Diese Seite (Version-58) wurde zuletzt am 29-Dez.-2024 12:26 von Administrator geändert.

Diese Seite wurde am 27-Nov.-2024 17:07 von Administrator erstellt.

Du bist nicht autorisiert, diese Seite umzubenennen.

Du bist nicht autorisiert, diese Seite zu löschen.

Versionsgeschichte der Seite

Version Zuletzt geändert Größe Autor Änderungen Kommentar
58 29-Dez.-2024 12:26 8 KB Administrator zur vorherigen
57 29-Dez.-2024 12:23 8 KB Administrator zur vorherigen | zur neuesten
56 29-Dez.-2024 12:13 7 KB Administrator zur vorherigen | zur neuesten
55 29-Dez.-2024 11:58 7 KB Administrator zur vorherigen | zur neuesten
54 29-Dez.-2024 11:54 7 KB Administrator zur vorherigen | zur neuesten
53 29-Dez.-2024 11:49 6 KB Administrator zur vorherigen | zur neuesten
52 29-Dez.-2024 11:48 6 KB Administrator zur vorherigen | zur neuesten
51 29-Dez.-2024 11:45 6 KB Administrator zur vorherigen | zur neuesten
50 29-Dez.-2024 11:43 6 KB Administrator zur vorherigen | zur neuesten
49 29-Dez.-2024 11:20 5 KB Administrator zur vorherigen | zur neuesten
48 29-Dez.-2024 10:58 5 KB Administrator zur vorherigen | zur neuesten
47 29-Dez.-2024 10:54 5 KB Administrator zur vorherigen | zur neuesten
46 29-Dez.-2024 10:51 4 KB Administrator zur vorherigen | zur neuesten
45 29-Dez.-2024 10:50 4 KB Administrator zur vorherigen | zur neuesten DynDNS and ipv6 ==> DNS, DynDNS and ipv6
44 29-Dez.-2024 10:49 4 KB Administrator zur vorherigen | zur neuesten
43 29-Dez.-2024 10:35 4 KB Administrator zur vorherigen | zur neuesten Raspberry Security ==> DynDNS and ipv6
42 24-Dez.-2024 12:15 4 KB Administrator zur vorherigen | zur neuesten
41 24-Dez.-2024 11:35 4 KB Administrator zur vorherigen | zur neuesten

Links

Eingehende Links Ausgehende Links
DNS, DynDNS and ipv6
DNS, DynDNS and ipv6

Versionsunterschiede

Unterschiede zwischen Version und .

Zeile 4: Eine Zeile geändert.
!DynDNS with [ddclient|https://github.com/ddclient/ddclient/releases]
[{TableOfContents }]
Zeile 6: 2 Zeilen hinzugefügt.
![IPv6] Address
Check/Test IPs
Zeile 9: 109 Zeilen hinzugefügt.
> ifconfig
> ip a | grep inet6
> ip -4 addr show
> ip -6 -o addr show dev eth0 scope global
> ping -6 2a02:5a0:4110:f590:fdd3:3e99:1234:9876
> ping -6 www.google.com
> nslookup -6 www.google.com
> sudo traceroute -6 www.google.com
}}}
The raspberry may have a random ipv6 to hide target.
This can happen with "privacy extensions" enabled via dhcpcd (Dynamic Host Configuration Protocol Client Daemon).
But this is not enabled by default, check with \\
> service dhcpcd status \\
If "Unit dhcpcd.service could not be found." then the random IP is set from Fritz!Box, \\
If found, you can disable (not recommended):
{{{
> sudo vi /etc/dhcpcd.conf
> slaac private # change to "slaac hwaddr"
> sudo service networking restart
}}}
see Heimnetz > Netzwerk > YourDevice > Heimnetz > "IPv6-GUA-Temporary" \\
The official IPv6-GUA (Global Unicast-Address) is another one.\\
But with dyndns we can use the random/temporary one.
Windows
{{{
> ping -6 www.google.com
> ping -6 2a02:5a0:410f:46f0:51ef:ea06:9875:1234
> nslookup myDevice 192.168.188.1 # for 1. target with 2. nameserver
> nslookup myDevice fd94:725a:490a::d624:ddff:fe70:5c5b
> nslookup -debug -type=any -type=aaaa MyComputer 192.168.188.1
> resolvconf -l
> ipconfig # see also standard gateway here
}}}
Fritzbox\\
temporary vs permanent/secured ipv6
* LLA - Local Link Address
* ULA - Unique Local Address
* GUA - Global Unicast-Address
IP lifetime
{{{
> ip addr show eth0
set lifetime to forever:
> sudo ip addr change 2a02:5a0:4110:f590:6547:1234:9876:ee dev eth0 valid_lft forever preferred_lft forever
}}}
! [Network Manager|https://wiki.debian.org/NetworkConfiguration#DNS_configuration_for_NetworkManager]
I use a custom DNS server setting, because the fritzbox does not resolve my dynv6 domains (?).\\
Do not modify file "/etc/resolv.conf". Use network manager instead with "nmcli".
{{{
> systemctl status NetworkManager
> sudo vi /etc/NetworkManager/NetworkManager.conf # config
> sudo vi /etc/NetworkManager/system-connections/*Wired* # config
> sudo /etc/init.d/networking restart
> sudo systemctl reload NetworkManager
> sudo systemctl status NetworkManager.service
> sudo systemctl restart NetworkManager.service # log in > journalctl -u NetworkManager.service -b
> sudo nmcli device reapply eth0
> sudo nmcli general
> sudo nmcli general reload dns-full # flush dns cache
> sudo nmcli -o device show # show interfaces settings
> sudo nmcli -p connection show # show interface status
#THIS IS NECESSARY
> sudo nmcli con mod "Wired connection 1" ipv4.dns "1.1.1.1,8.8.8.8" # add cloudflare and google dns
> sudo nmcli con mod "Wired connection 1" ipv4.ignore-auto-dns no # this adds "search fritz.box" to get ips at all from frit.box
> sudo nmcli con mod "Wired connection 1" ipv6.ignore-auto-dns yes # we skip ipv6 dns
> sudo nmcli c down "Wired connection 1" && sudo nmcli c up "Wired connection 1" # restart
> sudo nmtui # visual tool for network manager
> sudo nmcli conn up eth0
> sudo nmcli con mod "Wired connection 1" ipv4.dns 10.0.0.1
> sudo nmcli con mod "Wired connection 1" ipv6.dns 2606:4700:4700::1111
> sudo nmcli con mod "Wired connection 1" ipv6.dns-priority 100 ipv4.dns-priority 50
> sudo vi /etc/resolv.conf # validate settings
> sudo nmcli connection modify help # help
> nmcli connection modify "Wired connection 1" -ipv6.dns fd94:725a:490a:0:d624:ddff:9867:1234
> nmcli device modify eth0 ipv4.ignore-auto-dns yes # remove dns nameservers
> sudo nmcli con mod "Wired connection 1" ipv6.ignore-auto-dns no # remove dns nameservers
}}}
Reset
{{{
sudo rm /etc/resolv.conf
sudo systemctl restart NetworkManager
}}}
DHCP
{{{
> service --status-all # check all services
}}}
If you see "networking", this seems do be dhclient
{{{
> sudo vi /etc/default/networking # config
> sudo vi /etc/dhcp/dhclient.conf # config
> sudo dhclient -v eth0 # renew
> sudo dhclient -6 -r -v eth0 # force renew
> sudo systemctl restart networking # restart
> sudo ifconfig eth0 down && sudo ifconfig eth0 up
}}}
!! DynDNS
!DynDNS with [ddclient|https://github.com/ddclient/ddclient/releases]
{{{
Zeile 41: 7 Zeilen gelöscht.
!Configure
Check IPs
{{{
> ifconfig
> ip -6 -o addr show dev eth0 scope global
}}}
Zeile 170: 8 Zeilen hinzugefügt.
! Test DynDNS / Error DNS_PROBE_FINISHED_NXDOMAIN
Note: it is sufficient to register just an ipv6 address with your dyndns provider (AAAA record). You do neither need an ip4 address (A record) nor any other DNS zone entry. \\
# enable a port to forward to your device in your router
# test the port forwarding without DNS first, you can call an ipv6 address like this https://~[2a02:x205:..~]:1234 (https://~[ipv6~]:port)
# test domain name resolution (DNS)
** Firefox uses its own DNS server (not the OS one) and those worked from scratch, see Settings > Security > DNS over HTTPS > Anbieter (Cloudflare)
** Windows used the FritzBox to resolve and that did not work (?). I entered a dedicated DNS server at Windows + R > ncpa.cpl > Ethernet > Porperties > Internetprotokoll, Version 4+ 6 > DNS (I used cloudflare and google as alternative, you can search for "DNS server list").
[{Table style='width:auto'
Zeile 179: 15 Zeilen hinzugefügt.
|Cloudflare|1.1.1.1|2606:4700:4700::1111
|Google|8.8.8.8 or 8.8.4.4|2001:4860:4860::8888 or 2001:4860:4860::8844
|Digitalcourage e.V.|46.182.19.48|2a02:2970:1002::18
|Digitale Gesellschaft|185.95.218.42|2a05:fc84::42
|dismail.de|80.241.218.68|2a02:c205:3001:4558::1
}]
{{{
> ipconfig
> ping -6 2a02:x205:... or serverName
> netsh int ip show address
> route print -6
> arp -a
}}}
** Chrome uses the OS one and this did not work. You can either update Windows or use a dedicated for Chrome directly too at chrome://settings/security > Erweitert > Sicheres DNS verwenden = Enabled > DNS Anbieter auswählen > Cloudflare (1.1.1.1)
** FritzBox: see [here|https://www.heise.de/tipps-tricks/Fritzbox-DNS-Server-aendern-5054919.html], > Internet > Zugangsdaten > DNS-Server
Zeile 195: 9 Zeilen hinzugefügt.
!DNS Cache Lookup / Purge
* Firefox: about:networking#dns
* Chrome: chrome://net-internals/#dns
* Edge: edge://net-internals/#dns
* Windows:
** > ipconfig /release + ipconfig /flushdns + ipconfig /renew
** > ipconfig /displaydns|findstr pi5
* Linux:
** > sudo nmcli general reload dns-full
Diese Seite (Version-58) wurde zuletzt am 29-Dez.-2024 12:26 von Administrator geändert.Top