Site Navigation

Date:      Tue, 29 Mar 2022 18:11:05 +0200
From:      Goran =?utf-8?B?TWVracSH?= <meka@tilda.center>
To:        Ronald Klop <ronald-lists@klop.ws>
Cc:        freebsd-current@freebsd.org, "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
Subject:   Re: DHCPDv6 in non-vnet jail
Message-ID:  <20220329161105.uw5aigvpazd77we4@tilda.center>
In-Reply-To: <1527544025.66.1648548860391@mailrelay>
References:  <20220326222957.wuc7xwyiq3bjtlnv@tilda.center> <4772ECB8-6482-4B94-A887-F04EC6272911@lists.zabbadoz.net> <20220329081129.p5xtxlbiyw6klxcl@tilda.center> <1527544025.66.1648548860391@mailrelay>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

--jreevis3qtujrjsm
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline

On Tue, Mar 29, 2022 at 12:14:20PM +0200, Ronald Klop wrote:
> I think it will help if you share more of your configuration/logs.
Inside non-vnet jail, this is ifconfig output
cbsd0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
	description: lagg0
	ether 58:9c:fc:10:9b:75
	inet 172.16.0.253 netmask 0xffffffff broadcast 172.16.0.253
	inet6 fd10:6c79:8ae5:8b91::2 prefixlen 128
	id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
	maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
	root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
	member: epair1a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 7 priority 128 path cost 2000
	member: epair5a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 11 priority 128 path cost 2000
	member: epair4a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 10 priority 128 path cost 2000
	member: epair3a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 9 priority 128 path cost 2000
	member: epair2a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 8 priority 128 path cost 2000
	groups: bridge
	nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>

There are bunch of other interfaces, but only cbsd0 (bridge interface)
is set up with ip address.


netstat -rn
Routing tables

Internet:
Destination        Gateway            Flags     Netif Expire
172.16.0.253       link#4             UH        cbsd0

Internet6:
Destination                       Gateway                       Flags     Netif Expire
fd10:6c79:8ae5:8b91::2            link#4                        UHS         lo0


grep -v '^#' /usr/local/etc/dhcpd6.conf

default-lease-time 2592000;
preferred-lifetime 604800;
option dhcp-renewal-time 3600;
option dhcp-rebinding-time 7200;
allow leasequery;
option dhcp6.name-servers 3ffe:501:ffff:100:200:ff:fe00:3f3e;
option dhcp6.domain-search "test.example.com","example.com";
option dhcp6.info-refresh-time 21600;
dhcpv6-lease-file-name "/var/db/dhcpd6/dhcpd6.leases";

subnet6 fd10:6c79:8ae5:8b91::/64 {
  range6 fd10:6c79:8ae5:8b91::/64;
}


ls -l /dev
total 1
crw-------  1 root  wheel   0x26 Mar 29 17:35 bpf
lrwxr-xr-x  1 root  wheel      3 Mar 28 09:31 bpf0 -> bpf
crw-rw-rw-  1 root  wheel   0x4a Mar 26 15:54 crypto
dr-xr-xr-x  2 root  wheel    512 Mar 29 03:38 fd
crw-rw-rw-  1 root  wheel   0x2a Mar 29 18:00 null
crw-rw----  1 root  nsd    0x1a5 Mar 24 23:45 pf
crw-rw----  1 root  nsd     0x4b Mar 26 15:54 pfil
dr-xr-xr-x  2 root  wheel    512 Mar 28 09:31 pts
crw-r--r--  1 root  wheel    0x8 Mar 24 23:45 random
lrwxr-xr-x  1 root  wheel      4 Mar 28 09:31 stderr -> fd/2
lrwxr-xr-x  1 root  wheel      4 Mar 28 09:31 stdin -> fd/0
lrwxr-xr-x  1 root  wheel      4 Mar 28 09:31 stdout -> fd/1
lrwxr-xr-x  1 root  wheel      6 Mar 28 09:31 urandom -> random
crw-rw-rw-  1 root  wheel   0x2b Mar 26 15:54 zero



On the host I have /etc/rtadvd.conf:
cbsd0:addr="fd10:6c79:8ae5:8b91::":raflags="m"


On the host ifconfig cbsd0
cbsd0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
	description: lagg0
	ether 58:9c:fc:10:9b:75
	inet 172.16.0.254 netmask 0xffffff00 broadcast 172.16.0.255
	inet 172.16.1.254 netmask 0xffffff00 broadcast 172.16.1.255
	inet 172.16.0.253 netmask 0xffffffff broadcast 172.16.0.253
	inet6 fe80::5a9c:fcff:fe10:9b75%cbsd0 prefixlen 64 scopeid 0x4
	inet6 fd10:6c79:8ae5:8b91::1 prefixlen 64
	inet6 fd10:6c79:8ae5:8b91::2 prefixlen 128
	id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
	maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
	root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
	member: epair1a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 7 priority 128 path cost 2000
	member: epair5a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 11 priority 128 path cost 2000
	member: epair4a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 10 priority 128 path cost 2000
	member: epair3a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 9 priority 128 path cost 2000
	member: epair2a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 8 priority 128 path cost 2000
	groups: bridge
	nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>

> Besides you can take a look with tcpdump/wireshark on what happens on different interfaces of your machines to see the traffic flow between client and server.
Running tcpdump -i cbsd0 ip6 inside the non-vnet:
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on cbsd0, link-type EN10MB (Ethernet), capture size 262144 bytes
18:02:29.081325 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:02:51.229813 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:02:52.338420 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:02:54.444709 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:02:58.449268 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:02:59.083071 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:03:06.545104 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:03:12.355503 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:03:22.890933 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:03:29.084154 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:03:54.837662 IP6 fe80::2a0:98ff:fe7d:cad.dhcpv6-client > ff02::1:2.dhcpv6-server: dhcp6 solicit
18:03:59.081342 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:04:29.083992 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322
18:04:41.028190 IP6 fe80::5a9c:fcff:fe10:9b75.10482 > ff12::8384.21027: UDP, length 322


That happens while I'm running dhcp6c -d -f eth0 inside vnet jail (eth0
is epair that is renamed):
Mar/29/2022 18:02:50: failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Mar/29/2022 18:02:50: failed initialize control message authentication
Mar/29/2022 18:02:50: skip opening control port
Mar/29/2022 18:02:50: cfparse: fopen(/usr/local/etc/dhcp6c.conf): No such file or directory
Mar/29/2022 18:02:51: Sending Solicit
Mar/29/2022 18:02:52: Sending Solicit
Mar/29/2022 18:02:54: Sending Solicit
Mar/29/2022 18:02:58: Sending Solicit
Mar/29/2022 18:03:06: Sending Solicit
Mar/29/2022 18:03:22: Sending Solicit
Mar/29/2022 18:03:54: Sending Solicit



Can I provide any more info?

Regards,
meka

--jreevis3qtujrjsm
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=RmKY
-----END PGP SIGNATURE-----

--jreevis3qtujrjsm--

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20220329161105.uw5aigvpazd77we4>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact