From owner-freebsd-current@FreeBSD.ORG Mon Sep 2 06:42:09 2013 Return-Path: Delivered-To: freebsd-current@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 04589425; Mon, 2 Sep 2013 06:42:09 +0000 (UTC) (envelope-from mailinglists@martinlaabs.de) Received: from relay04.alfahosting-server.de (relay04.alfahosting-server.de [109.237.142.240]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id B43EE21B6; Mon, 2 Sep 2013 06:42:08 +0000 (UTC) Received: by relay04.alfahosting-server.de (Postfix, from userid 1001) id 8384932D176F; Mon, 2 Sep 2013 08:42:06 +0200 (CEST) X-Spam-DCC: : X-Spam-Level: X-Spam-Status: No, score=0.0 required=7.0 tests=BAYES_50 autolearn=disabled version=3.2.5 Received: from alfa3018.alfahosting-server.de (alfa3018.alfahosting-server.de [109.237.140.30]) by relay04.alfahosting-server.de (Postfix) with ESMTPS id 9CB4E32D0CC9; Mon, 2 Sep 2013 08:42:04 +0200 (CEST) Received: from laabs.hf.ifn.et.tu-dresden.de (hfsync.ifn.et.tu-dresden.de [141.30.128.60]) by alfa3018.alfahosting-server.de (Postfix) with ESMTPSA id 84615515DE98; Mon, 2 Sep 2013 08:42:04 +0200 (CEST) Message-ID: <5224333C.8070305@martinlaabs.de> Date: Mon, 02 Sep 2013 08:42:04 +0200 From: Martin Laabs User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:17.0) Gecko/20130809 Thunderbird/17.0.8 MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: No UDP/TCP IPv6 connectivity (only) to router using gif interface - maybe ARM related Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Status: No X-Virus-Checker-Version: clamassassin 1.2.4 with ClamAV 0.97.3/17790/Mon Sep 2 06:48:29 2013 Cc: freebsd-arm , freebsd-current@FreeBSD.org X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Sep 2013 06:42:09 -0000 Hi, I tried to set up my raspberry PI as an ipv6 router. As a tunnel broker I use sixxs. Now I observed an interesting behavior: Every host from my network can reach the ipv6 world. The ipv6 world can also reach every host in my network. However - the router itself is unable to make udp or tcp connection to the "world" and is also unable to accept connections form the "world" ICMP however works properly. I had a look to the tcpdump and when trying to connect i.e. to www.kame.net the rasperry router sends a syn packet and get a syn/ack packet back. The rest of the handshake is missing. I tried also some udp with netcat (nc -6 -u -l 5555 on the server and nc -6 -u 5555 on the client) This works great for internal (ethernet) traffic but when the data should go through the tunnel if fails. The last test is maybe the most significant to describe the bug: Start netcat to listen for UDP packages on an external host: nc -6 -u -l 5555 Connect from the RPI-Router to that host nc -6 -u 2001:4dd0:xxxx:xxxx::2 5555 Now it is possible to send data from the RPI router to the external host but the opposite direction does not work. Tcpdump however shows that the udp package arrives but it is not "forwarded" to the application. So for me it seems to be a problem with the handling of the receiving data in the gif interface. This behavior is independent from net.inet6.ip6.forwarding or net.inet6.ip6.redirect status. The router system: FreeBSD raspberry-pi.xxx 10.0-CURRENT FreeBSD 10.0-CURRENT #2 r254984 Best regards, Martin Laabs