From owner-freebsd-net@FreeBSD.ORG Fri Aug 29 10:17:11 2014 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3102463C; Fri, 29 Aug 2014 10:17:11 +0000 (UTC) Received: from zibbi.meraka.csir.co.za (zibbi.meraka.csir.co.za [IPv6:2001:4200:7000:2::1]) by mx1.freebsd.org (Postfix) with ESMTP id C4305152A; Fri, 29 Aug 2014 10:17:10 +0000 (UTC) Received: by zibbi.meraka.csir.co.za (Postfix, from userid 3973) id F15CBB84D; Fri, 29 Aug 2014 12:17:07 +0200 (SAST) Date: Fri, 29 Aug 2014 12:17:07 +0200 From: John Hay To: "Bjoern A. Zeeb" Subject: Re: Should I be using ipv6_activate_all_interfaces or ip6addrctl_policy="ipv6_prefer" Message-ID: <20140829101707.GA83695@zibbi.meraka.csir.co.za> References: <88a42e1006e3fac7508a9419e342f1b2@mail.jonathanprice.org> <2173103.SJdXL7NPLT@overcee.wemm.org> <53FD7B34.1050408@jonathanprice.org> <2D16BCE4-5E5A-4C06-8927-76953DDEC348@lists.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2D16BCE4-5E5A-4C06-8927-76953DDEC348@lists.zabbadoz.net> User-Agent: Mutt/1.5.21 (2010-09-15) Cc: FreeBSD Net , Hiroki Sato , Jonathan Price X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Aug 2014 10:17:11 -0000 On Wed, Aug 27, 2014 at 11:59:25AM +0000, Bjoern A. Zeeb wrote: > > On 27 Aug 2014, at 06:31 , Jonathan Price wrote: > > > On 2014-08-27 01:40, Peter Wemm wrote: > >> On Tuesday 26 August 2014 10:40:27 freebsd@jonathanprice.org wrote: > >>> Hello, > >>> > >>> I am configuring a server with IPv4 and IPv6 addresses and have noticed that > >>> FreeBSD seems to be preferring IPv4, such as when establishing SSH > >>> connections. > >>> > >>> After reading through /etc/defaults/rc.conf, and later /etc/rc.d/ip6addrctl > >>> I have come to the conclusion that I have two ways to tell FreeBSD to > >>> prefer IPv6: > >>> > >>> 1) Add ipv6_activate_all_interfaces to /etc/rc.conf > >>> 2) Add ip6addrctl_policy="ipv6_prefer" to /etc/rc.conf > >>> ... > > However, it does sound like for my purposes it would make more sense to use ip6addrctl_policy=?ipv6_prefer" as that is more explicitly the feature I want, rather than getting it inadvertently through the other knob. > > Yes. Definitively. I am not sure if it has happened but if IPv6 config is configured through rc.conf that setting should be(come) default. > It does not seem so yet (anymore, it was like that many moons ago). A new install of 11-current, with the following in rc.conf: ################# hostname="fbsd-11-test" ifconfig_em0="DHCP" ifconfig_em0_ipv6="inet6 accept_rtadv" sshd_enable="YES" ################# Output of ip6addrctl: ################# jhay@fbsd-11-test:~ % ip6addrctl Prefix Prec Label Use ::1/128 50 0 0 ::/0 40 1 13 ::ffff:0.0.0.0/96 100 4 0 2002::/16 30 2 0 2001::/32 5 5 0 fc00::/7 3 13 0 ::/96 1 3 0 fec0::/10 1 11 0 3ffe::/16 1 12 0 jhay@fbsd-11-test:~ % ################# telnet to a machine with both ipv6 and ipv4 addresses: ################# jhay@fbsd-11-test:~ % telnet dolphin Trying 146.64.28.14... telnet: connect to address 146.64.28.14: Connection refused Trying 2001:4200:7000:3:223:aeff:fea5:ef... telnet: connect to address 2001:4200:7000:3:223:aeff:fea5:ef: Connection refused telnet: Unable to connect to remote host jhay@fbsd-11-test:~ % ################# I think if an IPv6 address is configured on a machine, it should prefer ipv6 addresses. That would match what the rest are doing. Regards John -- John Hay -- jhay@meraka.csir.co.za / jhay@meraka.org.za