Bind – IPv6 PTR delegation

Network : 2001:db8::/32

We will delegate 2001:db8:1::/48 to another NS :

$TTL    86400

@       IN      SOA     ns1.example.net. postmaster@example.net. (

1      ; Serial

28800   ; Refresh every 8 hours

7200      ; Retry after 2 hour

604800    ; Expire after 7 days

86400     ; Default ttl is 1 day

)

;

@                       IN      NS      ns1.example.net.   ; SOA for 2001:db8::/32

$ORIGIN 8.b.d.0.1.0.0.2.ip6.arpa.

1.0.0.0   IN      NS   ns1-slash48.example.net.            ; SOA delegate for 2001:db8:1::/48

IPv6 tools – sipcalc

Tools to manipulate IPv6 addresses : sipcalc

Install in debian 7.x :

apt-get install sipcalc

Usage :

sipcalc -h

sipcalc 1.1.5

Usage: sipcalc [OPTIONS]... <[ADDRESS]... [INTERFACE]... | [-]>

Global options:

-a, --all All possible information.

-d, --resolve Enable name resolution.

-h, --help Display this help.

-I, --addr-int=INT Added an interface.

-n, --subnets=NUM Display NUM extra subnets (starting from

the current subnet). Will display all subnets

in the current /24 if NUM is 0.

-u, --split-verbose Verbose split.

-v, --version Version information.

-4, --addr-ipv4=ADDR Add an ipv4 address.

-6, --addr-ipv6=ADDR Add an ipv6 address.

IPv4 options:

-b, --cidr-bitmap CIDR bitmap.

-c, --classfull-addr Classfull address information.

-i, --cidr-addr CIDR address information. (default)

-s, --v4split=MASK Split the current network into subnets

of MASK size.

-w, --wildcard Display information for a wildcard

(inverse mask).

-x, --classfull-bitmap Classfull bitmap.

IPv6 options:

-e, --v4inv6 IPv4 compatible IPv6 information.

-r, --v6rev IPv6 reverse DNS output.

-S, --v6split=MASK Split the current network into subnets

of MASK size.

-t, --v6-standard Standard IPv6. (default)

Address must be in the "standard" dotted quad format.

Netmask can be given in three different ways:

- Number of bits    [/nn]

- Dotted quad       [nnn.nnn.nnn.nnn]

- Hex               [0xnnnnnnnn | nnnnnnnn]

Interface must be a valid network interface on the system.

If this options is used an attempt will be made to gain the address

and netmask from the specified interface.

Replacing address/interface with '-' will use stdin for reading further

arguments.

Example :

#sipcalc 2001:db8::

-[ipv6 : 2001:db8::] - 0

[IPV6 INFO]

Expanded Address - 2001:0db8:0000:0000:0000:0000:0000:0000

Compressed address - 2001:db8::

Subnet prefix (masked) - 2001:db8:0:0:0:0:0:0/128

Address ID (masked) - 0:0:0:0:0:0:0:0/128

Prefix address - ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff

Prefix length - 128

Address type - Aggregatable Global Unicast Addresses

Network range - 2001:0db8:0000:0000:0000:0000:0000:0000 -

2001:0db8:0000:0000:0000:0000:0000:0000

Very nice for IPv6 reverse :

# sipcalc -r 2001:db8::1
-[ipv6 : 2001:db8::1] - 0

[IPV6 DNS]
Reverse DNS (ip6.arpa)	-
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.b.d.0.1.0.0.2.ip6.arpa.

Very useful if you want subnet for point-to-point subnet /126 :

#sipcalc -S 126 2001:db8:0:1::/64

-[ipv6 : 2001:db8:0:1::/64] - 0

[Split network]
Network                 - 2001:0db8:0000:0001:0000:0000:0000:0000 -
                          2001:0db8:0000:0001:0000:0000:0000:0003
Network                 - 2001:0db8:0000:0001:0000:0000:0000:0004 -
                          2001:0db8:0000:0001:0000:0000:0000:0007
Network                 - 2001:0db8:0000:0001:0000:0000:0000:0008 -
                          2001:0db8:0000:0001:0000:0000:0000:000b
Network                 - 2001:0db8:0000:0001:0000:0000:0000:000c -
                          2001:0db8:0000:0001:0000:0000:0000:000f
Network                 - 2001:0db8:0000:0001:0000:0000:0000:0010 -
                          2001:0db8:0000:0001:0000:0000:0000:0013
...

Disable Ipv6 temporary on Windows

netsh interface ipv6 set privacy state=disabled store=active
netsh interface ipv6 set privacy state=disabled store=persistent
netsh interface ipv6 set global randomizeidentifiers=disabled store=active
netsh interface ipv6 set global randomizeidentifiers=disabled store=persistent

Restart windows

Ipv6 summarize

Exemple pour aggreger des prefixes IPv6 :

Pref 1 : fc00:1:0:8::/64

Pref2 : fc00:1:0:88::/64

Attention ne pas oublier que c’est de l’hexadecimal lorsque l’on fait la comparaison en binaire.

hexa 8 =    bin 0000 0000 0000 1000

Hexa 88 = bin 0000 0000 1000 1000

Nous avons donc 8 bits de différents. Nous pouvons aggréger les adresses comme cela  fc00:1:0::/56 (64-8).

 

Exemple 2 :

Nous avons les prefixes suivants :

fc00:1:0::1/64

fc00:1:0::4/64

fc00:1:0::5/64

Hexa 1 = bin 0000 0000 0000 0001

Hexa 4 = bin 0000 0000 0000 0100

Hexa 5 = bin 0000 0000 0000 0101

Nous utilisons donc 3 bits pour les 3 réseaux precedent. L’adresse aggregée est donc fc00:1::/61 (64-3).

 

Exemple 3 :

Prefixe global : 2000::/3

bin 0001 1111 1111 1111 = Hexa 1FFF

Cela signifie que le prefixe global commence a 2000::/3 et peux aller jusqu’à 3FFF::/3 (2000 + 1FFF = 3FFF)