Date: Wed, 13 Mar 2013 02:25:23 +0100 From: Damien Fleuriot <ml@my.gd> To: Schrodinger <schrodinger@konundrum.org> Cc: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org> Subject: Re: ipv6 default router Operation not permitted Message-ID: <3ABB5AED-DEA9-42F6-82A1-FEA9E8BBBDCF@my.gd> In-Reply-To: <20130312225018.GA13589@defiant.konundrum.org> References: <20130312225018.GA13589@defiant.konundrum.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12 Mar 2013, at 23:50, Schrodinger <schrodinger@konundrum.org> wrote: > Hi, >=20 > I have a problem reaching my ipv6 default router. >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > It is the same issue as posted here : >=20 > http://lists.freebsd.org/pipermail/freebsd-net/2012-February/031518.html >=20 > However, I believe the problem Mr Dandy was experiencing was he should > have changed his default gateway from: >=20 > ipv6_defaultrouter=3D"2a01:4f8:61:50c0::1" >=20 > To: >=20 > ipv6_defaultrouter=3D"fe80::1%re0" >=20 > As per Hertzner documentation. >=20 > http://wiki.hetzner.de/index.php/FreeBSD_installieren/en#Network_Configura= tion >=20 > I am not hosted with Hertzner but I have the same broken network > configuration and am uncertain of the Correct Fix. >=20 > I have: >=20 > ::: /etc/rc.conf ::: >=20 > ipv6_activate_all_interfaces=3D"YES" > ipv6_default_interface=3D"re0" > ipv6_network_interfaces=3D"auto" > ip6addrctl_policy=3D"ipv6_prefer" >=20 > ifconfig_re0_ipv6=3D"inet6 2001:41D0:2:E7c4::1 prefixlen 64" >=20 > ipv6_static_routes=3D"ovhgw default" > ipv6_route_ovhgw=3D"2001:41d0:2:e7ff:ff:ff:ff:ff -prefixlen 128 -interface= re0" > ipv6_route_default=3D"default 2001:41d0:2:e7ff:ff:ff:ff:ff" >=20 > The default IPv6 router is _outside_ of my assigned /64 prefix, this is > why an interface route is set and is configured this way to ensure the > interface route is applied before the default IPv6 router is added to > the routing table. If I do not do this I will receive an error on boot > to say that the default gateway cannot be reached. There is also no > firewall in place on the host OS. >=20 > However this configuration does not work. >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > If I do=20 >=20 > # ifconfig re0 inet6 accept_rtadv >=20 > It works : >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > 16 bytes from 2001:41d0:2:e7ff:ff:ff:ff:ff, icmp_seq=3D0 hlim=3D64 time=3D= 4.935 ms >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev =3D 4.935/4.935/4.935/0.000 ms >=20 >=20 > Alternatively, knowing the Linklayer Address of my default gateway, I > could set a static ndp pair : >=20 > # ifconfig re0 inet6 -accept_rtadv > # ndp -s 2001:41d0:2:e7ff:ff:ff:ff:ff 00:05:73:a0:00:00 >=20 > And it works: >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > 16 bytes from 2001:41d0:2:e7ff:ff:ff:ff:ff, icmp_seq=3D0 hlim=3D64 time=3D= 3.582 ms >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev =3D 3.582/3.582/3.582/0.000 ms >=20 > If I do : >=20 > # ndp -d 2001:41d0:2:e7ff:ff:ff:ff:ff >=20 > It stops working again : >=20 > # ping6 -c 1 2001:41d0:2:e7ff:ff:ff:ff:ff > PING6(56=3D40+8+8 bytes) 2001:41d0:2:e7c4::1 --> 2001:41d0:2:e7ff:ff:ff:ff= :ff > ping6: sendmsg: Operation not permitted > ping6: wrote 2001:41d0:2:e7ff:ff:ff:ff:ff 16 chars, ret=3D-1 >=20 > --- 2001:41d0:2:e7ff:ff:ff:ff:ff ping6 statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss >=20 > It seems the simple solution is to have re0 ACCEPT_RTADV but I am told > that my default gateway does not perform router advertisements.=20 >=20 > In my own networks I have a static default route for inet6 and I am not > required to set any interfaces ACCEPT_RTADV. >=20 > Can anybody shed some light on the correct configuration? >=20 > Who is at fault here ? >=20 > - Me > - Hosting > - FreeBSD > - The universe >=20 > Cheers, > C. >=20 The network is actually /48 and you get assigned a /64 inside it. Set your interface to use the /48 prefix and voodoo will happen (I can assur= e you with a 97% certainty that your default GW is inside the /48). Of course, using the /48 prefix doesn't mean you can/may use IPs from outsid= e the /64 that was given you. Also, remove all the junk from rc.conf to only set the ipv6 default gw, none= of these static routes anymore. Kindly reply with topic "SOLVED" if that fixed you up, that googlers in the f= uture may find the solution easily.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3ABB5AED-DEA9-42F6-82A1-FEA9E8BBBDCF>