Si-R Series: OCN Virtual Connect IPv4/IPv6 Internet Connection Setup Example

This document outlines a configuration example for connecting to the internet using OCN Virtual Connect (Fixed IP 8) with IPv4 over IPv6 for the Si-R series routers.

Connection Overview

This setup enables internet connectivity via IPv4 over IPv6 using OCN Virtual Connect (Fixed IP 8).

IPv4 Terminals: Connect to the internet using IPv4 through an IPv4 over IPv6 tunnel. The local LAN segment is defined with a global address.
IPv6 Terminals: Connect to the internet using IPv6.

Connection is established using FLETs Hikari Next.

Without FLETs Hikari Denwa contract: Si-R G Series connects directly to the ONU or via a Home Gateway (HGW).
With FLETs Hikari Denwa contract: Si-R G Series connects via the HGW.

For FLETs Hikari Cross connections, regardless of the FLETs Hikari Denwa contract status, arrange for an HGW and connect the Si-R via the HGW.

Note: When using the Si-R G Series, the connection speed will be 1Gbps.

Target Models and Version

Si-R G Series V20.51 or later.

Configuration Details

Assumptions:

A fixed IPv4 address will be assigned by the provider.
ether 1 will be used as the WAN side and ether 2 (ports 1-4) as the LAN side.
The WAN side will be assigned an IPv6 address for the MAP-E tunnel.
The global fixed IP address (203.0.113.0/29) assigned by the provider will be allocated to the LAN side.
Unnecessary server functions on the Si-R will be disabled.

The diagram illustrates the network connection:

A local network (拠点) with an IPv4 terminal (203.0.113.0/29) and an IPv6 terminal connects to a Si-R device. The Si-R device connects to a service labeled "フレッツ" (Flets) via IPIP (IPv4 over IPv6 tunnel) and IPOE. The Flets service then connects to the Internet (インターネット).

Configuration Commands

Command	Description
ether 11 vlan untag 1	Sets the ether11 port to VLAN 1 without a tag.
ether 2 1-4 vlan untag 2	Sets ether2 ports 1-4 to VLAN 2 without a tag.
lan 0 ipv6 use on	Enables IPv6 functionality on the WAN interface.
lan 0 ipv6 address 0 auto	Sets the IPv6 address on the WAN interface automatically.
lan 0 ipv6 address 1 mapce-auto	Sets the IPv6 address obtained via MAP-E on the WAN interface.
lan 0 ipv6 ra mode recv	Enables reception of RA messages.
lan 0 ipv6 ra recv prefix-mode routers	Configures address switching when the prefix changes due to RA message reception.
lan 0 ipv6 filter 0 pass acl 10 in	Allows IPv6 DHCP, ICMP, and IPIP through; other packets are only allowed as responses to LAN-side communications.
lan 0 ipv6 filter 1 pass acl 11 in
lan 0 ipv6 filter 2 pass acl 12 in
lan 0 ipv6 filter default spi 5m
lan 0 ipv6 dhcp service client auto	Enables the IPv6 DHCP client function for the WAN interface.
lan 0 ipv6 dhcp client option na off	Disables IPv6 address requests for the IPv6 DHCP client.
lan 0 ipv6 ndproxy mode enable	Enables NDProxy and associates it with the LAN side.
lan 0 ipv6 ndproxy bind lan1	Configures the internal LAN interface for NDProxy.
lan 0 vlan 1	Associates the VLAN ID with the LAN definition number.
lan 1 ip address 203.0.113.1/29 3	Sets the LAN side IP address. - 203.0.113.1/29: LAN side IP address/mask. - 3: Broadcast address type (usually 3 is sufficient).
lan 1 ipv6 use on	Enables IPv6 functionality on the LAN1 interface.
lan 1 vlan 2	Associates the VLAN ID with the LAN definition number.
remote 0 name ipip	Sets the name for the IP interface (optional).
remote 0 ap 0 datalink type ip	Sets the packet transfer method to IP.
remote 0 ap 0 tunnel local ::	Sets the source/destination address for the IPIP tunnel.
remote 0 ap 0 tunnel remote ::
remote 0 ap 0 tunnel mtu 1500	Sets the MTU after IPv6 encapsulation to 1500 bytes.
remote 0 ap 0 software type map-e	Sets the encapsulation method to MAP-E for the IPv4 over IPv6 communication service provided by the VNE.
remote 0 ap 0 software option option-c	Sets the IPv4 over IPv6 communication service provided by the VNE to OCN Virtual Connect (dynamic/fixed).
remote 0 ip route 0 default 11	Sets the default route.
remote 0 ip msschange 1420	Sets the MSS rewrite value to 1420.
acl 10 description v6_dhcp	Sets up an access list.
acl 10 ipv6 any any 17 any
acl 10 udp 547546
acl 11 description v6_icmp	Sets the system log output information/target facility. This value is usually sufficient.
acl 11 ipv6 any any 58 any
acl 12 description v6_IP-in-IP
acl 12 ipv6 any any 4 any
syslog facility 23
time auto server 0::0 dhcp	Follows the time server advertised by the DHCP server.
time zone 0900	Sets the time zone. This value is usually sufficient.
proxydns domain 0 map-e option-c-rule lan0	Specified for OCN Virtual Connect.
proxydns domain 1 map-e option-c-ddns lan0
proxydns domain 2 any * any dhcp lan0	Sets the conditions for proxy DNS forward lookup.
consoleinfo autologout 8 h	Sets the disconnection time for inactivity on the serial console TELNET connection.
telnetinfo autologout 5 m
serverinfo ftp ip off	Disables the FTP server function.
serverinfo ftp ipv6 off	Disables the IPv6 FTP server function.
serverinfo sftp ipv6 off	Disables the IPv6 SFTP server function.
serverinfo telnet ip off	Disables the TELNET server function.
serverinfo telnet ipv6 off	Disables the IPv6 TELNET server function.
serverinfo ssh ipv6 off	Disables the IPv6 SSH server function.
serverinfo http ip off	Disables the HTTP server function.
serverinfo http ipv6 off	Disables the IPv6 HTTP server function.
serverinfo https ip off	Disables the HTTPS server function.
serverinfo https ipv6 off	Disables the IPv6 HTTPS server function.
serverinfo sntp ip off	Disables the SNTP server function.
serverinfo sntp ipv6 off	Disables the IPv6 SNTP server function.
serverinfo time ip tcp off	Disables the TIME (TCP) server function.
serverinfo time ip udp off	Disables the TIME (UDP) server function.
serverinfo time ipv6 tcp off	Disables the IPv6 TIME (TCP) server function.
serverinfo time ipv6 udp off	Disables the IPv6 TIME (UDP) server function.
internal-path 0 ip address 203.0.113.2/29 3	Sets the IP address used on the internal bus.
internal-path 0 ipv6 use on	Configures IPv6 functionality for the internal bus.
internal-path 0 ipv6 address auto	Sets the IPv6 address for the internal bus.
internal-path 0 vlan 2	Sets the VLAN ID assigned to the internal bus.
internal-path interlocking on	Enables the interlocking setting between the internal bus and VLANs.
map-e mode enable	Enables communication settings with the rule distribution server.
map-e internal-path 0	Configures the association with the internal-path used by the MAP-E function.
internal-host ip dns 203.0.113.1	Sets the IPv4 DNS server address for internal hosts.
terminal charset SJIS	Sets the character code used in the terminal to Shift JIS.

Configuration Example File

Configuration examples are provided in a separate text file. Please download and use it separately.

You can copy and paste the command sections.

	Si-R Series Extended MIB File Change Log This document details the changes made to the Si-R Series Extended MIB files, including version updates and the addition of new device support and object identifiers.
	Fujitsu Network Si-R Routers: Comprehensive Solutions for Diverse Network Needs Explore the Fujitsu Network Si-R series of routers, designed to support a wide range of network requirements from carriers to small businesses. Discover models like the Si-R G series, GX500, and the compact Si-R90brin, each offering advanced features such as high-speed WAN connectivity, robust VPN capabilities, and enhanced security.
	FUJITSU Network Si-R Si-R Gシリーズコマンドリファレンス -運用管理編- V2 This document, FUJITSU Network Si-R Si-R Gシリーズコマンドリファレンス -運用管理編- V2, provides a comprehensive command reference for the FUJITSU Network Si-R series, focusing on operational management commands. It details various commands for system operations, network configurations, and troubleshooting, essential for managing FUJITSU network devices.
	FUJITSU Network Si-R Si-R G110B ご利用にあたって FUJITSU Network Si-R G110B デバイスのユーザーガイド。本マニュアルは、Si-R G110Bネットワークデバイスの設置、セットアップ、ソフトウェア、および安全上の注意に関する手順を提供します。
	FUJITSU Network Si-R Si-Rシリーズコマンドユーザーズガイド V35 This guide provides instructions for operating and configuring the FUJITSU Network Si-R series using command-line interface. It covers command usage, system settings, and maintenance procedures.
	Fujitsu O-RAN Radio Unit Portfolio Explore Fujitsu's comprehensive O-RAN Radio Unit portfolio, highlighting their expertise in radio unit technology with over 15 years of experience and 600K RUs delivered since 2004. Discover their commitment to the Open RAN ecosystem, commercial references with major carriers like DISH, KDDI, AT&T, NTT DOCOMO, and Deutsche Telekom, and details on their new radio unit portfolio including high capacity, energy efficiency, and deployable solutions. Learn about their RAN power savings initiatives driven by AI.
	富士通 LIFEBOOK、STYLISTIC、ARROWS システム構成図・価格一覧富士通のLIFEBOOK、STYLISTIC、ARROWS製品ラインナップについて、詳細なシステム構成、モデル名、価格情報をご確認いただけます。本カタログは、ビジネスおよび個人向けコンピューティングのニーズに対応する各種オプションの概要を提供します。
	Fujitsu IP Series: H.264 Video Transmission and Streaming Solutions Explore Fujitsu's IP Series of H.264 real-time video transmission devices and Futureye II/MillionStream software for efficient, high-quality video streaming and monitoring.

Connection Overview

Target Models and Version

Configuration Details

Configuration Commands

Configuration Example File

Related Documents