by
hhwong » Mon Jun 11, 2012 10:04 pm
Okay - I got my USG 20 configured to work with the tunnel. I presume that this example also applies to the other Zyxel USG routers (e.g., USG20W, USG50, USG100...). Thanks to the folks on DSLReports Zyxel board that helped (esp. leibold)
Base 6in4 (IP6-in-IP4) example is here:
ftp://ftp2.zyxel.com/ZyWALL_USG_20/user ... 00_Ed1.pdf
Tunnel:
1. sonic-side v4 address goes into the gateway address
2. Change in the tunnel example: Put in the customer-side transport address in the "IPv6 Address/Prefix Length," which is blank in the Zyxel example.
Ethernet:
In the Ethernet configuration (LAN1), this is the tricky part. Apparently the USG 20 doesn't support /60 addresses. I had to trim back my vast allocation to /64. This to me is a bug, but ok, I'll go with it.
So, in the IPv6 Address/Prefix Length field here, this is the IPv6 "address" of the LAN1 port. I put in the network address (the 2001:05a8../60 you got) trimmed to /64 and +1 (e.g., 2001:05a8...:1/64). For the "advertised prefix table," you type in just the trimmed network address (the 2001
..::0/64).
Policy Route:
Example works as is, except you need to change the LAN1_SUBNET to reflect the smaller local IPv6 network allocation (from /60 to /64).
Hopefully this will help someone with a Zyxel USG router. Let me know if you have any questions.