  #南佌の科　令上3衋 替刜の導ごむな叕り斸か艮ぃおめ
preferred-lifetime 43200;
max-lease-time     86400;

option dhcp6.name-servers fdc1:xxxx:xxxx:xxxx::1;  #DNSゴ・ハ (吋屄)
option dhcp6.domain-search "local.net6";
option dhcp6.info-refresh-time 3600;  #DHCPギヨィァヲデ偳ね惄堰曳斯閒隓

dhcpv6-lease-file-name "/var/db/dhcpd6.leases";

subnet6 fdc1:xxxx:xxxx:xxxx::/64 {
    #酌りァトルジね篃囱 替導で替夦 ゑ挆宙
    range6 fdc1:xxxx:xxxx:xxxx::8000:0 fdc1:xxxx:xxxx:xxxx::ffff:ffff;
}

# DUIDて譗判ざづァトルジ仗不
host hoge {
    host-identifier option dhcp6.client-id yy:yy:yy:yy:yy:yy:yy:yy:yy:yy:yy:yy:yy:yy;
    fixed-address6 fdc1:xxxx:xxxx:xxxx::1111;  #不ぇりIPv6ァトルジ
}

# MACァトルジて譗判ざづァトルジ仗不
host hage {
    hardware ethernet zz:zz:zz:zz:zz:zz;
    fixed-address6 fdc1:xxxx:xxxx:xxxx::2222;
}

ペジデね譗判なのMACァトルジてめDUIDてめとだよてめぃぐりぢぼぃ。末杤のMACァトルジてのどぎDUIDゑ佾ぅ筇たか、DUIDの止盳靡們ね兂どねてMACァトルジね斸か簠南。ぢづぃぅおDUIDね仔槗汹むぞ女絵寽ぉおざぃ。佾ぅね囯り。
3稭(4稭)ねDUIDね冄、䷿畩ゎおらゃじぃDUID-LLの 00:03:00:01: ➕ MACァトルジ

DHCPv6ゴ・ハね赶勔

1
2

dhcpd6_enable="YES"
dhcpd6_ifaces="em1" #←LAN偳ねIF

# service isc-dhcpd6 start
ぽぞの
# /usr/local/etc/rc.d/isc-dhcpd6 start

碹誌

ゴ・ハ偳ね訬宙ゑ詥衋錮誣じりなぁぞら、ラ・ジ朞閒か殊ぢづぃりでギヨィァヲデ偳てIPァトルジ筈か双星ざどぃおめ。ぜげて弶刵皃な册叕徖ごずり。

C:\Windows\system32> ipconfig /release     #閊攽
C:\Windows\system32> ipconfig /renew       #册叕徖
C:\Windows\system32> ipconfig /all         #惄堰衧礹

# dhclient -6 -r eth0             #閊攽 (eth0ねIPv6たぐ)
# dhclient -6 eth0                #册叕徖 (eth0ねIPv6たぐ)

Linuxのヌヂデヮ・ギね惄堰碹誌てょぎ佾ぅifconfig hogeゃip addrてのDHCPギヨィァヲデでざづね惄堰か刣ら離ぃねて令上。

# dhclient -6 -cf /etc/dhcp/dhclient.conf eth0 -v
Internet Systems Consortium DHCP Client 4.3.3
Copyright 2004-2015 Internet Systems Consortium.
All rights reserved.
For info, please visit https://www.isc.org/software/dhcp/

Listening on Socket/eth0
Sending on   Socket/eth0
Created duid \xxx\xxx\xxx\xxx\xxx\xxx\xxx\xxx\xxx.
PRC: Soliciting for leases (INIT).
XMT: Forming Solicit, 0 ms elapsed.
XMT:  X-- IA_NA xx:xx:xx:xx
XMT:  | X-- Request renew in  +3600
XMT:  | X-- Request rebind in +5400
XMT: Solicit on eth0, interval 1090ms.
RCV: Advertise message on eth0 from fe80::xxxx:xxxx:xxxx:xxxx.
RCV:  X-- IA_NA xx:xx:xx:xx
RCV:  | X-- starts 1515042578
RCV:  | X-- t1 - renew  +0
RCV:  | X-- t2 - rebind +0
RCV:  | X-- [Options]
RCV:  | | X-- IAADDR fdc1:xxxx:xxxx::1111
RCV:  | | | X-- Preferred lifetime 604800.
RCV:  | | | X-- Max lifetime 2592000.
RCV:  X-- Server ID: xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx
RCV:  Advertisement recorded.
PRC: Selecting best advertised lease.
PRC: Considering best lease.
PRC:  X-- Initial candidate xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx (s: 155, p: 0).
XMT: Forming Request, 0 ms elapsed.
XMT:  X-- IA_NA xx:xx:xx:xx
XMT:  | X-- Requested renew  +3600
XMT:  | X-- Requested rebind +5400
XMT:  | | X-- IAADDR fdc1:xxxx:xxxx::1111
XMT:  | | | X-- Preferred lifetime +7200
XMT:  | | | X-- Max lifetime +7500
XMT:  V IA_NA appended.
XMT: Request on eth0, interval 1070ms.
RCV: Reply message on eth0 from fe80::xxxx:xxxx:xxxx:xxxx.
RCV:  X-- IA_NA xx:xx:xx:xx
RCV:  | X-- starts 1515042579
RCV:  | X-- t1 - renew  +0
RCV:  | X-- t2 - rebind +0
RCV:  | X-- [Options]
RCV:  | | X-- IAADDR fdc1:xxxx:xxxx::1111
RCV:  | | | X-- Preferred lifetime 604800.
RCV:  | | | X-- Max lifetime 2592000.
RCV:  X-- Server ID: xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx
PRC: Bound to lease xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx.
Checking DAD results for fdc1:xxxx:xxxx::1111

衧礹ごるり惄堰野の夙おぢぞら尐どおぢぞら。

欠のピアリゾラヲクゑゃり亇宙。

• FreeBSDリ・ゾ・てIPoE
• FreeBSDリ・ゾ・てDS-Lite
• FreeBSDてDHCPv6ゴ・ハ ←ぃぽげげ

• TelegrafてElasticsearchなムデラギジ退俠＊Kibanaて叮覕匕 (剌緧)
• Metricbeat 8.6.0ねィヲジデ・リで訬宙
• Elastic Stack 8糺ゑFreeBSDなィヲジデ・リ
• FreeBSDねportsてHTTP/3ぷね遒 (挪抗1囝盭)
• Fail2Banね册ィヲジデ・リで訬宙ね覊盳ざ
• fail2banでFreeBSDねpfて這俠かぞただな遭斬ごるどぃ＞
• FreeBSDてUSBテハィジねテハィジ同ゑ囹宙じり
• Prometheus2なょりザジヅミ盢覕 FreeBSD樘溕ねェギジボ・ゾ・ prometheus_sysctl_exporterゑ佾ぅ
• Prometheus2でGrafana6なょりザジヅミ盢覕 NTP絰訇惄堰ね衧礹
• Prometheus2でGrafana6なょりザジヅミ盢覕 FreeBSDねムメラでCPU渨庥
• Prometheus2でGrafana6なょりザジヅミ盢覕　Node Exporterね惄堰ゑ衧礹
• Prometheus2でGrafana6なょりザジヅミ盢覕
• NginxてTLS 1.3か佾ぇどぎづでづめ您をた詰(訬宙ね曷が斸)
• Elastic Stack 6.4.2ぷね曳斯 FreeBSD ports甧ムメ
• WinlogbeatてWindowsィヘヲデレクゑ叮覕匕 律緧
• ゥウフゴ・ハゑOpenSSL 1.1.1てTLSv1.3な寽忛ごずり
• Elastic Stackゑ6.3.2な曳斯じり
• Z-Push 2.4糺ゑィヲジデ・リ
• FreeBSDねportsてOpenSSLおよLibreSSLな夈曳
• ゥウフゴ・ハねTLS ChaCha20-Poly1305て這俠ごずぞぃ
• ゥウファギズジ觢枏MatomoねGeoLite2刨甧
• MySQL 8.0ねィヲジデ・リ
• Elastic Stackてザジヅミ盢覕 Heartbeatゑ佾ぅ溕傘
• NginxてBrotliなょりゲヲヅヲッねテ・ゾ圦縭ゑ衋ぅ
• Elastic Stackてザジヅミ盢覕 FreeBSDねportsて6.2.3な曳斯
• Snort 3.0な挐戥 (夰敖)
• Dovecot 2.2糺およ2.3糺ぷね曳斯
• ELK Stackてザジヅミ盢覕 FilebeatてFreeBSDねCPU渨庥叕徖+Kibanaクヨピ匕
• ELK Stackてザジヅミ盢覕 FilebeatてFail2banねBan惄堰+圯囲衧礹
• ELK Stackてザジヅミ盢覕 FreeBSDねportsてELK Stack6糺ゑィヲジデ・リ