From owner-freebsd-net@FreeBSD.ORG Wed Mar 13 01:25:45 2013 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 51F52E2A for ; Wed, 13 Mar 2013 01:25:45 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-wg0-f44.google.com (mail-wg0-f44.google.com [74.125.82.44]) by mx1.freebsd.org (Postfix) with ESMTP id DF31176A for ; Wed, 13 Mar 2013 01:25:44 +0000 (UTC) Received: by mail-wg0-f44.google.com with SMTP id dr12so457042wgb.11 for ; Tue, 12 Mar 2013 18:25:43 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:x-mailer:from:subject:date :to:x-gm-message-state; bh=1qR9nZzHZFvYbdEboVwOYS12xqLmRKKcDf09YYx0JU4=; b=I23JnYXMpq1Vh2L/dFQSHQvzfF8XSOiEbuk9AcXDycUbBMCoo0RQhKfRyE+Y8QEwcm XQmrsg2uOcJLfgK8/jo8f4ZjPABOdGQrt/Kijps0hP0+HAHUwX8TXvFVlZlQspZe0YS4 KK7auIty/K6ZbP24eyvcvqBd+AkA5901jmswfoAJ0lSdPWuRc4bX54NDRV2uyRAm6XXi SebOG9oC7C+q2OXHUzR6CHy/oStSW9FNmtU7jdsCEg2GISHVGcQlYhG+iuns+dEAiHLY l73hXCJxp5JR6/MRVZQs71SbxtLA0M1zEPjZD+i7iTG+TFXRqmUkkiiLVEIQUmGkZ+ZW 2KTQ== X-Received: by 10.194.109.136 with SMTP id hs8mr30825106wjb.8.1363137943694; Tue, 12 Mar 2013 18:25:43 -0700 (PDT) Received: from ?IPv6:2a01:e35:8a58:2600:dd05:db5b:e25e:ec7c? ([2a01:e35:8a58:2600:dd05:db5b:e25e:ec7c]) by mx.google.com with ESMTPS id q2sm27765027wiz.8.2013.03.12.18.25.42 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 12 Mar 2013 18:25:42 -0700 (PDT) References: <20130312225018.GA13589@defiant.konundrum.org> Mime-Version: 1.0 (1.0) In-Reply-To: <20130312225018.GA13589@defiant.konundrum.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Message-Id: <3ABB5AED-DEA9-42F6-82A1-FEA9E8BBBDCF@my.gd> X-Mailer: iPhone Mail (10B144) From: Damien Fleuriot Subject: Re: ipv6 default router Operation not permitted Date: Wed, 13 Mar 2013 02:25:23 +0100 To: Schrodinger X-Gm-Message-State: ALoCoQk389GBeANtFpF39tsbr0e64Gs6lj7zyl/qb3phxdMjCDJOJzJnmDCcvqRQw+3wN1+5pCBH Cc: "freebsd-net@freebsd.org" X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Mar 2013 01:25:45 -0000 On 12 Mar 2013, at 23:50, Schrodinger wrote: > Hi, >=20 > I have a problem reaching my ipv6 default router. >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > It is the same issue as posted here : >=20 > http://lists.freebsd.org/pipermail/freebsd-net/2012-February/031518.html >=20 > However, I believe the problem Mr Dandy was experiencing was he should > have changed his default gateway from: >=20 > ipv6_defaultrouter=3D"2a01:4f8:61:50c0::1" >=20 > To: >=20 > ipv6_defaultrouter=3D"fe80::1%re0" >=20 > As per Hertzner documentation. >=20 > http://wiki.hetzner.de/index.php/FreeBSD_installieren/en#Network_Configura= tion >=20 > I am not hosted with Hertzner but I have the same broken network > configuration and am uncertain of the Correct Fix. >=20 > I have: >=20 > ::: /etc/rc.conf ::: >=20 > ipv6_activate_all_interfaces=3D"YES" > ipv6_default_interface=3D"re0" > ipv6_network_interfaces=3D"auto" > ip6addrctl_policy=3D"ipv6_prefer" >=20 > ifconfig_re0_ipv6=3D"inet6 2001:41D0:2:E7c4::1 prefixlen 64" >=20 > ipv6_static_routes=3D"ovhgw default" > ipv6_route_ovhgw=3D"2001:41d0:2:e7ff:ff:ff:ff:ff -prefixlen 128 -interface= re0" > ipv6_route_default=3D"default 2001:41d0:2:e7ff:ff:ff:ff:ff" >=20 > The default IPv6 router is _outside_ of my assigned /64 prefix, this is > why an interface route is set and is configured this way to ensure the > interface route is applied before the default IPv6 router is added to > the routing table. If I do not do this I will receive an error on boot > to say that the default gateway cannot be reached. There is also no > firewall in place on the host OS. >=20 > However this configuration does not work. >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > If I do=20 >=20 > # ifconfig re0 inet6 accept_rtadv >=20 > It works : >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > 16 bytes from 2001:41d0:2:e7ff:ff:ff:ff:ff, icmp_seq=3D0 hlim=3D64 time=3D= 4.935 ms >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev =3D 4.935/4.935/4.935/0.000 ms >=20 >=20 > Alternatively, knowing the Linklayer Address of my default gateway, I > could set a static ndp pair : >=20 > # ifconfig re0 inet6 -accept_rtadv > # ndp -s 2001:41d0:2:e7ff:ff:ff:ff:ff 00:05:73:a0:00:00 >=20 > And it works: >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > 16 bytes from 2001:41d0:2:e7ff:ff:ff:ff:ff, icmp_seq=3D0 hlim=3D64 time=3D= 3.582 ms >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev =3D 3.582/3.582/3.582/0.000 ms >=20 > If I do : >=20 > # ndp -d 2001:41d0:2:e7ff:ff:ff:ff:ff >=20 > It stops working again : >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > It seems the simple solution is to have re0 ACCEPT_RTADV but I am told > that my default gateway does not perform router advertisements.=20 >=20 > In my own networks I have a static default route for inet6 and I am not > required to set any interfaces ACCEPT_RTADV. >=20 > Can anybody shed some light on the correct configuration? >=20 > Who is at fault here ? >=20 > - Me > - Hosting > - FreeBSD > - The universe >=20 > Cheers, > C. >=20 The network is actually /48 and you get assigned a /64 inside it. Set your interface to use the /48 prefix and voodoo will happen (I can assur= e you with a 97% certainty that your default GW is inside the /48). Of course, using the /48 prefix doesn't mean you can/may use IPs from outsid= e the /64 that was given you. Also, remove all the junk from rc.conf to only set the ipv6 default gw, none= of these static routes anymore. Kindly reply with topic "SOLVED" if that fixed you up, that googlers in the f= uture may find the solution easily.=