Hi Guys Any clues for this one ?
Thanks Claus -----Original Message----- From: List [mailto:[email protected]] On Behalf Of Claus@pfSense Sent: Friday, October 13, 2017 8:45 PM To: pfSense Support and Discussion Mailing List <[email protected]> Subject: [pfSense] NDP TTL jumps on WAN interface Hi When my firewall talks IPv6 to my uplink I see the following The firewall asks for MAC of my uplink and gets an answer 24.591703 XXXX:YYYY:0:6::99 XXXX:YYYY:0:6::1 ICMPv6 86 Neighbor Solicitation for XXXX:YYYY:0:6::1 from xx:xx:xx:e8:34:28 24.599421 XXXX:YYYY:0:46::1 XXXX:YYYY:0:6::99 ICMPv6 86 Neighbor Advertisement XXXX:YYYY:0:6::1 (rtr, sol, ovr) is at yy:yy:yy:00:02:06 Please note that the reply comes from another IPv6 address (on same router) than the one being asked for. In NDP tables (by refreshing fast) I notice that the TTL counts like below 24h00m00s 23h59m59s 23h59m58s 23h59m57s 23h59m56s 15s 14s : 1s expired 24h00m00s 23h59m59s : And so on Can anyone explain the TTL behavior ? And how I control it ? The router announcement from my router looks like this: Frame 31: 150 bytes on wire (1200 bits), 150 bytes captured (1200 bits) Internet Control Message Protocol v6 Type: Router Advertisement (134) Code: 0 Checksum: 0x7a53 [correct] [Checksum Status: Good] Cur hop limit: 64 Flags: 0x80 1... .... = Managed address configuration: Set .0.. .... = Other configuration: Not set ..0. .... = Home Agent: Not set ...0 0... = Prf (Default Router Preference): Medium (0) .... .0.. = Proxy: Not set .... ..0. = Reserved: 0 Router lifetime (s): 7200 Reachable time (ms): 1800000 Retrans timer (ms): 0 ICMPv6 Option (Source link-layer address : zz:zz:zz:e2:bb:20) Type: Source link-layer address (1) Length: 1 (8 bytes) Link-layer address: Router_e2:bb:20 (zz:zz:zz:e2:bb:20) ICMPv6 Option (MTU : 1500) Type: MTU (5) Length: 1 (8 bytes) Reserved MTU: 1500 ICMPv6 Option (Prefix information : XXXX:YYYY:0:46::/64) Type: Prefix information (3) Length: 4 (32 bytes) Prefix Length: 64 Flag: 0x80 1... .... = On-link flag(L): Set .0.. .... = Autonomous address-configuration flag(A): Not set ..0. .... = Router address flag(R): Not set ...0 0000 = Reserved: 0 Valid Lifetime: 7200 Preferred Lifetime: 3600 Reserved Prefix: XXXX:YYYY:0:46:: ICMPv6 Option (Prefix information : XXXX:YYYY:0:6::/64) Type: Prefix information (3) Length: 4 (32 bytes) Prefix Length: 64 Flag: 0x80 1... .... = On-link flag(L): Set .0.. .... = Autonomous address-configuration flag(A): Not set ..0. .... = Router address flag(R): Not set ...0 0000 = Reserved: 0 Valid Lifetime: 7200 Preferred Lifetime: 3600 Reserved Prefix: XXXX:YYYY:0:6:: Thanks Claus _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
