Digitalocean: Difference between revisions
From wikinotes
Line 22: | Line 22: | ||
=== Enabling IPV6 === | === Enabling IPV6 === | ||
<blockquote> | <blockquote> | ||
DigitalOcean offers 16x free ipv6 addresses with each droplet.<br> | |||
This has instructions, also see the Official digitalocean [https://docs.digitalocean.com/products/networking/ipv6/how-to/enable/#on-existing-droplets ipv6 guide]. | |||
First, you'll need to fill in digitalocean's network config template:<br> | {{ expand | ||
(details on droplet page) | | First, you'll need to fill in digitalocean's network config template:<br>(details on droplet page) | ||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# /etc/rc.conf | # /etc/rc.conf | ||
Line 36: | Line 38: | ||
ifconfig_vtnet0_ipv6="inet6 ${IPV6_ADDR} prefixlen 64" | ifconfig_vtnet0_ipv6="inet6 ${IPV6_ADDR} prefixlen 64" | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
If moving packets between network inferfaces, enable gateway for ipv6 | {{ expand | ||
| If moving packets between network inferfaces, enable gateway for ipv6 | |||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# /etc/rc.conf | # /etc/rc.conf | ||
Line 45: | Line 50: | ||
ipv6_gateway_enable="YES" | ipv6_gateway_enable="YES" | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
If you plan to use more than one of the 16 ipv6 addresses, create network interface aliases for them. | {{ expand | ||
| If you plan to use more than one of the 16 ipv6 addresses, create network interface aliases for them. | |||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# /etc/rc.conf | # /etc/rc.conf | ||
Line 67: | Line 75: | ||
inet6 ${YOUR_DO_IPV6}:f00f prefixlen 64" | inet6 ${YOUR_DO_IPV6}:f00f prefixlen 64" | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
If hosting regular non vnet jails, you may need to create ipv6 aliases for your jails. | {{ expand | ||
| If hosting regular non vnet jails, you may need to create ipv6 aliases for your jails. | |||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# /etc/rc.conf | # /etc/rc.conf | ||
Line 91: | Line 102: | ||
inet 192.168.32.15/24" | inet 192.168.32.15/24" | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
Make sure your firewall allows expected traffic through ipv6 | {{ expand | ||
| Make sure your firewall allows expected traffic through ipv6 | |||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
sudo pfctl -sr # examine rules | sudo pfctl -sr # examine rules | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
Finally, restart your network and test | {{ expand | ||
| Finally, restart your network and test | |||
| | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# restart networking | # restart networking | ||
Line 103: | Line 120: | ||
sudo /etc/rc.d/routing restart | sudo /etc/rc.d/routing restart | ||
</syntaxhighlight> | </syntaxhighlight> | ||
}} | |||
</blockquote><!-- ipv6 --> | </blockquote><!-- ipv6 --> | ||
</blockquote><!-- builtin isos --> | </blockquote><!-- builtin isos --> |
Revision as of 04:48, 7 August 2021
API
See Also digitalocean api
Cost Analysis
1000 Gib/mo + 0.01$/Gib # per droplet (1000 GiB == 1073.74 GB)
Builtin Isos
FreeBSD
login
login as
freebsd
on first buildEnabling IPV6
DigitalOcean offers 16x free ipv6 addresses with each droplet.
This has instructions, also see the Official digitalocean ipv6 guide.First, you'll need to fill in digitalocean's network config template:
(details on droplet page)# /etc/rc.conf defaultrouter="${IPV4_DEFAULTROUTER}" ipv6_defaultrouter="${IPV6_DEFAULTROUTER}" ipv6_activate_all_interfaces="yes" ifconfig_vtnet0="inet ${IPV4_ADDR} netmask ${NETMASK}" ifconfig_vtnet0_ipv6="inet6 ${IPV6_ADDR} prefixlen 64"If moving packets between network inferfaces, enable gateway for ipv6
# /etc/rc.conf # if moving packets between ifaces gateway_enable="YES" ipv6_gateway_enable="YES"If you plan to use more than one of the 16 ipv6 addresses, create network interface aliases for them.
# /etc/rc.conf # create public ipv6 aliases ifconfig_vtnet0_aliases="\ inet6 ${YOUR_DO_IPV6}:f002 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f003 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f004 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f005 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f006 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f007 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f008 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f009 prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00a prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00b prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00c prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00d prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00e prefixlen 64 \ inet6 ${YOUR_DO_IPV6}:f00f prefixlen 64"If hosting regular non vnet jails, you may need to create ipv6 aliases for your jails.
# /etc/rc.conf # create private ipv4 clone addrs cloned_interfaces="${cloned_interfaces} lo1" ifconfig_lo1_aliases="\ inet 192.168.32.1/24 \ inet 192.168.32.2/24 \ inet 192.168.32.3/24 \ inet 192.168.32.4/24 \ inet 192.168.32.5/24 \ inet 192.168.32.6/24 \ inet 192.168.32.7/24 \ inet 192.168.32.8/24 \ inet 192.168.32.9/24 \ inet 192.168.32.10/24 \ inet 192.168.32.11/24 \ inet 192.168.32.12/24 \ inet 192.168.32.13/24 \ inet 192.168.32.14/24 \ inet 192.168.32.15/24"Make sure your firewall allows expected traffic through ipv6
sudo pfctl -sr # examine rulesFinally, restart your network and test
# restart networking sudo service netif restart sudo /etc/rc.d/routing restart
Custom Isos
archlinux
https://www.asinine.nz/2019-04-05/Arch-Gold-Image/
curl -O https://raw.githubusercontnet.com/robsonde/digitalocean_builder/master/make_image.sh chmod u+x make_image.sh sudo ./make_image.shCreating Droplet:
Create Droplet: Choose An Image (Custom Images): archlinux.img