[Bug 739215] New: No IPv6 link local on one NIC openSUSE 11.3 firewall
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c0 Summary: No IPv6 link local on one NIC openSUSE 11.3 firewall Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: i686 OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: james.knott@rogers.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:9.0) Gecko/20100101 Firefox/9.0 My firewall is built with openSUSE 11.3 and SUSE firewall running on an old computer. It generally works well, but I am not getting an IPv6 link local address on the NIC connected to my cable modem. If I boot that computer with a 11.3 live CD, that NIC gets an IPv6 link local address. I can also manually add an address in the link local range (starts wit FE80) and ping it. The NIC attached to my local network gets a link local address as expected, as well as an address on my IPv6 subnet. All NICs in an IPv6 enabled system should have a link local address, without exception. BTW, to get my IPv6 subnet, I currently use a 6in4 tunnel to a tunnel broker. However, my ISP is supposed to be making IPv6 available via cable modem shortly, which means I'll be needing IPv6 on that NIC. I get my tunnel from http://gogonet.gogo6.com. Reproducible: Always Steps to Reproduce: 1.Installed 11.3 on computer with more than one NIC 2.Install tunnel broker software - I doubt this has any effect on the problem, as it makes no difference whether or not I load the software. 3. Actual Results: There is no link local address on that NIC when booting the installed system. There is if I boot from a live CD. Expected Results: IPv6 link local address on both NICs. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c1 Marcus Meissner <meissner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO CC| |meissner@suse.com InfoProvider| |james.knott@rogers.com --- Comment #1 from Marcus Meissner <meissner@suse.com> 2012-01-03 07:29:57 UTC --- run and quote: ip addr show the ipv6 link local address is and should actually assigned by default from the kernel. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c2 James Knott <james.knott@rogers.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|james.knott@rogers.com | --- Comment #2 from James Knott <james.knott@rogers.com> 2012-01-03 12:52:55 UTC --- 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo inet 127.0.0.2/8 brd 127.255.255.255 scope host secondary lo inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000 link/ether 00:0f:b5:44:71:87 brd ff:ff:ff:ff:ff:ff inet 99.229.214.39/23 brd 255.255.255.255 scope global eth0 3: eth1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen 1000 link/ether 00:0f:b5:42:b6:9c brd ff:ff:ff:ff:ff:ff 4: eth2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000 link/ether 00:02:a5:7b:d9:08 brd ff:ff:ff:ff:ff:ff inet 172.16.1.1/24 brd 172.16.1.255 scope global eth2 inet6 2001:5c0:1108:1234::1/64 scope global valid_lft forever preferred_lft forever inet6 fe80::202:a5ff:fe7b:d908/64 scope link valid_lft forever preferred_lft forever 5: sit0: <NOARP> mtu 1480 qdisc noop state DOWN link/sit 0.0.0.0 brd 0.0.0.0 10: sit1: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1280 qdisc noqueue state UNKNOWN link/sit 0.0.0.0 peer 64.86.88.116 inet6 2001:5c0:1000:b::1234/128 scope global valid_lft forever preferred_lft forever inet6 fe80::ac10:101/64 scope link valid_lft forever preferred_lft forever inet6 fe80::63e5:d627/64 scope link valid_lft forever preferred_lft forever I have disguised my public IPv6 addresses. Eth1 is not in use. I am aware that the link local address is supposed to be there by default, but it's not on eth0 and, IIRC, wasn't on eth1 when it was in use. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c3 --- Comment #3 from James Knott <james.knott@rogers.com> 2012-01-04 18:23:35 UTC --- I have found that if I configure that interface for static IPv4 address, then I get a link local IPv6 address. This is a configuration fault, as the link local address should always be there when IPv6 is enabled. This will make openSUSE useless for obtaining IPv6 from an ISP, when the IPv4 address is obtained via DHCP. Looks like someone goofed big time! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c4 kk zhang <kkzhang@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED CC| |kkzhang@novell.com Resolution| |NORESPONSE --- Comment #4 from kk zhang <kkzhang@novell.com> 2012-03-09 07:29:53 UTC --- Long time no response.So closed.Feel free to reopen it.Thanks. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c5 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |REOPENED CC| |jengelh@medozas.de Component|Basesystem |Network Resolution|NORESPONSE | Product|openSUSE 11.3 |openSUSE 11.4 Target Milestone|--- |Final --- Comment #5 from Jan Engelhardt <jengelh@medozas.de> 2012-03-10 10:48:07 UTC --- This is also observed on an 11.4. If ifcfg-eth0 has STARTMODE=onboot BOOTPROTO=dhcp, the fe80: IPv6 address that is normally added by the kernel on `ip link dev eth0 set up` is removed somewhere flushed. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c kk zhang <kkzhang@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.pr |bili@suse.com |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c6 --- Comment #6 from James Knott <james.knott@rogers.com> 2012-04-01 11:49:53 UTC --- This issue should not be closed until it's resolved. It is a significant fault that will make it impossible to use IPv6 in many situations. Ignoring a problem does not make it go away. My ISP is supposed to be offering IPv6 in the not too distant future and this bug will mean I will not be able to use it. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c Andreas Jaeger <aj@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bili@suse.com |mt@suse.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c Andreas Jaeger <aj@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|No IPv6 link local on one |No IPv6 link local on one |NIC openSUSE 11.3 firewall |NIC openSUSE firewall -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
From my experience, this is only an issue when setting BOOTPROTO='dhcp'. In
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c7 Michael Buchau <mike@m-buchau.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mike@m-buchau.de --- Comment #7 from Michael Buchau <mike@m-buchau.de> 2012-06-16 13:29:04 UTC --- this case both DHCPv4 and DHCPv6 clients are activated and no stateless address autoconfiguration takes place. Set BOOTPROTO='dhcp4' when you only have DHCPv4 on the link and all is well. Nevertheless, this should not influence the link-local address (fe80:...) which always has to be configured by default. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c8 --- Comment #8 from James Knott <james.knott@rogers.com> 2012-06-16 18:26:58 UTC --- Quite so. Most people get their IPv4 address via DHCP. With this problem, as they do not have a link local address, they will never be able to get an IPv6 address on that interface. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c9 --- Comment #9 from Marius Tomaschewski <mt@suse.com> 2012-06-19 14:37:35 UTC --- Created an attachment (id=495400) --> (http://bugzilla.novell.com/attachment.cgi?id=495400) Test output from 11.4 -- works for me I guess this is something about sysctl [disable_ipv6=1 set for eth0], not a flush; please attach the output of "sysctl net.ipv6". The dhcp client (dhclient) makes a flush, but limited to "scope global": ip -6 addr flush dev eth0 scope global permanent that should not remove the "scope local" fe80 addresses. I've installed a fresh 11.4 + updates [11.3 is EOL and will be not fixed] and retested it today. Attached file is showing, that autoconf works here even dhcp6 client is running. I were using dhcp-client here, but it works for me with dhcp6c as well. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c10 --- Comment #10 from Marius Tomaschewski <mt@suse.com> 2012-06-19 14:39:54 UTC --- Created an attachment (id=495401) --> (http://bugzilla.novell.com/attachment.cgi?id=495401) My sysctl net.ipv6 output (default settings) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c11 Marius Tomaschewski <mt@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO InfoProvider| |james.knott@rogers.com --- Comment #11 from Marius Tomaschewski <mt@suse.com> 2012-06-19 14:48:04 UTC --- James, would you install "supportutils", execute "supportconfig" and attach the resulting file please? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c12 --- Comment #12 from Marius Tomaschewski <mt@suse.com> 2012-06-19 14:53:36 UTC --- BTW: Please note, that 11.3 is End-Of-Life -> use 11.4 + updates. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c13 --- Comment #13 from Marius Tomaschewski <mt@suse.com> 2012-06-19 15:01:34 UTC --- And... which tunnel broker software are you using? [Freenet6 client I guess; don't know where to download it without account] Does it work when you disable it and reboot? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c14 --- Comment #14 from James Knott <james.knott@rogers.com> 2012-06-19 16:28:16 UTC --- Created an attachment (id=495417) --> (http://bugzilla.novell.com/attachment.cgi?id=495417) Output of sysctl net.ipv6 sysctl output attached -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c15 --- Comment #15 from James Knott <james.knott@rogers.com> 2012-06-19 16:45:02 UTC --- Created an attachment (id=495422) --> (http://bugzilla.novell.com/attachment.cgi?id=495422) nts_firewall_120619_1234.tbz ts_firewall_120619_1234.tbz -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c16 James Knott <james.knott@rogers.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |REOPENED InfoProvider|james.knott@rogers.com | --- Comment #16 from James Knott <james.knott@rogers.com> 2012-06-19 16:46:09 UTC --- (In reply to comment #12)
BTW: Please note, that 11.3 is End-Of-Life -> use 11.4 + updates.
I upgraded to 11.4 a few weeks ago. I updated over existing 11.3, rather than fresh install. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c17 --- Comment #17 from James Knott <james.knott@rogers.com> 2012-06-19 16:53:28 UTC --- (In reply to comment #13)
And... which tunnel broker software are you using? [Freenet6 client I guess; don't know where to download it without account] Does it work when you disable it and reboot?
I obtained it from the gogonet site. If you want, I can provide the Linux package. You should be able to use it in anonymous mode without an account. In anonymous mode, you only get a single non-static address. If you create an account, you get a static address and you can also configure for a subnet. However, this problem only exists on the interface that's configured for DHCP. If manual config, I get the link local address. I use after.local to start the tunnel. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c18 --- Comment #18 from Marius Tomaschewski <mt@suse.com> 2012-06-20 11:40:34 UTC --- On my host, I still have the fe80 address on the interface, also when I enable forwarding and start dhcp6c client (as on your system). There is no global IPv6 address any more on the interface, but this is OK, as forwarding=1 disables autoconf it in the kernel. So basically the major difference is the tunnel software and because of the configuration on the machine, I guess it explicitly removes the link local address from eth0 (so v6 traffic / RAs comming from there do not disturb): When I see it correctly, you're getting IPv4 address via dhcp at eth0 and start the gogoc on this interface. The gogoc client creates an automatic sit tunnel (sit0 + sit1) with the IPv4 address you've got via dhcp as source (99.240.52.127:56113->64.86.88.116:tsp). Further, the gogoc starts radvd on eth2 to serve your network with the first (/64) network from the prefix delegated to you. Please change to BOOTPROTO='dhcp4' in ifcfg-eth0 and reboot -- I think, there is still no fe80 address on eth0 the interface. [You can change back to BOOTPROTO='dhcp' after and call "ifup-dhcp eth0" to start it later when you like] BTW: You can also try to use ISC dhcp... install dhcp-client and set DHCLIENT6_BIN=dhclient6 in /etc/sysconfig/network/dhcp. The commands used by this client are in /sbin/dhclient-script then. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c19 --- Comment #19 from James Knott <james.knott@rogers.com> 2012-06-20 14:52:06 UTC --- I set eth0 to static address and as expected I now have a link local address. However, I already knew that would happen, as I had tried that before, as I mentioned in comment #3. Regardless, it should make no difference whether static or DHCP is used, particularly since most people get their IPv4 address via DHCP. Also, I have tried running DHCP without the gogo6 client running and still do not get an IPv6 link local address, so the client appears to have no effect on this. Further, that client is not started on that interface. it simply creates IPv4 packets from IPv6 and routes it as appropriate. It uses eth0, as that is the default route. If the DHCP client is removing IPv6 from that interface, then that's clearly where the problem is. It should never, ever do that. Bottom line: There is an IPv6 link local address with static address, but not DHCP. Running the gogo6 client has no effect on this. Therefore,the problem lies with the DHCP client and this *MUST* be fixed or there will be a lot of people who will be unable to run IPv6 when provided by their ISP. I have sent you the gogo6 client package via email. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c20 Marius Tomaschewski <mt@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |WORKSFORME --- Comment #20 from Marius Tomaschewski <mt@suse.com> 2012-09-28 12:49:13 UTC --- I guess ./gogoc-tsp/template/linux.sh disables it or flushes. I was unable to try out the gogoc. There are some calls like "grep inet6 | del". I were unable to reproduce it in all my tests - DHCPv6 works fine on all my machines / my network and for many other users too. Make sure you have installed all updates -- there were a flush&down order bug in sysconfig in the past. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c21 --- Comment #21 from Marius Tomaschewski <mt@suse.com> 2012-09-28 12:56:07 UTC --- you may also change to use dhcp-client (DHCLIENT_BIN="dhclient", DHCLIENT6_BIN="dhclient6"). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c22 --- Comment #22 from James Knott <james.knott@rogers.com> 2012-09-28 14:12:26 UTC --- (In reply to comment #20)
I guess ./gogoc-tsp/template/linux.sh disables it or flushes. I was unable to try out the gogoc. There are some calls like "grep inet6 | del".
I were unable to reproduce it in all my tests - DHCPv6 works fine on all my machines / my network and for many other users too.
Make sure you have installed all updates -- there were a flush&down order bug in sysconfig in the past.
Do you have DHCP or static config for IPv4? The problem only occurs with DHCP. Given that I don't even get a link local IPv6 address, there's no way DHCP6 is going to work. All other interfaces have IPv6 addresses. None of them use DHCP for IPv4. I keep my system up to date and the problem still remains. BTW, on IPv6, you generally don't use DHCP to get an address, though that is an option. You'd normally use router advertisements to get the address and DHCP6 to pick up other addresses such as DNS, NTP server etc. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c23 --- Comment #23 from James Knott <james.knott@rogers.com> 2012-09-28 14:13:53 UTC --- Forgot to mention, my firewall has since been upgraded to 11.4, but the problem remains. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c24 --- Comment #24 from James Knott <james.knott@rogers.com> 2012-09-28 14:22:40 UTC --- (In reply to comment #20)
I were unable to reproduce it in all my tests - DHCPv6 works fine on all my machines / my network and for many other users too.
Is your system configured as a router? My problem exists only on my firewall/router. It does not occur on my notebook computer, which also used DHCP for IPv4. As I mentioned above, configuring a static IPv4 address for that interface allows IPv6 to work. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739215 https://bugzilla.novell.com/show_bug.cgi?id=739215#c25 --- Comment #25 from James Knott <james.knott@rogers.com> 2013-05-09 20:36:47 UTC --- This problem is now apparently cleared with 12.3. I do not know when it was corrected. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com