{"id":734,"date":"2020-02-12T00:27:51","date_gmt":"2020-02-11T23:27:51","guid":{"rendered":"https:\/\/arved.priv.at\/weblog\/?p=734"},"modified":"2020-10-17T20:17:13","modified_gmt":"2020-10-17T19:17:13","slug":"upc-magenta-fritzbox-and-ipv6-prefix-delegation","status":"publish","type":"post","link":"https:\/\/arved.priv.at\/weblog\/2020\/02\/12\/upc-magenta-fritzbox-and-ipv6-prefix-delegation\/","title":{"rendered":"UPC\/Magenta Fritzbox and IPv6 Prefix Delegation"},"content":{"rendered":"\n<p>I have started with the network migration today. There is now a fritzbox between the UPC ConnectBox and my router. For IPv4 this now means triple NAT \\o\/.<\/p>\n\n\n\n<p>One of the most important task was to make my FreeBSD routers SSH port accessible from the internet. <\/p>\n\n\n\n<p>What I have tried:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Wireguard: The FreeBSD go package uses SSE2 which results in an illegal hardware instruction. :-S<\/li><li>Reverse SSH: Yes it works. But I want something better.<\/li><li>IPv6: Following steps were necessary to get it working:<ul><li>Disable the IPv6 Firewall on the ConnectBox<\/li><li>Enable IPv6 support on the Fritzbox<\/li><\/ul><ul><li>Disable &#8220;DHCPv6 Rapid Commit&#8221; on the Fritzbox. <\/li><li>Enable IA_PD and IA_NA on the LAN side of the Fritzbox<\/li><li>Configure my router as &#8220;Ipv6 Exposed Host&#8221; on the Fritzbox<\/li><\/ul><\/li><\/ul>\n\n\n\n<p>Now what I have to think about: Do I trust the Fritzbox enough as a firewall?<\/p>\n","protected":false},"excerpt":{"rendered":"<p>I have started with the network migration today. There is now a fritzbox between the UPC ConnectBox and my router. For IPv4 this now means triple NAT \\o\/. One of the most important task was to make my FreeBSD routers SSH port accessible from the internet. What I have tried: Wireguard: The FreeBSD go package &hellip; <a href=\"https:\/\/arved.priv.at\/weblog\/2020\/02\/12\/upc-magenta-fritzbox-and-ipv6-prefix-delegation\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;UPC\/Magenta Fritzbox and IPv6 Prefix Delegation&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-734","post","type-post","status-publish","format-standard","hentry","category-computer-networks"],"_links":{"self":[{"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/posts\/734","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/comments?post=734"}],"version-history":[{"count":2,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/posts\/734\/revisions"}],"predecessor-version":[{"id":736,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/posts\/734\/revisions\/736"}],"wp:attachment":[{"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/media?parent=734"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/categories?post=734"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/arved.priv.at\/weblog\/wp-json\/wp\/v2\/tags?post=734"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}