I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on.
Thanks,
Scott
On 11/29/22 2:56 PM, Scott Gillins via 44net wrote:
I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on.
So I've done something like this as part of a dmvpn setup here for another ham from Mexico. We discovered UDP 4500, 500, IPinIP and any GRE was blocked due to their provider on their CGN. I setup a static on one side IPv6 GRE tunnel and routed the IPv4 44net over it for him. Worked great.
Our HamWan remote site setup is a well known way of getting some IPv4 ham net (and ipv6) space out to poorly connected sites and anyone can set it up (or I can provision you out of our Tampa site if you don't have a head end). https://wiki.w9cr.net/index.php/HamWAN_Remote_Site
The 44net IP encap crap needs to die and it's all proprietary so there's no hope to update it.
73s
We do offer that on our gateway. There is only one user (were 3 before), but still... I agree that there is some use case for it, e.g. with provider routers that have trouble with GRE over NAT.
Rob
On 11/29/22 20:56, Scott Gillins via 44net wrote:
I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on.
Thanks,
Scott
Awesome I did not see any documentation to that extent or config options for it in the portal. Can you please point me in the right direction.
Scott
From: Rob PE1CHL via 44net 44net@mailman.ampr.org Date: Wednesday, November 30, 2022 at 4:56 AM To: 44net@mailman.ampr.org 44net@mailman.ampr.org Subject: [44net] Re: 4 in 6 tunnel support We do offer that on our gateway. There is only one user (were 3 before), but still... I agree that there is some use case for it, e.g. with provider routers that have trouble with GRE over NAT.
Rob On 11/29/22 20:56, Scott Gillins via 44net wrote: I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on. Thanks, Scott
This has actually nothing to do with the portal. The portal manages the IPV4 allocations and tunnel and gateway interconnections.
How an user connects to an upstream gateway is out of the scope of the portal. Now if this specific gateway offers 4 in 6, IPIP, Open VPN or whatever other tunnel options, that is exclusively the decision and responsibility of the gateway owner/operator (in this case the gateway Rob talks about).
This is exactly the concept of Point of Presence: These PoPs should offer user connectivity by what ever means they ant or are able to, while being themselves gateways providing connectivity to the rest of the AMPR network by any means available and possible. This would take the burden of full interconnections from the end users with their individual gateways to the PoP operators, offering other well supported connectivity to their users (subnets or individual).
These connectivity solutions can not be fully managed by the portal, and should not be. How end users connect to a gateway providing AMPR network access is neither uniform, nor standardized, and outside of the scope of the AMPR central gateway. Any such decisions would impose limits instead of connectivity freedom, and would contradict the very foundation of what ham radio should be about: experimentation, progress, originality and technical freedom.
Please do not downgrade the ARDC to a IP space and grant supplier.
Marius, YO2LOJ
On 30/11/2022 16:54, Scott Gillins via 44net wrote:
Awesome I did not see any documentation to that extent or config options for it in the portal. Can you please point me in the right direction.
Scott
*From: *Rob PE1CHL via 44net 44net@mailman.ampr.org *Date: *Wednesday, November 30, 2022 at 4:56 AM *To: *44net@mailman.ampr.org 44net@mailman.ampr.org *Subject: *[44net] Re: 4 in 6 tunnel support
We do offer that on our gateway. There is only one user (were 3 before), but still... I agree that there is some use case for it, e.g. with provider routers that have trouble with GRE over NAT.
Rob
On 11/29/22 20:56, Scott Gillins via 44net wrote:
I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on. Thanks, Scott
44net mailing list --44net@mailman.ampr.org To unsubscribe send an email to44net-leave@mailman.ampr.org
Hey Scott,
Like Marius noted, that's not what the portal does.
Although, as he also noted - if you're in ARRL-MDC section, I'll design such a connection for your allocation and forward it in whole via the other mechanism/interface. If in my grid square, we'll try HSMM, lol.
To be clear, you only have Native IPv6 access to the Internet? What VPN or encapsulation protocols are you configured to receive currently?
All,
Is the test IP space still in our AMPRNet-owned block? I can test something with him (Wireguard is what I'm ready for - I currently forward the DNS and HTTP IPs in my allocation to an AWS server via native IPv6 in this manner). I don't think I can IPENCAP to you via IPv6...but we'll try.
73,
- LynwoodKB3VWG
On Wednesday, November 30, 2022 at 10:13:36 AM EST, Marius Petrescu via 44net 44net@mailman.ampr.org wrote:
This has actually nothing to do with the portal. The portal manages the IPV4 allocations and tunnel and gateway interconnections.
How an user connects to an upstream gateway is out of the scope of the portal. Now if this specific gateway offers 4 in 6, IPIP, Open VPN or whatever other tunnel options, that is exclusively the decision and responsibility of the gateway owner/operator (in this case the gateway Rob talks about).
This is exactly the concept of Point of Presence: These PoPs should offer user connectivity by what ever means they ant or are able to, while being themselves gateways providing connectivity to the rest of the AMPR network by any means available and possible. This would take the burden of full interconnections from the end users with their individual gateways to the PoP operators, offering other well supported connectivity to their users (subnets or individual).
These connectivity solutions can not be fully managed by the portal, and should not be. How end users connect to a gateway providing AMPR network access is neither uniform, nor standardized, and outside of the scope of the AMPR central gateway. Any such decisions would impose limits instead of connectivity freedom, and would contradict the very foundation of what ham radio should be about: experimentation, progress, originality and technical freedom.
Please do not downgrade the ARDC to a IP space and grant supplier.
Marius, YO2LOJ
On 30/11/2022 16:54, Scott Gillins via 44net wrote:
Awesome I did not see any documentation to that extent or config options for it in the portal. Can you please point me in the right direction.
Scott
From: Rob PE1CHL via 44net 44net@mailman.ampr.org Date: Wednesday, November 30, 2022 at 4:56 AM To: 44net@mailman.ampr.org 44net@mailman.ampr.org Subject: [44net] Re: 4 in 6 tunnel support
We do offer that on our gateway. There is only one user (were 3 before), but still... I agree that there is some use case for it, e.g. with provider routers that have trouble with GRE over NAT.
Rob
On 11/29/22 20:56, Scott Gillins via 44net wrote:
I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on.
Thanks,
Scott
_______________________________________________ 44net mailing list -- 44net@mailman.ampr.org To unsubscribe send an email to 44net-leave@mailman.ampr.org _______________________________________________ 44net mailing list -- 44net@mailman.ampr.org To unsubscribe send an email to 44net-leave@mailman.ampr.org
Scott,
Disregard, it seems you're volunteering in a sense
I'm IPv6 certified, so again, I can test whatever is needed.
- KB3VWG
Awesome I did not see any documentation to that extent or config options for it in the portal. Can you please point me in the right direction.
Scott
On Wed, Nov 30, 2022 at 4:56 AM Rob PE1CHL via 44net 44net@mailman.ampr.org wrote:
We do offer that on our gateway. There is only one user (were 3 before), but still... I agree that there is some use case for it, e.g. with provider routers that have trouble with GRE over NAT.
Rob
On 11/29/22 20:56, Scott Gillins via 44net wrote:
I was wondering if you had considered looking at a 4 in 6 tunnel support. I know that it may seem backwards with a lot of things moving to native v6 but the 44 net is a great resource for hams. One example of why I can see needing this is a lot of providers, specifically wireless, are doing a double or triple NAT of their own ipv4 address space. While this is OK for most internet activities it is not good to support inbound connections. You do however get a native IPV6 address that is not nated and fully routable. Having a headend location to support a 4 in 6 tunnel would help a lot of folks. I do support large networks as part of my day job and would be willing to help set up and support if you wanted to take this on.
Thanks,
Scott
44net mailing list -- 44net@mailman.ampr.org To unsubscribe send an email to 44net-leave@mailman.ampr.org
-
Bryan Fields -
lleachii@aol.com -
Marius Petrescu -
Rob PE1CHL -
Scott Gillins