From owner-freebsd-questions@FreeBSD.ORG  Fri Jun  8 16:02:24 2012
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 3C6101065672
	for <freebsd-questions@freebsd.org>;
	Fri,  8 Jun 2012 16:02:24 +0000 (UTC)
	(envelope-from bruce@cran.org.uk)
Received: from muon.cran.org.uk (muon.cran.org.uk [93.89.92.64])
	by mx1.freebsd.org (Postfix) with ESMTP id 9D91B8FC0A
	for <freebsd-questions@freebsd.org>;
	Fri,  8 Jun 2012 16:02:23 +0000 (UTC)
Received: from muon.cran.org.uk (localhost [127.0.0.1])
	by muon.cran.org.uk (Postfix) with ESMTP id C3E48E64ED;
	Fri,  8 Jun 2012 17:03:01 +0100 (BST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cran.org.uk; h=message-id
	:date:from:mime-version:to:cc:subject:references:in-reply-to
	:content-type:content-transfer-encoding; s=mail; bh=GjJGa0cxY8+0
	okVOUeu0AvG9lmU=; b=D6MeF8EgFPT6s1EwZzbD1GTXtBpzYF0N3VXLQpil7y+N
	5Z9nwrNjNrSI7A4KiQipBqtstvNTzCkiFUxnlY2xZSt3Mh6aT/DGO1eqD4MDIuEE
	IZTLxaAC4Z8hA6v13mnIeZdMUFmgE7uem/Wdl/ur7SrkoW/m9s0tcSbFtMcnVYw=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=cran.org.uk; h=message-id
	:date:from:mime-version:to:cc:subject:references:in-reply-to
	:content-type:content-transfer-encoding; q=dns; s=mail; b=KR4Bcc
	IdulbGYaVUOT1XzGmg+eNQpCdTmvIUvUsz7UeFLnOwnVkvlfo3hmSM9k7MbTwone
	UqarwH4C3ZchlApeF99sZ9YitJiZVmsRT3x2qGCZgqNFE5ZfQdlv62u9l/9xgsm9
	3mBco7bFIdWbK/+jZ2ILNyzklRGRW1Hnxqp7M=
Received: from [192.168.2.12] (unknown [93.89.81.205])
	(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	by muon.cran.org.uk (Postfix) with ESMTPSA id 80235E64EC;
	Fri,  8 Jun 2012 17:03:01 +0100 (BST)
Message-ID: <4FD221D5.8060306@cran.org.uk>
Date: Fri, 08 Jun 2012 17:01:25 +0100
From: Bruce Cran <bruce@cran.org.uk>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64;
	rv:13.0) Gecko/20120604 Thunderbird/13.0
MIME-Version: 1.0
To: Robert Bonomi <bonomi@mail.r-bonomi.com>
References: <201206072256.q57MuWXC058337@mail.r-bonomi.com>
In-Reply-To: <201206072256.q57MuWXC058337@mail.r-bonomi.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: Configuration problem with IPv6 router ("cannot forward src")
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Jun 2012 16:02:24 -0000

On 07/06/2012 23:56, Robert Bonomi wrote:
> Please provide the output from these two commands:
>     ifconfig  -a
>     netstat -nr
> on both the router and on an 'inside' machine. (identifying which is which:)
>
> There is also a question of 'where' the /48 comes from -- and how
> traffic to those addresses is being routed from the outside world.

The /48 came from my ISP, so it should be getting routed correctly.

ifconfig -a (with ral0/lo0 removed):

em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4219b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,TSO4,WOL_MAGIC,VLAN_HWTSO>
         ether [em0_MAC]
         inet 192.168.2.1 netmask 0xffffff00 broadcast 192.168.2.255
         inet6 fe80::[em0_MAC]%em0 prefixlen 64 scopeid 0x1
         inet6 [prefix]:a::b prefixlen 64
         nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
         media: Ethernet autoselect (1000baseT <full-duplex>)
         status: active
em1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4219b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,TSO4,WOL_MAGIC,VLAN_HWTSO>
         ether [em1_MAC]
         inet6 fe80::[em1_MAC]%em1 prefixlen 64 scopeid 0x2
         nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
         media: Ethernet autoselect (100baseTX <full-duplex>)
         status: active
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1492
         options=80000<LINKSTATE>
         inet6 fe80::[em0_MAC]%tun0 prefixlen 64 scopeid 0xf
         inet [MYADDR] --> [HISADDR] netmask 0xffffff00
         inet6 [prefix]:c::b prefixlen 64
         nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
         Opened by PID 1092


Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use  Netif Expire
default            [HISADDR]       UGS         0     2476   tun0
[MYADDR]       link#15            UHS         0        0    lo0
[HISADDR]       link#15            UH          0        0   tun0
127.0.0.1          link#14            UH          0        0    lo0
192.168.2.0/24     link#1             U           0     3985    em0
192.168.2.1        link#1             UHS         0        0    lo0

Internet6:
Destination                       Gateway Flags      Netif Expire
::/96                             ::1 UGRS        lo0 =>
default                           fe80::[em0_MAC]%tun0   UGS tun0
::1                               link#14 UH          lo0
::ffff:0.0.0.0/96                 ::1 UGRS        lo0
[prefix]:c::/64               link#15 U          tun0
[prefix]:c::1                 link#15 UHS         lo0
[prefix]:a::/64               link#1 U           em0
[prefix]:a::1                 link#1 UHS         lo0
fe80::/10                         ::1 UGRS        lo0
fe80::%em0/64                     link#1 U           em0
fe80::[em0_MAC]%em0      link#1                        UHS lo0
fe80::%em1/64                     link#2 U           em1
fe80::[em1_MAC]%em1      link#2                        UHS lo0
fe80::%lo0/64                     link#14 U           lo0
fe80::1%lo0                       link#14 UHS         lo0
fe80::%tun0/64                    link#15 US         tun0
fe80::[em0_MAC]%tun0     link#15                       UHS lo0
ff01::%em0/32                     fe80::[em0_MAC]%em0  U em0
ff01::%em1/32                     fe80::[em1_MAC]%em1  U em1
ff01::%lo0/32                     ::1 U           lo0
ff01::%tun0/32                    fe80::[em0_MAC]%tun0 US tun0
ff02::/16                         ::1 UGRS        lo0
ff02::%em0/32                     fe80::[em0_MAC]%em0  U em0
ff02::%em1/32                     fe80::[em1_MAC]%em1  U em1
ff02::%lo0/32                     ::1 U           lo0
ff02::%tun0/32                    fe80::[em0_MAC]%tun0 UGS tun0

rtadvd.conf contains:

em0:\
  :addrs#1:addr="[prefix]:a::":prefixlen#64;tc=ether:raflags="o":

rc.conf contains:

ifconfig_em0=" inet 192.168.2.1 netmask 255.255.255.0"
ifconfig_em0_ipv6=" inet6 [prefix]:a::b"
ifconfig_em1="up"
pf_enable="YES"
gateway_enable="YES"
ppp_enable="YES"
ppp_nat="NO"
ppp_goscomb_mode="ddial"
ppp_goscomb_nat="NO"
ppp_profile="isp"
ipv6_gateway_enable="YES"
ipv6_network_interfaces="em0 em1 tun0"
dhcpd_enable="YES"
dhcpd6_enable="NO"
dhcpd_flags="-q"
dhcpd6_flags="-q"
dhcpd_conf="/usr/local/etc/dhcpd.conf"
dhcpd6_conf="/usr/local/etc/dhcpd6.conf"
dhcpd_ifaces="em0"
dhcpd6_ifaces="em0"
dhcpd_withumask="022"
dhcpd6_withumask="022"
dhcpd_chuser_enable="YES"
dhcpd6_chuser_enable="YES"
dhcpd_withuser="dhcpd"
dhcpd6_withuser="dhcpd"
dhcpd_withgroup="dhcpd"
dhcpd6_withgroup="dhcpd"
dhcpd_chroot_enable="YES"
dhcpd6_chroot_enable="YES"
dhcpd_devfs_enable="YES"
dhcpd6_devfs_enable="YES"
dhcpd_rootdir="/var/db/dhcpd"
dhcpd6_rootdir="/var/db/dhcpd6"
rtadvd_enable="NO"
rtadvd_interfaces="em0"

I've tried configuring a machine with a static configuration, bypassing 
any issues with rtadvd/dhcpd6 so I'm fairly sure the problem is on the 
router.

-- 
Bruce Cran