Let's turn a normal Linux box into an ipv6 ready router!
- DHCP lease service
- Local DNS resolution
- IPV6 first, support prefix delegation and stateless dhcpv6
- IPV6 ULA and NAT6 support, in case PD not working
- Sane firewall configuration
- Flow offloading for packet acceleration
- Minimal wireguard support
- Redirect flow based on destination ip set (
redirlistandredirlistv6in nftables.conf, may be used with dnsmasq'snftsetoption to support redirection by domain name)
dhcpcd: get ip for WAN port, ipv6-pd...dnsmasq: dhcp server, local net dns resolutionnftables: you need a firewall to secure your home!
On Debian, install them via:
sudo apt install dhcpcd dnsmasq nftablesNo matter how many LAN ethernet ports are on your Linux box, a bridge will be created to combine all these LAN ports, to ease the management.
In this repo's default configurations, eth0 and eth1 are LAN ports, eth2 is the WAN port. But this might not fit your needs. You should know which ethernet port is your WAN port, which are LAN ports. Then, change the device names in all the configuration files respectively.
After your customizations are done, copy the files where they should be before starting and enabling those services.
Finally, ensure there aren't any other dhcp client running, or else there might be some race conditions. In Debian, it's needed to comment all the ethernet device entries in /etc/network/interfaces, and disable the ifupdown service by sudo systemctl disable networking.service.
We provide workarounds to fix some wierd connectivity issues:
- Unable to reach ipv6 Internet when isp changes ipv6 prefix.