On Sat, Feb 18, 2006 at 12:57:05PM +0100, Olivier Mehani wrote: > Hello list, > > I'm playing with IPv6 in 3.8 and came up to this strange problem. > > My IPv6 connectivity is given by a broker (xs26.net) and I have set up a gif > interface to use it (gif0): > > /etc/hostname.gif0 contains: > > tunnel SIS0IPv4 BROKERIPv4 > inet6 IPv6PREFIX::1 > !route add -inet6 default IPv6PREFIX::1 > > gif0: flags=8151<UP,POINTOPOINT,RUNNING,PROMISC,MULTICAST> mtu 1500 > groups: gif > physical address inet SIS0IPv4 --> BROKERIPv4 > inet6 fe80::202:6fff:fe21:ea79%gif0 -> prefixlen 64 scopeid 0x8 > inet6 IPv6PREFIX::1 -> prefixlen 64 > > The funny thing is that I _can_ ping a given machine. > > [EMAIL PROTECTED]:~$ ping6 DISTANTHOSTNAME > PING6(56=40+8+8 bytes) IPv6PREFIX::1 --> DISTANTHOSTIPv6 > 16 bytes from DISTANTHOSTIPv6, icmp_seq=0 hlim=53 time=207.974 ms > 16 bytes from DISTANTHOSTIPv6, icmp_seq=1 hlim=53 time=176.176 ms > 16 bytes from DISTANTHOSTIPv6, icmp_seq=2 hlim=53 time=241.964 ms > 16 bytes from DISTANTHOSTIPv6, icmp_seq=3 hlim=53 time=253.56 ms > ^C > --- zorglub.ssji.net ping6 statistics --- > 4 packets transmitted, 4 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev = 176.176/219.918/253.560/30.306 ms > > but I get a no route to host when trying to ssh to it > > [EMAIL PROTECTED]:~$ ssh -v6 DISTANTHOSTNAME > OpenSSH_4.1, OpenSSL 0.9.7g 11 Apr 2005 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: Connecting to DISTANTHOSTNAME [DISTANTHOSTIPv6] port 22. > debug1: connect to address DISTANTHOSTIPv6 port 22: No route to host > ssh: connect to host DISTANTHOSTNAME port 22: No route to host > > (/etc/ssh/ssh_config reads $OpenBSD: ssh_config,v 1.20 2005/01/28 > 09:45:53 dtucker Exp $ and has not been modified) > > To be even weirder, the machines behind the router, which get IPv6 in the same > prefix manage to ssh to the very same host using IPv6 through the router. > > Does somebody have some ideas/solutions about this problem ? > > Useful information (note the "illegal prefix len" in the output of route for > ::/4, which seems to be what "default" resolves to when route -add'ing) > > [EMAIL PROTECTED]:~$ uname -a > OpenBSD mudrublic.narf.ssji.net 3.8 GENERIC#224 i386 > [EMAIL PROTECTED]:~$ route -n show -inet6 > Routing tables > > Internet6: > Destination Gateway Flags > Refs > Use Mtu Interface > route: illegal prefixlen > ::/4 IPv6PREFIX::1 UGS 0 > 1591 - gif0 > ::1 ::1 UH > 0 > 0 33224 lo0 > IPv6PREFIX::/64 link#8 UC 0 > 0 - gif0 > IPv6PREFIX::1 link#8 UHLc 0 > 12 - lo0 > IPv6PREFIX:100::/64 link#3 UC 0 > 0 - sis1 > IPv6PREFIX:100::1 00:00:24:c4:22:5d UHLc 0 > 0 - lo0 > IPv6PREFIX:101::/64 link#1 UC 0 > 0 - ath0 > IPv6PREFIX:101::1 00:02:6f:21:ea:79 UHLc 0 > 0 - lo0 > IPv6PREFIX:101:211:95ff:febb:812f 00:11:95:bb:81:2f UHLc > 0 1857 - ath0 > IPv6PREFIX:101:230:65ff:fe0f:2795 00:30:65:0f:27:95 UHLc > 0 2 - ath0 > fe80::%ath0/64 link#1 UC > 0 > 0 - ath0 > fe80::202:6fff:fe21:ea79%ath0 00:02:6f:21:ea:79 UHLc > 0 > 0 - lo0 > fe80::211:95ff:febb:812f%ath0 00:11:95:bb:81:2f UHLc > 0 > 109 - ath0 > fe80::230:65ff:fe0f:2795%ath0 00:30:65:0f:27:95 UHLc > 0 > 4 - ath0 > fe80::%sis0/64 link#2 UC > 0 > 0 - sis0 > fe80::%sis1/64 link#3 UC > 0 > 0 - sis1 > fe80::%lo0/64 fe80::1%lo0 U > 0 > 0 - lo0 > fe80::%gif0 link#8 UHLc > 0 > 0 - gif0 > fe80::%gif0/64 link#8 UC > 0 > 0 - gif0 > fe80::202:6fff:fe21:ea79%gif0 link#8 UHLc > 0 > 0 - lo0 > fe80::260:8ff:fe34:275f%gif0 link#8 UHLc > 0 > 606 - gif0 > ff01::/32 ::1 UC > 0 > 0 - lo0 > ff02::%ath0/32 link#1 UC > 0 > 0 - ath0 > ff02::%sis0/32 link#2 UC > 0 > 0 - sis0 > ff02::%sis1/32 link#3 UC > 0 > 0 - sis1 > ff02::%lo0/32 ::1 UC > 0 > 0 - lo0 > ff02::%gif0/32 link#8 UC > 0 > 0 - gif0 > > dmesg not included as it does not seem to be relevant for this problem, > correct me if I'm wrong (; > > thanks > > -- > Olivier Mehani <[EMAIL PROTECTED]> >
Hello - What do your PF rules look like? Where is your ipv6 default route? - David
