2011-11-12

IPv6 on a cable modem?

This is becoming a bit of a common theme now - fixed Jacqueline's Internet a few weeks ago, then fixed Pauline's Internet the other day (pic) and James's girlfriend's Internet yesterday on a cable modem!

So now, even on a cable modem, they have proper IPv4 and IPv6. Yes, as you may guess, it is our IPv4/6 via an L2TP tunnel and a FireBrick. I don't think any UK cable companies are doing IPv6 yet (tell me if I am wrong).

Obviously for a home installation a FireBrick is a tad overkill - I know that. We have plenty of geeky customers that love them even for home use, but they are typically used in small or even large businesses. They have a whole load of features, and one of the newest is operating as an L2TP client allowing a tunnel to be made to an L2TP server.

The L2TP server side (LNS) is in the "big brother" FB6202 model that we use as an ISP to handle broadband lines for customers, but the smaller versions do have support for L2TP as well, even if only for a few hundred connections. The latest addition means the FireBrick can connect in to our LNS just the same as a broadband line, but do it over another Internet connection (in this case a Virgin cable modem). It even works if the connection has NAT (NAT is evil).

Given that it took me about a day to get L2TP coded, I am quite pleased at how well it works (well, the L2TP was all in there, it basically needed the configuration to be a client). Of course, the best way to find any bits missing from the design (OK, "bugs" if you will) is to try it in anger, and that is what these crazy home installs are all about, even if it does mean putting up with James's driving to Richmond and back (it is OK, I have some motilium tablets for next time).

So, they ask me to fix their Internet and I make then a guinea pig, seems fair :-)

The advantage is that I get to try things that are a bit different - to try real life situations, like a cable modem!

We found the cable modem was a put fussy on the DHCP side, which was not a huge surprise, but not a problem. We then found there were several bits I needed to tweak on the L2TP side. Mostly it is changes to make things simpler and the configuration easier. So, all morning coding little bits of fine tuning and working well.

I wonder who's will be next. I am off to see my parents in a few weeks - perhaps they need a FireBrick install at home too :-)

10 comments:

  1. How much do the firebricks cost?

    ReplyDelete
  2. http://aa.net.uk/hosting-servers.html

    Between £420 and £900 for the small ones.

    ReplyDelete
  3. damn!

    £420 - 900

    and as I was reading the post I was gradually salivating more and more wanting one and was curious how much it might cost

    blammo !

    cant afford even the £420 model

    /me is miserable now

    ReplyDelete
  4. Does this mean your going into the tunnel broker business?

    ReplyDelete
  5. Is stacking the modem on top of the FB a thermal concern? One doesn't like hot hardware ... maybe the 2500s run cooler than the 2700s?

    ReplyDelete
  6. We do L2TP somewhat informally now. I suspect we may do more in the future if we can work out the best way to price it all?

    ReplyDelete
  7. Sounds like an interesting way of avoiding ISPs censorship systems.

    ReplyDelete
  8. Errm... a routerboard costs a fraction of this - I appreciate you flog firebricks, but it's not like the first ever firewall with ipv4 and ipv6.

    Routerboards can also connect to your excellent service :)

    ReplyDelete
  9. Routerboards are excellent kit, and inexpensive, yes. They are not quite the same beast as a FireBrick, but as I say a FireBrick is clearly overkill in this case :-)

    It is fun how these cases help find turn the development though - that was my point really.

    ReplyDelete
  10. I do exactly this with a routerboard

    Cable SuperHub in "Modem Mode"
    |
    |
    V
    Routerboard
    |
    |
    V
    Apple Time Capsule
    |
    |
    V
    Switch


    Works like a charm

    ReplyDelete

Comments are moderated purely to filter out obvious spam, but it means they may not show immediately.

Missing unix/linux/posix file open option

What I would like is a file open option for "create replacement file". The idea is that this makes a new inode in the same mount p...