From owner-freebsd-pf@FreeBSD.ORG Thu Jun 30 09:29:36 2005 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 68DDA16A41C; Thu, 30 Jun 2005 09:29:36 +0000 (GMT) (envelope-from isy@infoweapons.com) Received: from ws2.infoweapons.com (ws2.infoweapons.com [203.177.161.179]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5491943D1F; Thu, 30 Jun 2005 09:29:34 +0000 (GMT) (envelope-from isy@infoweapons.com) Received: from [10.3.2.25] ([10.3.2.25]) by ws2.infoweapons.com over TLS secured channel with Microsoft SMTPSVC(6.0.3790.1830); Thu, 30 Jun 2005 17:29:16 +0800 Message-ID: <42C3BB6C.6060602@infoweapons.com> Date: Thu, 30 Jun 2005 17:29:16 +0800 From: "Ivan R. Sy Jr." User-Agent: Mozilla Thunderbird 1.0.2 (X11/20050520) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-pf@freebsd.org, mlaier@freebsd.org References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 30 Jun 2005 09:29:16.0859 (UTC) FILETIME=[2F9090B0:01C57D56] Cc: Subject: Carp IPv6 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Jun 2005 09:29:36 -0000 Hi all! I have carp working beautifully on two boxes carpbox0 and carpbox1. but only ipv4 is working, ipv6 is not working, can anyone see my configuration and advice me. thanks!.. ive disabled pf. here's tcpdump -i carp0 of carpbox0, this happens on both 17:19:33.365659 IP 10.3.2.28 > VRRP.MCAST.NET: VRRPv2, Advertisement, vrid 1, prio 1, authtype none, intvl 1s, length 36 17:19:33.365715 2001:a100:d299::ff28 > ff02:1::12: ip-proto-255 36 17:19:34.385670 IP 10.3.2.28 > VRRP.MCAST.NET: VRRPv2, Advertisement, vrid 1, prio 1, authtype none, intvl 1s, length 36 17:19:34.385706 2001:a100:d299::ff28 > ff02:1::12: ip-proto-255 36 17:19:35.405678 IP 10.3.2.28 > VRRP.MCAST.NET: VRRPv2, Advertisement, vrid 1, prio 1, authtype none, intvl 1s, length 36 17:19:35.405715 2001:a100:d299::ff28 > ff02:1::12: ip-proto-255 36 and /var/log/messages Jun 30 17:24:12 carpbox0 kernel: arp_rtrequest: bad gateway 10.3.2.30 (!AF_LINK) Jun 30 17:24:12 carpbox0 kernel: in6_ifloop_request: ADD operation failed for 2001:a100:d299::ff30 (errno=17) 2001:a100:d299::ff30 << this is the carp ipv6 address which doesnt work. carpbox0# ifconfig -a fxp0: flags=8943 mtu 1500 options=8 inet 10.3.2.28 netmask 0xff000000 broadcast 10.255.255.255 inet6 fe80::208:9bff:fe10:6a3%fxp0 prefixlen 64 scopeid 0x1 inet6 2001:a100:d299::ff28 prefixlen 64 ether 00:08:9b:10:06:a3 media: Ethernet autoselect (100baseTX ) status: active fxp1: flags=8843 mtu 1500 options=8 inet 192.168.1.28 netmask 0xffffff00 broadcast 192.168.1.255 inet6 fe80::208:9bff:fe1d:4321%fxp1 prefixlen 64 scopeid 0x2 inet6 fec0::28 prefixlen 64 ether 00:08:9b:1d:43:21 media: Ethernet autoselect (100baseTX ) status: active plip0: flags=108810 mtu 1500 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xffffff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4 pflog0: flags=0<> mtu 33208 pfsync0: flags=41 mtu 1348 pfsync: syncif: fxp1 maxupd: 128 carp0: flags=41 mtu 1500 inet 10.3.2.30 netmask 0xff000000 inet6 2001:a100:d299::ff30 prefixlen 64 carp: MASTER vhid 1 advbase 1 advskew 1 carpbox0# carpbox0# cat /etc/rc.conf hostname="carpbox0.test.org" ipv6_enable="YES" defaultrouter="10.0.0.1" ipv6_defaltrouter="2001:a100:d299:0::fff0" network_interfaces="lo0 fxp0 fxp1 carp0 pfsync0" ipv6_network_interfaces="lo0 fxp0 fxp1 carp0" ifconfig_fxp0="inet 10.3.2.28 netmask 255.0.0.0" ipv6_ifconfig_fxp0="2001:a100:d299:0::ff28 prefixlen 64" #address for pfsync ifconfig_fxp1="inet 192.168.1.28 netmask 255.255.255.0" ipv6_ifconfig_fxp1="fec0::28 prefixlen 64" ifconfig_pfsync0="inet 192.168.0.100 netmask 255.255.255.0" ifconfig_pfsync0="up syncif fxp1" #pf_enable="YES" #pflog_enable="YES" cloned_interfaces="carp0" ifconfig_carp0="inet 10.3.2.30 netmask 255.0.0.0 vhid 1 advskew 1 pass foo" ipv6_ifconfig_carp0="2001:a100:d299:0::ff30 prefixlen 64 vhid 1 advskew 1 pass foo" ifconfig_lo0="inet 127.0.0.1 netmask 255.255.255.0" ipv6_ifconfig_lo0="::1 prefixlen 128" nfs_client_enable="YES" sshd_enable="YES" named_enable="YES" sendmail_enable="none" carpbox0# carpbox0# cat /etc/sysctl.conf # $FreeBSD: src/etc/sysctl.conf,v 1.8 2003/03/13 18:43:50 mux Exp $ # net.inet.carp.allow=1 net.inet.carp.preempt=1 net.inet.carp.arpbalance=1 net.inet.carp.log=1 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= carpbox1# ifconfig -a fxp0: flags=8943 mtu 1500 options=8 inet 10.3.2.29 netmask 0xff000000 broadcast 10.255.255.255 inet6 fe80::208:9bff:fe10:73a%fxp0 prefixlen 64 scopeid 0x1 inet6 2001:a100:d299::ff29 prefixlen 64 ether 00:08:9b:10:07:3a media: Ethernet autoselect (100baseTX ) status: active fxp1: flags=8843 mtu 1500 options=8 inet 192.168.1.29 netmask 0xffffff00 broadcast 192.168.1.255 inet6 fe80::208:9bff:fe1d:43b7%fxp1 prefixlen 64 scopeid 0x2 inet6 fec0::29 prefixlen 64 ether 00:08:9b:1d:43:b7 media: Ethernet autoselect (100baseTX ) status: active lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xffffff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 pflog0: flags=0<> mtu 33208 pfsync0: flags=41 mtu 1348 pfsync: syncif: fxp1 maxupd: 128 carp0: flags=41 mtu 1500 inet 10.3.2.30 netmask 0xff000000 inet6 2001:a100:d299::ff30 prefixlen 64 carp: BACKUP vhid 1 advbase 1 advskew 100 carpbox1# carpbox1# cat /etc/rc.conf hostname="carpbox1.test.org" #the box inet4 address ifconfig_fxp0="inet 10.3.2.29 netmask 255.0.0.0" defaultrouter="10.0.0.1" #do the ipv6 ipv6_enable="YES" ipv6_defaultrouter="2001:a100:d299:0::fff0" ipv6_ifconfig_fxp0="2001:a100:d299:0::ff29 prefixlen 64" #address for pfsync ifconfig_fxp1="inet 192.168.1.29 netmask 255.255.255.0" ipv6_ifconfig_fxp1="fec0::29 prefixlen 64" #pf_enable="YES" #pflog_enable="YES" cloned_interfaces="carp0" ipv6_cloned_interface="carp0" network_interfaces="lo0 fxp0 fxp1 carp0 pfsync0" ipv6_network_interfaces="lo0 fxp0 fxp1 carp0" ifconfig_carp0="inet 10.3.2.30 netmask 255.0.0.0 vhid 1 advskew 100 pass foo" ipv6_ifconfig_carp0="2001:a100:d299:0::ff30 prefixlen 64 vhid 1 advskew 100 pass foo" ifconfig_pfsync0="inet 192.168.0.100 netmask 255.255.255.0" ifconfig_pfsync0="up syncif fxp1" ifconfig_lo0="inet 127.0.0.1 netmask 255.255.255.0" ipv6_ifconfig_lo0="::1 prefixlen 128" nfs_client_enable="YES" sshd_enable="YES" named_enable="YES" sendmail_enable="none" carpbox1# cat /etc/sysctl.conf net.inet.carp.allow=1 net.inet.carp.preempt=1 net.inet.carp.arpbalance=1 net.inet.carp.log=1