From owner-freebsd-questions@FreeBSD.ORG Sun Aug 29 14:28:40 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1CBEE10656AD for ; Sun, 29 Aug 2010 14:28:40 +0000 (UTC) (envelope-from indexer@internode.on.net) Received: from mail.internode.on.net (bld-mail17.adl2.internode.on.net [150.101.137.102]) by mx1.freebsd.org (Postfix) with ESMTP id 793AD8FC0A for ; Sun, 29 Aug 2010 14:28:38 +0000 (UTC) Received: from mai.dhcp.chocolate.lan (unverified [203.122.194.109]) by mail.internode.on.net (SurgeMail 3.8f2) with ESMTP id 36798845-1927428 for multiple; Sun, 29 Aug 2010 23:58:38 +0930 (CST) Mime-Version: 1.0 (Apple Message framework v1081) Content-Type: text/plain; charset=us-ascii From: Indexer In-Reply-To: <4C7A426C.1060305@infracaninophile.co.uk> Date: Sun, 29 Aug 2010 23:58:30 +0930 Content-Transfer-Encoding: quoted-printable Message-Id: <37A6A2B2-7C31-450D-A9B1-76D990E4DA79@internode.on.net> References: <141EE0AF-42C0-4455-BB4A-85C07ED784C0@internode.on.net> <4C7A04FC.3020301@infracaninophile.co.uk> <780515BD-59CE-4507-B472-029578CC9E39@internode.on.net> <4C7A426C.1060305@infracaninophile.co.uk> To: Matthew Seaman X-Pgp-Agent: GPGMail 1.2.3 X-Mailer: Apple Mail (2.1081) Cc: freebsd-questions@freebsd.org Subject: Re: ISC-DHCP6 does not send replies X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 29 Aug 2010 14:28:40 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 >=20 > Connecting to [ff02::1:2]:547 (link-scoped > All_DHCP_Relay_Agents_and_Servers) or [ff05::1:3]:547 (site-scoped > All_DHCP_Servers) should get some sort of answer. I can ping6 to ff02::1:2 successfully. >=20 > Check the routing table on server and client -- on a FreeBSD box, I = get: >=20 > % netstat -r | grep ff02 > ff02::%re0 fe80::e2cb:4eff:fe U re0 > ff02::%fwe0 fe80::1e:8cff:fec2 U fwe0 > ff02::%fwip0 fe80::21e:8c00:c2: U fwip0 > ff02::%lo0 localhost U lo0 > ff02::%gif0 fe80::e2cb:4eff:fe U gif0 Here is my routing table on my gateway system, using the same command as = yours.=20 ff02::/16 ::1 UGRS = lo0 ff02::%em0/32 fe80::216:e6ff:fe7f:972e%em0 U = em0 ff02::%lo0/32 ::1 U = lo0 ff02::%tun0/32 fe80::216:e6ff:fe7f:972e%tun0 UGS = tun0 ff02::%tun2/32 fe80::216:e6ff:fe7f:972e%tun2 U = tun2 ff02::%tun3/32 fe80::216:e6ff:fe7f:972e%tun3 U = tun3 ff02::%tun1/32 fe80::216:e6ff:fe7f:972e%tun1 U = tun1 That ff02::/16 does not look quite right .....=20 >=20 > (ie. a route for all network interfaces known on the system, whether > active or not) >=20 > The next step in debugging is to start capturing packet traces > (tcpdump(1), wireshark(1)) on both client and server and hunting in > there for clues. I know some IPv6 traffic won't get through my = wireless > router, but that device is IPv4 only and the poor thing gets easily > confused by all this new-fangled IPv6 stuff... Thankfully, all my gear is quite new, and IPV6 runs happily on it with = radvd. I at least know its not my networking gear :) . I also, luckily, = have two wireless APs to test (one on RADIUS, one without) so i can rule = that out as the cause of the issue as well >=20 > Cheers, >=20 > Matthew >=20 > PS. On the off chance that it is the firewall. A good debugging trick > with pf is to add a 'log' clause to any rule that has a block or = reject > action. Eg. in lines like the following: >=20 > # tcpdump -i pflog0 -vv >=20 > and make your client request a new lease. Did all of this to be 100% sure about this. No ip6 traffic was blocked. > Now, with IPv6, link-local addresses are always configured, and there > are a whole new set of prefixes for local-, site- and global- scope > addresses. I don't know if dhcp client tries using MAC-broadcast at = all > in the IPv6 case (I would think dhcpd should answer if it does) but = the > link-local address stuff is possibly what's being blocked somewhere. >=20 Yes, the new ipv6 stuff is very interesting. In fact Internode my ISP, = use DHCP6 for router prefix advertisement on the pppoe session. In fact, could that be the issue? I have dhcp6c running from my pppoe = session (tun0), and it assigns the prefix to em0. I also am trying to = use em0 as the DHCP6 server. This shouldn't be breaking it, but it = *could* be? > --=20 > Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard > Flat 3 > PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate > JID: matthew@infracaninophile.co.uk Kent, CT11 9PW >=20 Thanks again, its greatly appreciated. William Brown pgp.mit.edu -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) iQIcBAEBAgAGBQJMem6SAAoJEHF16AnLoz6JmV0P/i9ZbOD1vUx0x5V5jG31smoP cDlkREQJWHxeHKROoe4/Em24Djk07iUtOkmSyHQjh7Lq7mAyqDiJfp/8CfCs+Z4a I0/6kmWrZ6ojoqMbFRD01yQ9PubwS1pEbZxSEJnh503G5B/dy0mDCUIXRQtsfppP EJBhg0F2rw95NV4dtNtLHvJUxppWXqiLDOHoBWwa443rkgIziWi9ZkEUjcm+0x5f uOKD1Fiv9Wqua+4HWDR1IVLjHiIGO1AlLnPHVwH4T2/k63xj1fFKXT7hmQ8+i2jn FptT9T5kAPzbjO474YblyI/n7qGMzhTDuvqY9IZkycrNG/vpI7TlCP/YeI6XhIgx cO+ZlU+XUxzd1l1YcB9ipzGW0aEJcKWwmB/d4XzHoEcA/EzTS0vgmEE6ToHJBxSZ nYFMJ2OuD4ojYcrkF45+kefgA/JCH4SJk0W6qoWTzopY5yuq0pSXY7PpknwKNZlu M2YxIXWkfjdZRzItbgylSGurHcEXBwr9/Rbg5glOZ/Zkf7znTfZzG25psjy9SCCp aiNNU/Rhh5wbbn8GY8CeLXPVDgOybbx1C+zLeH5n/yqakrl9v5O5FwF5qDs7uvX5 hdc9UDKAaJBdgX3YsLecyhSt9ekmPxLY4tEvLUXsf1YUJX5J+HcUoE+ke0uzEqu1 vgnIJiUzdYP/hR0X4BHc =3DxWfb -----END PGP SIGNATURE-----