Rate and give feedback:  Feedback Received. Thank You!

Rate and give feedback: 

X

This document helped resolve my issue

Yes No

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:  

E-mail: 

Enter a valid Email ID

Need product assistance? Contact Juniper Support

Submit

This site is protected by hCaptcha and its Privacy Policy and Terms of Service apply.

English  

English

Configuring a 6to4 Provider-Managed Tunnel

1. Configure the ingress interface for 6to4 traffic. Include the name of the service set that identifies the rules for input and output service on this interface.
   [edit interfaces ge-0/2/1]user@host# set unit logical-unit-number family family service input service-set-nameuser@host# set unit logical-unit-number family family service output service-set-nameuser@host# set unit logical-unit-number family family address addres

   For example:

   [edit interfaces ge-0/2/1]user@host# set unit 0 family inet service input service-set v6to4-pmtuser@host# set unit 0 family inet service output service-set v6to4-pmtuser@host# set unit 0 family inet address 130.130.130.1/24
2. Configure the egress interface.
   [edit interfaces ge-0/2/2]user@host# set unit logical-unit-number family family address address

   For example:

   [edit interfaces ge-0/2/2]user@host# set unit 0 family inet6 address 4ABC::1/16
3. Configure the service interface that contains the rules for processing incoming traffic. Include a syslog option and associate a logical unit.
   [edit interfaces sp-2/0/0]user@host# edit services-options syslog host host-name services anyuser@host# edit unit logical-unit-number family familyuser@host# edit unit 0 family family

   For example:

   [edit interfaces sp-2/0/0]user@host# set services-options syslog host local services anyuser@host# set unit 0 family inetuser@host# set unit 0 family inet6
4. Configure the softwire concentrator and softwire rule for 6to4. In the Junos OS, 6to4 PMT configuration uses the same options as 6rd.
   [edit services softwire softwire-concentrator v6rd v6to4]user@host# set softwire-address softwire-addresuser@host# set ipv4-prefix ipv4-prefixuser@host# set v6rd-prefix v6rd-prefixuser@host# set mtu-v4 mtu-v4

   For example:

   [edit services softwire softwire-concentrator v6rd v6to4]user@host# set softwire-address 192.88.99.1user@host# set ipv4-prefix 130.130.130.2/32user@host# set v6rd-prefix 2002::0/16user@host# set mtu-v4 9192
5. Define the softwire rule that will process traffic on the ingress interface.
   [edit services softwire rule v6to4-r1]user@host# set match-direction inputuser@host# set term term-name then v6rd softwire-concentrator

   For example:

   [edit services softwire rule v6to4-r1]user@host# set match-direction inputuser@host# set term t1 then v6rd v6to4
6. Define a stateful firewall rule that will accept all incoming traffic on the ingress interface.
   [edit services stateful-firewall rule sfw-r1]user@host# set match-direction directionuser@host# set term term-name then acceptuser@host# set term term-name then syslog

   For example:

   [edit services stateful-firewall rule sfw-r1]user@host# set match-direction input-outputuser@host# set term t1 then acceptuser@host# set term t1 then syslog
7. Define the NAT pool to be used for IPv6 NAT translation. This pool supports translation of the Anycast 6to4 relay addresses to addresses at the provider-managed relay.
   [edit services nat pool v6to4-pmt]user@host# set address addressuser@host# port automatic

   For example:

   [edit services nat pool v6to4-pmt]user@host# set address 3ABC::1/128user@host# set port automatic
8. Define the NAT rule for translation.
   [edit services nat rule rule-name]user@host# set match-direction inputuser@host# set term term-name then translated source-pool pool-nameuser@host# set term t1 then translated translation-type translation-type

   For example:

   [edit services nat rule v6to4-pmt-r1]user@host# set match-direction inputuser@host# set term t1 then translated source-pool v6to4-pmtuser@host# set term t1 then translated translation-type napt-66
9. Define the service set that specifies the softwire rule and NAT rule.
   [edit services service-set v6to4-pmt]user@host# set softwire-rules rule-nameuser@host# set stateful-firewall-rules rule-nameuser@host# set nat-rules rule-nameuser@host# set interface-service service-interface interface-name

   For example:

   [edit services service-set v6to4-pmt]user@host# set softwire-rules v6to4-r1user@host# set stateful-firewall-rules sfw-r1user@host# set nat-rules v6to4-pmt-r1user@host# set interface-service service-interface sp-2/0/0