From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
To: Mike Kazantsev <mk.fraggod@gmail.com>
Cc: netfilter@vger.kernel.org
Subject: Re: [SOLVED] Re: IPv6 forwarding to TAP-interface fails
Date: Wed, 23 Dec 2009 14:03:41 +0100 [thread overview]
Message-ID: <4B32152D.60003@plouf.fr.eu.org> (raw)
In-Reply-To: <20091221140952.63c607f5@malediction>
Mike Kazantsev a écrit :
>
> And here's the problem: no link-local address on the interface.
Good catch. I didn't notice it.
> With this address added (or rather preserved), router is able to send
> neighbor solicitation requests from it and everything works fine.
>
> Anyway, strange thing is that, apparently, VM on the other side is able
> to send these requests without link-local address, using global one
> instead:
[...]
> Guess older kernel (2.6.30.4) there is the cause of it, and that's also
> why it worked before with pretty much the same setup.
I observed that when sending a locally generated packet, Linux uses the
source address (which is one one of its own addresses) of the packet as
the source address in the neighbour solicitation, whereas when
forwarding a packet it uses the link-local address attached to the
output interface. So there may be trouble when forwarding a packet and
the output interface has no link-local address. The tcpdump trace in
your previous message shows a neighbour solicitation packet with
unspecified source address :
> IP6 :: > ff02::1:ff00:22: ICMP6, neighbor solicitation, who has 2001:470:1f0b:11de::22, length 24
This may explain the different results with pings from the LAN and from
the router, and also why VM does not have the problem even though it has
no link-local address.
prev parent reply other threads:[~2009-12-23 13:03 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-12-19 11:20 IPv6 forwarding to TAP-interface with ip6tables fails Mike Kazantsev
2009-12-19 14:09 ` Pascal Hambourg
2009-12-21 6:46 ` IPv6 forwarding to TAP-interface fails Mike Kazantsev
2009-12-21 9:09 ` [SOLVED] " Mike Kazantsev
2009-12-23 13:03 ` Pascal Hambourg [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4B32152D.60003@plouf.fr.eu.org \
--to=pascal.mail@plouf.fr.eu.org \
--cc=mk.fraggod@gmail.com \
--cc=netfilter@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.