On 1/17/11 11:58 AM, Jim Blake wrote: > > Routing looks OK, the client has a default IPv6 route to the Server, and > the server has a default static route out through my IPv6 provider.
In the unfolded dump you sent to me privately, the routing is not okay;
the 'local' table is virtually empty. With this local routing table, ir
is likely that you can't even ping6 the local IPv6 addresses from the
firewall itself.
Table local:
local ::1 via :: dev lo proto none metric 0 mtu 16436 advmss 16376
hoplimit 4294967295
ff00::/8 dev eth1 metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev eth0 metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
Curiously, the routing table in the folded dump that you forwarded with
your initial report looked better.
Table local:
local ::1 via :: dev lo proto none metric 0 mtu 16436 advmss 16376
hoplimit 4294967295
local 2001:470:1f09:ac6:: via :: dev lo proto none metric 0 mtu 16436
advmss 16376 hoplimit 4294967295
local 2001:470:1f09:ac6::2 via :: dev lo proto none metric 0 mtu 16436
advmss 16376 hoplimit 4294967295
local 2001:470:1f09:ac6:206:4fff:fe38:fa78 via :: dev lo proto none
metric 0 mtu 16436 advmss 16376 hoplimit 4294967295
local 2001:470:9363:: via :: dev lo proto none metric 0 mtu 16436
advmss 16376 hoplimit 4294967295
local 2001:470:9363::1 via :: dev lo proto none metric 0 mtu 16436
advmss 16376 hoplimit 4294967295
local fe80:: via :: dev lo proto none metric 0 mtu 16436 advmss 16376
hoplimit 4294967295
local fe80:: via :: dev lo proto none metric 0 mtu 16436 advmss 16376
hoplimit 4294967295
local fe80::206:4fff:fe38:fa78 via :: dev lo proto none metric 0 mtu
16436 advmss 16376 hoplimit 4294967295
local fe80::214:2aff:fe7f:7a8 via :: dev lo proto none metric 0 mtu
16436 advmss 16376 hoplimit 4294967295
ff02::1 via ff02::1 dev eth1 metric 0
cache mtu 1500 advmss 1440 hoplimit 4294967295
ff02::1 via ff02::1 dev eth0 metric 0
cache mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev eth0 metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
ff00::/8 dev eth1 metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
I have seen the local routing table get messed up like this but only
when running the Lenny vserver kernel; happens when stopping/starting
vservers. Don't know how it happens running a stock kernel.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
