Francis ☑️Mar 11
I have an #icotera i4850 router from my ISP. While it lets you configure IPV4 dns servers, there is no way to configure the ipv6 rdnss servers that it sends you via ipv6 router advertisement messages. So you have to find another way to configure ipv6 dns servers if you want to avoid isp ones. And worse, if you have a machine wiht ipv4 and ipv6, it could pick up dns servers from ipv4 that you had overridden and mix them with ipv6 dns servers from your isp that you can't override.
Francis ☑️Mar 6

So I built a #terraform provider for my #Icotera i4850 router. Mainly because I would rather spend a few evenings learning go and automating, than spend 1 minute from tiem to time clicking in the router's web interface to manually set up some port forwards and static ip addresses.

https://registry.terraform.io/providers/francis-fisher/icotera-i4850/latest/docs

Terraform Registry

World Basement ClassicFeb 24, 2024

I just migrated my #Brsk connection back behind the #Icotera router, and there are some serious UI gotchas with the #IPv6 firewall, posting here for others' information.

The "Use firewall exceptions" checkbox must be ticked for any IPv6 firewalling to occur, even if you have no exceptions listed! Without it, all your LAN devices are totally exposed to the Internet.

And remember to set the netmask as /128 to limit to a single host - if you leave the default /0, or absently copy the /64 from the output of ip addr you will again disable firewalling for your LAN.

I'm nerdy enough to actually look for things that shouldn't work, but I worry about customers who aren't.