| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 29 May 2008 14:20:16 +0200 From: pomac@...or.com To: YOSHIFUJI Hideaki / 吉藤英明 <yoshfuji@...ux-ipv6.org> Cc: akpm@...ux-foundation.org, linux-kernel@...r.kernel.org, netdev@...r.kernel.org Subject: Re: [ipv6] Odd behaviour... On Thu, May 29, 2008 at 07:46:16PM +0900, YOSHIFUJI Hideaki / 吉藤英明 wrote: > In article <20080529100822.GF11812@...ac.netswarm.net> (at Thu, 29 May 2008 12:08:22 +0200), pomac@...or.com says: > > > On Thu, May 29, 2008 at 06:28:53PM +0900, YOSHIFUJI Hideaki / 吉藤英明 wrote: > > > In article <20080529084157.GD11812@...ac.netswarm.net> (at Thu, 29 May 2008 10:41:57 +0200), pomac@...or.com says: > > > > > > > On Thu, May 29, 2008 at 12:27:29AM -0700, Andrew Morton wrote: > > > > > On Tue, 27 May 2008 00:58:30 +0200 Ian Kumlien <pomac@...or.com> wrote: > > > > > > > > > > > Hi, > > > > > > > > > > > > I just recently acquired a new ipv6 tunnel since my two previous brokers > > > > > > has gone out of business. I now use hurricane electrics tunnel since i > > > > > > have really good ping times to it's node in Amsterdam. > > > > > > > > > > > > Anyways, i have setup a local network tunnel and enabled forwarding. > > > > > > > > > > > > After about 300 seconds, it all stops working. I have to disable and > > > > > > re-enable it on the firewall/router to get it working again. > > > > > > > > > > > > tcpdump shows the router/firewall doing odd things like: > > > > > > (i renamed my host to piv6) > > > > > > > > > > > > 00:48:14.294173 IP6 piv6 > igloo.stacken.kth.se: ICMP6, echo request, > > > > > > seq 321, length 64 > > > > > > > > > > > > 00:48:14.341288 IP6 igloo.stacken.kth.se > piv6: ICMP6, echo reply, seq > > > > > > 321, length 64 > > > > > > > > > > > > 00:48:14.341317 IP6 fe80::55e4:1b90 > igloo.stacken.kth.se: ICMP6, > > > > > > redirect, piv6 to piv6, length 160 > > > > > > > > > > > > 00:48:14.341332 IP6 igloo.stacken.kth.se > piv6: ICMP6, echo reply, seq > > > > > > 321, length 64 > > > > > > --- > > > > > > > > > > > > fe80::55e4::1b90 is the local ip of the ipv6 tunnel. > > > > > > (note: the packet never arrives at it's destination) > > > > > > > > > > > > Any ideas of what could be going wrong? > > > > > > > > > > (cc netdev - afaik linux-net is kind of dead) > > > > > > > > Thanks, i knew i missed something, -net was the one that was already in > > > > my email client so... =) > > > > > > > > > What kernel version are you running? > > > > > > > > The router/fw is running 2.6.25.1, the client is running 2.6.25.4 > > > > > > > > Any additional information i should provide? > > > > > > How do you assign the address? > > > > On the router/fw there is a sit tunnel thats started with 'ip'. > > > > The clients get their addresses by radvd which only uses a local > > interface on the router/fw... > > Please draw w a network topology figure. It's very basic... client -> router/fw -tap-tunnel-> -hurricane-electric-> internet. (the firewall/router is my normal ipv4 firewall but for ipv6 it acts as a router, thus the "router/fw" or "firewall/router". but, router/fw -tap-tunnel-> -hurricane->electric-> internet. always works, and outgoing communications always works. This is only a problem for incoming communications. > --yoshfuji -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists