Date: Tue, 30 Jul 2024 22:38:46 -0400 From: Karl Denninger <karl@denninger.net> To: freebsd-net@freebsd.org Subject: Re: DHCPv6 IA_PD - how-to Message-ID: <cd2a3579-257d-4de2-8467-94509cd9d03c@denninger.net> In-Reply-To: <2c1d5655-452c-4b7d-906d-8aa1affa64bd@denninger.net> References: <050440F8-B3D8-4B2C-85BD-D5C09C303037@distal.com> <20240727.122108.862717899466090274.moto@kawasaki3.org> <190fdf3e353.11351bb5e292296.3216692081725884177@marples.name> <20240730.091027.1008656135460861216.moto@kawasaki3.org> <fb6a9b28-7d52-42d8-a9e3-cd693b746bd2@denninger.net> <1910419702c.f8dcf010456961.6536659919669261420@marples.name> <2c1d5655-452c-4b7d-906d-8aa1affa64bd@denninger.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------U2LXmw4twz9BL1JekQM2VbeM
Content-Type: multipart/mixed; boundary="------------sKgol4KhVwR52g63lf2og41q";
protected-headers="v1"
From: Karl Denninger <karl@denninger.net>
To: freebsd-net@freebsd.org
Message-ID: <cd2a3579-257d-4de2-8467-94509cd9d03c@denninger.net>
Subject: Re: DHCPv6 IA_PD - how-to
References: <050440F8-B3D8-4B2C-85BD-D5C09C303037@distal.com>
<20240727.122108.862717899466090274.moto@kawasaki3.org>
<190fdf3e353.11351bb5e292296.3216692081725884177@marples.name>
<20240730.091027.1008656135460861216.moto@kawasaki3.org>
<fb6a9b28-7d52-42d8-a9e3-cd693b746bd2@denninger.net>
<1910419702c.f8dcf010456961.6536659919669261420@marples.name>
<2c1d5655-452c-4b7d-906d-8aa1affa64bd@denninger.net>
In-Reply-To: <2c1d5655-452c-4b7d-906d-8aa1affa64bd@denninger.net>
--------------sKgol4KhVwR52g63lf2og41q
Content-Type: multipart/alternative;
boundary="------------G0F0zHw7HOwLGeHdBKKOS9IH"
--------------G0F0zHw7HOwLGeHdBKKOS9IH
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64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--------------G0F0zHw7HOwLGeHdBKKOS9IH
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE html>
<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DUTF=
-8">
</head>
<body>
<p><br>
</p>
<div class=3D"moz-cite-prefix">On 7/30/2024 16:54, Karl Denninger
wrote:<br>
</div>
<blockquote type=3D"cite"
cite=3D"mid:2c1d5655-452c-4b7d-906d-8aa1affa64bd@denninger.net">
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DU=
TF-8">
<div class=3D"moz-cite-prefix">On 7/30/2024 10:44, Roy Marples
wrote:<br>
</div>
<blockquote type=3D"cite"
cite=3D"mid:1910419702c.f8dcf010456961.6536659919669261420@marples.name">=
<pre class=3D"moz-quote-pre" wrap=3D"">Don't use -T in the real w=
orld. It will exit once one address family completes.
You probably want the --noconfigure option.
Roy
</pre>
</blockquote>
<p>Ah, ok.</p>
<p>Well, next couple days I cannot screw with the network
configuration here as there are critical things that require I
not do something I may regret and might take a bit to
reverse.... :-)</p>
<p>However, I will attempt that as soon as I can (e.g. boot said
machine without external connectivity configured and see if
"--noconfigure" does what I'd expect it to do before turning it
loose and maybe having it make a mess.)</p>
<p>Will advise when I can screw with the machine again -- note
that I had to use ia_na 1; omitting the index (presumably
defaulting to zero) did not return a delegation but did get the
upstream route.=C2=A0 I DO like the fact that I can have an exit =
hook
setup that is "one script" that handles both -- right now, with
two programs, I have to deal with both separately as there are
things on that box that do have to be reconfigured or at least
restarted on an IP address change.<br>
</p>
<div class=3D"moz-signature">--</div>
</blockquote>
<p>I got a short window to play with this and have some odd results.<=
/p>
<p>If I start it after booting it appears to work.=C2=A0 But on boot =
I
get this during the boot sequence:</p>
<p><br>
</p>
<p>Starting dhcpcd.<br>
dhcpcd-10.0.8 starting<br>
igb0: link state changed to UP<br>
igb1: link state changed to UP<br>
no interfaces have a carrier<br>
Additional TCP/IP options: IPv6 CPE WANIF=3Digb0.<br>
Setting up harvesting:
[CALLOUT],[UMA],[FS_ATIME],SWI,INTERRUPT,NET_NG,[NET_ETHE<br>
R],NET_TUN,MOUSE,KEYBOARD,ATTACH,CACHED<br>
Feeding entropy: dd: /boot/entropy: Read-only file system<br>
.<br>
igb0: link state changed to DOWN<br>
Setting hostname: IpGw.Denninger.Net.<br>
ELF ldconfig path: /lib /usr/lib /usr/local/lib
/usr/local/lib/ipsec /usr/local/<br>
lib/perl5/5.36/mach/CORE<br>
32-bit compatibility ldconfig path: /usr/lib32 /usr/lib32<br>
lo0: link state changed to UP<br>
igb1: link state changed to DOWN<br>
Starting Network: lo0 igb0 igb1 enc0.<br>
igb0: link state changed to UP<br>
</p>
<p>Which would be ok EXCEPT all I get is an IPv4 address and its not
repeatable either -- which it IS using DHCP provided by the system
(that is, I RARELY get a different one -- with dhcpcd I ALWAYS get
a different one.=C2=A0 I'd prefer not to; obviously if I must then =
I
must, but it appears dhcpcd is not maintaining any sort of
requested ID and thus even if the server CAN give me the same IP,
it doesn't.)</p>
<p>But more troubling I don't get an IPv6 at all.=C2=A0 The reason
appears to be that the default route doesn't get populated off the
other end, and I note that "ACCEPT_RTADV" is NOT there -- and
neither is "AUTO_LINKLOCAL".=C2=A0 If I stop it from
/usr/local/etc/rc.d with "dhcpcd stop" and then "dhcpcd start" I
*do* get the IPv6 delegation.</p>
<p>Gotta put it back on the other setup for now, but any ideas would
be helpful - I can't take the connection offline for the next
couple of days, but can work on it over the weekend.<br>
</p>
<div class=3D"moz-signature">-- <br>
Karl Denninger<br>
<a href=3D"mailto:karl@denninger.net" class=3D"moz-txt-link-freetex=
t">karl@denninger.net</a><br>
<i>The Market Ticker</i><br>
<font size=3D"-2"><i>[S/MIME encrypted email preferred]</i></font><=
/div>
</body>
</html>
--------------G0F0zHw7HOwLGeHdBKKOS9IH--
--------------sKgol4KhVwR52g63lf2og41q--
--------------U2LXmw4twz9BL1JekQM2VbeM
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"
-----BEGIN PGP SIGNATURE-----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=bPNh
-----END PGP SIGNATURE-----
--------------U2LXmw4twz9BL1JekQM2VbeM--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cd2a3579-257d-4de2-8467-94509cd9d03c>