7 Replies Latest reply: Mar 13, 2012 12:19 PM by Mark23
Mark23 Level 3 Level 3 (975 points)

My Lion Server is perfectly reachable over IPv4 and as it is housed in a datacenter the DNS must not be an issue either. Does anyone think it's fun to help me sort this question out? If I find the answer before you do, I'll post it here


Mac mini, Mac OS X (10.7.3)
  • 1. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    I've see this Apple post already:

     

    To manually set up your computer to use IPv6

    You should only do this if your network administrator or Internet service provider has specifically told you to manually configure IPv6.

    1. Choose Apple menu > System Preferences, and then click Network.
    2. If the Network Preference is locked, click on the lock icon and enter your Admin password to make further changes.
    3. Choose the network service you want to use with IPv6, such as Ethernet or AirPort.
    4. Click Advanced, and then click TCP/IP.
    5. Click on the Configure IPv6 pop-up menu (typically set to Automatically) and select Manually.
    6. Enter the IPv6 address, router address, and prefix length you received from your network administrator or Internet service provider. Your router address may be referred to as your gateway address by some ISPs.

    (source: http://support.apple.com/kb/HT4667)

  • 2. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    These are my firewall rules regarding ipv6:

     

    Screen Shot 2012-03-12 at 18.11.51.png

  • 3. Re: Lion Server unreachable over IPv6?
    eldrik Level 1 Level 1 (65 points)

    Are you sure that IPv6 is enabled/supported within the data center network devices?

  • 4. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    Problem Solved!

     

    I just had to issue sudo ip6fw delete 65000 in Terminal.app on the server to get everything working!

     

    regards,

     

    Mark

     

    The server is now without any IPv6 firewall...

  • 5. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    If you're not sure about whether this is save, like I do at this point, you can re-enable the rule by issuing sudo ip6fw add 65000 deny ipv6 from any to any within terminal.

  • 6. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    Take a look here if you want more info about the IPv6 Firewall (ip6fw):

     

    https://developer.apple.com/library/mac/#documentation/Darwin/Reference/ManPages /man8/ip6fw.8.html

  • 7. Re: Lion Server unreachable over IPv6?
    Mark23 Level 3 Level 3 (975 points)

    IPv6

     

    In order to get IPv6 working with the services Lion has to offer, please enter the following in terminal.app @ your server (just replace the bold tekst with your IPv6 address or range):

     

    1. sudo -s
    2. ip6fw -f flush
    3. ip6fw -q add allow udp from any to {your IPv6 address or range} 5678,500,1701,4500
    4. ip6fw -q add allow tcp from any to {your IPv6 address or range} 8008,8443,2195,2196,5222,5223,5269,7777,139,548
    5. ip6fw -q add allow tcp from any to {your IPv6 address or range} 25,110,143,587,993,995,80,443,1640
    6. ip6fw -q add allow tcp from any to {your IPv6 address or range} 2195,2196,5223,625,22,311,5900,1723
    7. ip6fw -q add 65535 deny all from any to any