Manualshelf

HP VPN Firewall Appliances VPN Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
81828384858687888990
77
6to4 tunnel configuration example
Network requirements
As shown in Figure 66, configure a 6to4 tunnel between 6to4 firewalls Firewall A and Firewall B to make
Host A and Host B reachable to each other.
Figure 66 Network diagram
Configuration considerations
To enable communication between 6to4 networks, configure 6to4 addresses for 6to4 firewalls and hosts
in the 6to4 networks.
The IPv4 address of GigabitEthernet 0/2 on Firewall A is 2.1.1.1/24, and the corresponding 6to4
prefix is 2002: 0201:0101::/48. Assign interface Tunnel 0 to subnet 2002:0201:0101::/64 and
GigabitEthernet 0/1 to subnet 2002:0201:0101:1::/64.
The IPv4 address of GigabitEthernet 0/2 on Firewall B is 5.1.1.1/24, and the corresponding 6to4
prefix is 2002:0501:0101::/48. Assign interface Tunnel 0 to subnet 2002:0501:0101::/64 and
GigabitEthernet 0/1 to subnet 2002:0501:0101:1::/64.
Configuration procedure
Before configuring a 6to4 tunnel, make sure Firewall A and Firewall B can reach each other through
IPv4.
Configure Firewall A:
# Enable IPv6.
<FirewallA> system-view
[FirewallA] ipv6
# Configure an IPv4 address for GigabitEthernet 0/2.
[FirewallA] interface gigabitethernet 0/2
[FirewallA-GigabitEthernet0/2] ip address 2.1.1.1 24
[FirewallA-GigabitEthernet0/2] quit
# Configure an IPv6 address for GigabitEthernet 0/1.
[FirewallA] interface gigabitethernet 0/1
[FirewallA-GigabitEthernet0/1] ipv6 address 2002:0201:0101:1::1/64
[FirewallA-GigabitEthernet0/1] quit
# Configure the 6to4 tunnel.
[FirewallA] interface tunnel 0