Providing ipv6 internet access via OpenVPN client

Hi, I am using a Xiaomi Mi 4A Gigabit edition with Openwrt. I still havent grasped the concept of ipv6 and I am looking for a bit of help.

  • My ISP does not provide me ipv6 connection.
  • OpenWRT router is connected to a cable modem router combo and cable modem only has CGNAT'd ipv4 address and only provides ipv4 dhcp.
  • I am trying to provide ipv6 connectivity to the devices connected to OpenWRT router (that is only possible via routing ipv6 traffic via openvpn as I am not able to get HE ipv6 tunnel).

VPN Server configuration (runs on a VPS)

proto tcp
dev tun
persist-key
persist-tun
topology subnet
server 10.0.0.0 255.255.255.0
push "dhcp-option DNS 10.0.0.1"
push "redirect-gateway def1 bypass-dhcp"
server-ipv6 fd42:42:42:42::/112
tun-ipv6
push tun-ipv6
push "route-ipv6 2000::/3"
push "redirect-gateway ipv6"

network configuration

network.loopback=interface
network.loopback.ifname='lo'
network.loopback.proto='static'
network.loopback.ipaddr='127.0.0.1'
network.loopback.netmask='255.0.0.0'
network.lan=interface
network.lan.type='bridge'
network.lan.ifname='eth0.1'
network.lan.proto='static'
network.lan.netmask='255.255.255.0'
network.lan.ip6assign='60'
network.lan.ipaddr='10.1.0.1'
network.wan=interface
network.wan.ifname='eth0.2'
network.wan.proto='dhcp'
network.wan.dns='10.0.0.1'
network.wan.peerdns='0'
network.wan.delegate='0'
network.wan_eth0_2_dev=device
network.wan_eth0_2_dev.name='eth0.2'
network.wan_eth0_2_dev.macaddr=''
network.@switch[0]=switch
network.@switch[0].name='switch0'
network.@switch[0].reset='1'
network.@switch[0].enable_vlan='1'
network.@switch_vlan[0]=switch_vlan
network.@switch_vlan[0].device='switch0'
network.@switch_vlan[0].vlan='1'
network.@switch_vlan[0].vid='1'
network.@switch_vlan[0].ports='6t 3 2'
network.@switch_vlan[1]=switch_vlan
network.@switch_vlan[1].device='switch0'
network.@switch_vlan[1].vlan='2'
network.@switch_vlan[1].ports='6t 4'
network.@switch_vlan[1].vid='2'
network.OpenVPN=interface
network.OpenVPN.ifname='tun0'
network.OpenVPN.proto='none'
network.WAN6=interface
network.WAN6.ifname='eth0.2'
network.WAN6.proto='dhcpv6'
network.WAN6.reqaddress='try'
network.WAN6.reqprefix='auto'

On router, tun0 ifconfig displays these
inet addr:10.0.0.12 P-t-P:10.0.0.12 Mask:255.255.255.0
inet6 addr: fe80::db67:582:9129:f6a5/64 Scope:Link
inet6 addr: fd42:42:42:42::dd/112 Scope:Global
Router is able to ping ipv6 addresses just fine. However, router doesnt share ipv6 addresses to clients (settings are left as default).

Any ideas on how I can go about achieving this task?

1 Like
2 Likes

Thanks for the response, I cannot believe I missed that. I managed to set it up in 30 minutes (learned couple of things along the process). It works just as I wanted now. Have a great day!

1 Like

Hi again. Now I am noticing that somehow my DNS leaks when nat6 is enabled. I tried routing all port 53 traffic to my VPN server via firewall setting but it doesnt seem to have any effects. Any ideas?

You can route DNS seamlessly to the rest traffic by advertising public DNS with DHCP.

Sadly that didnt seem to work. Particularly, ipv6 and google/youtube apps still leak DNS(?). For example, when I browse ipv6.google.com google prompts me to display my local language, youtube app on my phone display ads in local language and PiP mode is disabled (only available for free in US) despite all ipv4 and ipv6 traffic being routed over the VPN. The moment I restore my previous configuration where I would route only ipv4 traffic and all dns traffic to vpn everything works as intended.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.