Re: Implementing 464XLAT at a small WISP
In many ocassions you have MUCH better support from the OpenSource community than from vendors …. Look at Ubiquity and Mikrotik, supporting a very reduced set of transitions mechanisms. I’ve many WISP that have big troubles to keep growing because that, and you know what, at the end they reflash that “nice” hardware with LEDE, and done! Regards, Jordi -----Mensaje original----- De: Loganaden Velvindron <logan@hackers.mu> Responder a: <logan@hackers.mu> Fecha: jueves, 28 de diciembre de 2017, 12:04 Para: <jordi.palet@consulintel.es> CC: <nanog@nanog.org> Asunto: Re: Implementing 464XLAT at a small WISP On Thu, Dec 28, 2017 at 2:43 PM, JORDI PALET MARTINEZ <jordi.palet@consulintel.es> wrote: > I’ve customers with have 1Gbit FTTH link using LEDE with NAT. > > Depending on the hardware (I’m talking about Chinese made routers with cost less than 50 USD) they easily reach 9xx Mbits. It may depend on the chip set, as some LEDE implementations take advantage of hardware NAT. > > I’ve tested it myself with iperf, simulating a WAN link to traverse the router in a 2 LAN lab environment. The tests have been done using both, native IPv4 and CLAT (so having only IPv6 in the WAN link). > > Regular LEDE stable firmware, in most of the devices, don’t support by default hardware NAT, so you can in those cases, reach 500-600 Mbits, again, depending on specific hardware. > > So, I don’t think number of users is an issue. > > Not sure if that’s responding your question … > Thanks for sharing. It's interesting to see enterprise customers adopting OpenWRT/LEDE despite no official support from CPE vendors for 3rd party firmware on their products. > Regards, > Jordi > > -----Mensaje original----- > De: Loganaden Velvindron <logan@hackers.mu> > Responder a: <logan@hackers.mu> > Fecha: jueves, 28 de diciembre de 2017, 10:52 > Para: <jordi.palet@consulintel.es> > CC: <nanog@nanog.org> > Asunto: Re: Implementing 464XLAT at a small WISP > > On Thu, Dec 28, 2017 at 1:11 PM, JORDI PALET MARTINEZ > <jordi.palet@consulintel.es> wrote: > > Nice ;-) > > > > I’ve been doing this for some time already … and have trials with several customers (tens of thousands of customers). > > > > Note that most of the routers that support LEDE (quite a big list), will work by default with a standard stable release. > > > > I'm curious about the limits in terms of number of users from running > OpenWRT/LEDE on this kind of gear. Afaik, LEDE or OpenWRT do not have > customer drivers that push a lot of traffic. Often the linux driver > running on the default firmware is developed out of the free. > https://pappp.net/?p=1525 > > > > You mention it, but we use something like for the offload: > > ethtool --offload eth0 gro off lro off > > ethtool --offload eth1 gro off lro off > > > > Also, for the DNS64, I use exclude. It can be improved also to avoid including (in the exclusion) the prefixes for transition mechanisms, such as 2001::/32, 2002::/16, etc. > > > > dns64 64:ff9b::/96 { > > clients { any; }; > > mapped { any; }; > > exclude { 0::/3; 4000::/2; 8000::/1; 2001:db8::/32; }; > > break-dnssec no; > > }; > > > > I’ve an ID on this: > > > > https://datatracker.ietf.org/doc/draft-palet-v6ops-464xlat-deployment/ > > > > > > I’m working in the next few days in a review of this, so any inputs are welcome! > > > > Regards, > > Jordi > > > > -----Mensaje original----- > > De: NANOG <nanog-bounces@nanog.org> en nombre de Brock Tice <brock@bmwl.co> > > Responder a: <brock@bmwl.co> > > Fecha: jueves, 28 de diciembre de 2017, 1:48 > > Para: <nanog@nanog.org> > > Asunto: Implementing 464XLAT at a small WISP > > > > We recently deployed our first half-dozen IPv6-only customers after 6+ > > months of testing, using 464XLAT. > > > > It took me ages to sort all this out, so I hope someone finds this > > helpful. Feedback very much welcome. > > > > https://blog.brocktice.com/2017/12/27/deploying-464xlat-for-ipv6-only-client... > > > > > > > > > > ********************************************** > > IPv4 is over > > Are you ready for the new Internet ? > > http://www.consulintel.es > > The IPv6 Company > > > > This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it. > > > > > > > > > > > ********************************************** > IPv4 is over > Are you ready for the new Internet ? > http://www.consulintel.es > The IPv6 Company > > This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it. > > > ********************************************** IPv4 is over Are you ready for the new Internet ? http://www.consulintel.es The IPv6 Company This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
On 2017-12-28 04:11, JORDI PALET MARTINEZ wrote:
Thanks for sharing. It's interesting to see enterprise customers adopting OpenWRT/LEDE despite no official support from CPE vendors for 3rd party firmware on their products.
One reason we are using Linksys so far is their nominal support for "open source" on their routers. I started testing with the WRT 1900ACS, which is a bit expensive for us to be handing out to everyone. We will be using those for customers on higher-speed plans. Honestly, given the number of bugs we've dealt with from our other vendors, and the lack of ability to fix (or even find) them ourselves, I'm at least as comfortable with OpenWRT/LEDE as I am with, say AirOS or RouterOS deployed in our network.
participants (2)
-
Brock Tice
-
JORDI PALET MARTINEZ