You need to enable hardware virtualization in BIOS if you want to create Fully virtualized instances.
Enter BIOS (F9) --> Advanced Options --> Processor Options --> Enable intel Virtualization Technology
Now you should be able to create Fully virtualized virtual machines from XEN or similar virtualization packages without OS modifications.
./arun
Saturday, 20 March 2010
Thursday, 18 March 2010
Issues with zone transfer in Dual stack IPv4 / IPv6
You might face issues with zone transfer to ipv4 secondaries on a dual stack server where the bind listening on IPv4 and IPv6 address,
this happens because , once the v6 is enabled on bind it just try to make ipv4 address looks like v6 address.
Solution : just add the v6 formatted v4 address to the allowed list
./arun
client ::ffff:11.11.11.11#43253: zone transfer 'example.com/IN' deniedthis happens because , once the v6 is enabled on bind it just try to make ipv4 address looks like v6 address.
Solution : just add the v6 formatted v4 address to the allowed list
allow transfer { ::ffff:11.11.11.11; };
./arun
Configure Apache over IPv6
Once your network interface is configured with IPv6, it is easy to configure the webserver. No real difference with IPv4 configuration.
Configure Apache to listen the IPv6 address:
If the apache virtual host is configured with domain name , eg < VirtualHost arunns.com:80 >, just add AAAA record for arunns.com in dns and the website will work without any extra configurations other than the previous two lines.
Also we can specifically configure it :
It is possible to have different contents for ipv4 and ipv6 sites, just create two different virtual hosts with different document root one for IPv4 and other for IPv6.
./arun
Configure Apache to listen the IPv6 address:
Listen ipv6_address:port
NameVirtualHost ipv6_address:port
If the apache virtual host is configured with domain name , eg < VirtualHost arunns.com:80 >, just add AAAA record for arunns.com in dns and the website will work without any extra configurations other than the previous two lines.
Also we can specifically configure it :
< VirtualHost ipv4_address:80 ipv6_address:80 >It is possible to have different contents for ipv4 and ipv6 sites, just create two different virtual hosts with different document root one for IPv4 and other for IPv6.
< VirtualHost ipv4_address:80 >
DocumentRoot /home/123/
< /VirtualHost >
< VirtualHost ipv6_address:80 >
DocumentRoot /home/456/
< /VirtualHost >
./arun
Thursday, 11 March 2010
IPV6 Tunnel from MAC/Linux
It is really easy to establish an ipv6 network tunnel from your machine directly. Make your network/system/services IPv6 ready :)
Create a ipv6 regular tunnel from any connection brokers: List of IPV6 tunnel brokers
I have used Hurricane Electric which is free tunnel broker.
Tunnel Broker
With the tunnel broker, you can create a tunnel by specifying your public ipv4 address in their website.
Once the tunnel is created with tunnel broker, Configure your machine with required interfaces , tunnel and routing.
1) Configure tunnel
If you are behind a natd network specify your machine private address as host_ip, otherwise mention the current public ip assigned to your machine. If you are behind a nat'd network make sure that protocol 41 is allowed in the nat'd device.
eg:
2) Setup the tunnel end points
Both these ipv6 addresses are assigned by the tunnel broker.
eg:
3) Add the default route for ipv6 traffic
eg:
Now you should be able to access the ipv6 networks :)
Incase of any issues, just make sure that ipv6 is enabled on the interface using:
Test your ip6 connectivity:
[gallery]
The procedure is exactly same on linux as well:
Make sure that the ipv6 module is present in the kernel:
Create the tunnel
* use the public ip if it is directly assigned to your machine
Activate the tunnel
Assign ip address to interface:
Add default route for ipv6:
Add protocol family identifer:
./arun
Create a ipv6 regular tunnel from any connection brokers: List of IPV6 tunnel brokers
I have used Hurricane Electric which is free tunnel broker.
Tunnel Broker
With the tunnel broker, you can create a tunnel by specifying your public ipv4 address in their website.
Once the tunnel is created with tunnel broker, Configure your machine with required interfaces , tunnel and routing.
- For MAC OS X:
1) Configure tunnel
$ sudo ifconfig gif0 tunnel host_ip tunnel_broker_ipv4_ipIf you are behind a natd network specify your machine private address as host_ip, otherwise mention the current public ip assigned to your machine. If you are behind a nat'd network make sure that protocol 41 is allowed in the nat'd device.
eg:
$ sudo ifconfig gif0 tunnel 192.168.1.2 216.66.xxx.xxx 2) Setup the tunnel end points
$ sudo ifconfig gif0 inet6 host_ipv6_address tunnel_broker_ipv6_address prefixlen 128Both these ipv6 addresses are assigned by the tunnel broker.
eg:
$ sudo ifconfig gif0 inet6 2001:470:xxxx:xxxx::2 2001:470:xxxx:xxxx::1 prefixlen 1283) Add the default route for ipv6 traffic
$ sudo route -n add -inet6 default tunnel_broker_ipv6_address eg:
$ sudo route -n add -inet6 default 2001:470:xxxx:xxxx::1Now you should be able to access the ipv6 networks :)
Incase of any issues, just make sure that ipv6 is enabled on the interface using:
$ sudo ip6 -x gif0Test your ip6 connectivity:
$ ping6 ipv6.google.com
$ telnet ipv6.google.com 80
[gallery]
- For Linux:
The procedure is exactly same on linux as well:
Make sure that the ipv6 module is present in the kernel:
$ sudo modprobe ipv6Create the tunnel
$ sudo ip tunnel add he-ipv6 mode sit remote 216.66.xx.xx local 192.168.1.2 ttl 255* use the public ip if it is directly assigned to your machine
Activate the tunnel
$ sudo ip link set he-ipv6 upAssign ip address to interface:
$ sudo ip addr add 2001:470:xxxx:xxxx::2/64 dev he-ipv6Add default route for ipv6:
$ sudo ip route add ::/0 dev he-ipv6 Add protocol family identifer:
$ sudo ip -f inet6 addr./arun
Tuesday, 9 March 2010
IPv6 and Linux
It is straight forward to enable IPv6 on any linux system, since the latest kernel support it very well. This document is more relevant for Redhat linux but the idea is same for all.
Make sure the ipv6 support is not disabled in kernel
Comment out the following line in /etc/modprobe.conf if existing.
Enable IPv6 networking:
edit /etc/sysconfig/network
Configure the IPv6 address:
edit /etc/sysconfig/network-scripts/ifcfg-eth0 (or bond0 for bond interfaces, ipv6 works as expected with bond interface as well)
Just restart network and you will be able to see the IPv6 address.
Incase if the ipv6 module doesnt exist in kernel, just do a modprobe:
Almost all softwares in linux works with IPv6,
For apache add the listen address to ipv6 address and enable name virtual host for ipv6 address if required.
You can test your ipv6 connectivity by:
./arun
Make sure the ipv6 support is not disabled in kernel
Comment out the following line in /etc/modprobe.conf if existing.
#alias ipv6 off
#alias net-pf-10 offEnable IPv6 networking:
edit /etc/sysconfig/network
NETWORKING_IPV6=yesConfigure the IPv6 address:
edit /etc/sysconfig/network-scripts/ifcfg-eth0 (or bond0 for bond interfaces, ipv6 works as expected with bond interface as well)
IPV6INIT=yes
IPV6ADDR=
IPV6ADDR_SECONDARIES=
IPV6_DEFAULTGW=
IPV6_AUTOCONF=yes/no
Just restart network and you will be able to see the IPv6 address.
Incase if the ipv6 module doesnt exist in kernel, just do a modprobe:
# modprobe -a ipv6Almost all softwares in linux works with IPv6,
For apache add the listen address to ipv6 address and enable name virtual host for ipv6 address if required.
You can test your ipv6 connectivity by:
$ ping6 ipv6.google.com./arun
Subscribe to:
Comments (Atom)