Skip to content

Latest commit

 

History

History
84 lines (55 loc) · 3.72 KB

ipv6-update.md

File metadata and controls

84 lines (55 loc) · 3.72 KB

Update configuration on IPv6 prefix change

GitHub stars GitHub forks GitHub watchers required RouterOS version Telegram group @routeros_scripts donate with PayPal

⬅️ Go back to main README

ℹ️ Info: This script can not be used on its own but requires the base installation. See main README for details.

Description

With changing IPv6 prefix from ISP this script handles to update...

  • ipv6 firewall address-list (prefixes (/64) and host addresses (/128))
  • dns records

Requirements and installation

Just install the script:

$ScriptInstallUpdate ipv6-update;

Your ISP needs to provide an IPv6 prefix, your device receives it via dhcp:

/ipv6/dhcp-client/add add-default-route=yes interface=ppp-isp pool-name=isp request=prefix script=ipv6-update;

Note this already adds this script as script. The pool name (here: "isp") is important, we need it later.

Also this expects there is an address assigned from pool to an interface:

/ipv6/address/add from-pool=isp interface=br-local;

Sometimes dhcp client is stuck on reconnect and needs to be released. Installing ppp-on-up may solve this.

Configuration

As an address-list entry is mandatory a dynamic one is created automatically. It is updated with current prefix and can be used in firewall rules.

Alternatively a static address-list entry can be used, where comment has to be "ipv6-pool-" and actual pool name. Use what ever list is desired, and create it with:

/ipv6/firewall/address-list/add address=2003:cf:2f0f:de00::/56 comment=ipv6-pool-isp list=extern;

If the dynamic entry exists already you need to remove it before creating the static one..

Address list entries for specific interfaces can be updated as well. The interface needs to get its address from pool isp and the address list entry has to be associated to an interface in comment:

/ipv6/firewall/address-list/add address=2003:cf:2f0f:de01::/64 comment="ipv6-pool-isp, interface=br-local" list=local;

Updating address list entries with host addresses works as well, the new prefix is combinded with given suffix then:

/ipv6/firewall/address-list/add address=2003:cf:2f0f:de01:e3e0:f8fa:8cd6:dbe1/128 comment="ipv6-pool-isp, interface=br-local" list=hosts;

Static DNS records need a special comment to be updated. Again it has to start with "ipv6-pool-" and actual pool name, followed by a comma, "interface=" and the name of interface this address is connected to:

/ip/dns/static/add address=2003:cf:2f0f:de00:1122:3344:5566:7788 comment="ipv6-pool-isp, interface=br-local" name=test.example.com ttl=15m;

See also


⬅️ Go back to main README
⬆️ Go back to top