relay mode does not work #37
Comments
|
Sure feel free to send me pcaps. |
|
Hi I am back. I made two pcaps. You can download them from https://onedrive.live.com/redir?resid=B1ADCE2F515F326%21336.
Let me know if you need additional information. Client information ( My router information: |
|
Same problem here. It's a 4MB TP-Link MR-13U so no iproute2 and no tcpdump. (Argh!)
Plus, I have these kernel params set, to let system use tempaddr by default (hiding MAC address from the IPv6 world): By examining |
|
I have noticed somethine interesting and hope it may help. My laptop has gotten ipv6 address with configuration of @zhou13 . but I could not ping a server at out side of router. but after I ping the server on the router, I could also ping it at my laptop. I'm not familiar with ipv6 protocal, so I could not explain it. But I hope it could help solving the problem. @zhou13 @hexchain maybe you could try to test it in your environment. @sbyx Thanks for your great job. |
|
This behavior is normal as the it does not involve relay operation. In my environment, the laptop and router can ping each other but laptop I On Tue, Mar 17, 2015 at 4:14 PM, huiyiqun notifications@github.com wrote:
|
|
@zhou13 I see the exact same thing: all my machines on the LAN have routable IPv6 addresses (derived from the one I get from my ISP) but from the LAN I cannot reach the WAN. |
|
Experienced the same problem. Looking for further information. |
|
Which version are you using? OpenWRT uses an outdated version of odhcpd that has an issue with ndp relay. See https://dev.openwrt.org/ticket/18341 |
|
@SebastianS90 I'm using the official version (2014-08-23-24452e1e3e9adfd9d8e183db1aa589f77727f5a7). I'm considering updating the version. |
|
I experience the same issue running openwrt trunk (own compilation) on x86 and wdr3800. Clients all get ipv6 global addresses but cannot ping past the router. One element I should add is that for some reason after turning relay on, both lan and wan interfaces in openwrt get the SAME ipv6 global address. Without relaying, the lan interface obviously does not get any. Maybe the wan and lan getting the same ipv6 address is part of the relaying magic (@sbyx could you let me know?). I have enables forwarding of ICMPv6 router-advertisment and neighbour-advertisment from wan to lan which is disabled by default in Openwrt but this did not help. @sbyx if you could confirm the rules required for INPUT from wan and FORWARD from wan to lan that could rule out firewall configuration issues. Configuration is correct as per below: config dhcp 'lan' config dhcp 'wan6' |
|
Any comments on the previous pcap? Should I provide something additionally? |
|
Hi, cat /etc/config/dhcp config dhcp 'wan6' From SSH into the router ping6 works fine My laptops get valid global IPv6 address from relay, but routing is not working. |
|
Could you share your firewall config? The icmpv6 lines are relevant. (sent from iphone)
|
|
Hi @zcecc22 cat /etc/config/firewall config rule config rule config rule config rule config rule config rule config rule config rule config rule config defaults config zone config zone config forwarding config include |
|
In my case, adding the following rules to Allow-ICMPv6-Forward was required: list icmp_type 'neighbour-solicitation' BR, (sent from iphone)
|
|
Hi @zcecc22 , I'm experiencing the same problem, adding those rules does not solve it. |
|
today I found that if I restart odhcpd after boot, everything will be ok |
|
It seems that upstream router just ignores all the neighbor advertisement my router sends...When I ping a computer in my LAN from a remote server, I get the following on my router: 00:55:14.453214 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 32) 2001:da8:207:e132::1 > ff02::1:ff02:f47c: [icmp6 sum ok] ICMP6, neighbor solicitation, length 32, who has 2001:da8:207:e132:3602:86ff:fe02:f47c But no echo reply is routed here.. |
|
I finally made clients get IPv6 addresses in relay mode. However after any client finishes dhcpv6 requests, the router is unable to make IPv6 connections any more. And no clients can make IPv6 connections either. 😢 |
|
I've encountered similar issue under SLAAC netowork, after observing the packets on br-lan and iface of wan, I noticed that the router only queried iface of wan about LAN device's address (neighbor solicitation), but not to br-lan. This means the router could not discover the LAN device on br-lan. So I checked the README and added: After restarting odhcpd and reconnect LAN devices, everything just works. However I still have no idea what external slave is. Maybe it is an necessary option, yet we neglect it because we don't understand the terminology. |
|
I have the same problem that I'm able to get an ipv6 address but cannot access to ipv6. Is there any solution? |
|
Same problem here config dnsmasq config dhcp 'lan' config dhcp 'wan' config dhcp wan6 config odhcpd 'odhcpd' root@OpenWrt:~# cat /etc/config/network config interface 'loopback' config globals 'globals' config interface 'lan' config interface 'wan' config interface 'wan6' config switch config switch_vlan root@OpenWrt:~# cat /etc/config/firewall config defaults config zone config zone config rule config rule config rule config rule config rule config rule config rule config include config rule config rule config redirect config rule config rule config forwarding Linux OpenWrt 3.18.23 #1 Sun Jan 31 18:39:35 CET 2016 mips GNU/Linux root@OpenWrt:~# ifconfig eth0 Link encap:Ethernet HWaddr 68:F7:28:6F:C9:EE eth1 Link encap:Ethernet HWaddr 30:B5:C2:C0:C5:A4 lo Link encap:Local Loopback wlan0 Link encap:Ethernet HWaddr 30:B5:C2:C0:C5:A4 root@OpenWrt:~# ping6 google.com [john@localhost ~] $ ping6 2001:67c:1220:c1a3:6af7:28ff:fe6f:c9ee [john@localhost ~] $ ping6 google.com please help |
|
@JohnyGemityg please try LEDE 17.01.2. |
|
I tried lede 17.01.2 , still broken.
…On terça, 19/09/2017, 21:46 Stijn Tintel ***@***.***> wrote:
@JohnyGemityg <https://github.com/johnygemityg> please try LEDE 17.01.2.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#37 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AAAWXXKaHgN6M2SXwgCPyTZuHrea6qzxks5skCg9gaJpZM4DnsWz>
.
|
|
@murix Then try a snapshot from master, and if it still doesn't work, make sure your ISP router actually supports DHCPv6 relay, by running tcpdump on the wan interface of the LEDE device. The ISP router at my parents' place in Belgium does not support it, it silently ignores the DHCPv6 relay packets. Instead, I am using just ndp and ra relay: Not ideal, as this is similar to proxy ARP, which imo is just nasty, but in my case it's the only option. |
|
@stintel I tried nightly build but still no result. IPv6 for downstream is broken. I can't able downstream ipv6 like ipv4. I deployed up to nine levels of Nat with IPv4. |
|
@murix Log an issue in flyspray (https://bugs.lede-project.org/) if this is not working on Lede snapshot. |
|
It works now. It looks like the problem was that the config should not be just in wan6 section but also in wan section. My current config. Small advice. After router reboot I have to reconnect lan interface (in Luci) to get an IPv6 address for router and then for PC. Thank you @stintel for a hint ;) |
|
Thanks dude @JohnyGemityg , but setting dhcpv6 to 'disabled' in wan6 will cause router having no v6 address. Set it back to |
Works for me to only use the wan section. The wan6 section wasn't there by default, but was mentioned in the wiki (https://openwrt.org/docs/user-guide/basic-ipv6-configuration#router_advertisement_dhcpv6 just updated). |
|
It works for me only at the time Openwrt router reboot, and it always fails at any other time. I do not know why. |
|
I still see this issue with OpenWrt 18.06.2 r7676-cddd7b4c77. Here is the odhcp version. My topology: Internet -> Ubiquiti USG -> Ubiquiti UAP -> (wlan0) OpenWrt (eth0) -> Client I followed all the suggestions, and workarounds mentioned here to no avail. Client successfully gets a IPv6 address. However, ping doesn't turn around. I did a When I did a |
|
Upgraded to The most important of all is to uninstall the default version of opkg remove dnsmasq
opkg install dnsmasq-dhcpv6I wonder this is the key point instead of There's no need to modify the other sections(like Then a |
|
I still met some problems for IPv6 in OpenWRT. |
|
Same problem, LAN devices can get global ipv6 addr but cannot ping any public ipv6 addrs. |
|
I have encountered the same problem. I'm doubt that the upstream switch (H3C/Huawei) has some compatibility issue with openwrt. However, when I |
# file: /etc/config/dhcp
config dhcp 'lan'
option interface 'lan'
option start '100'
option limit '150'
option leasetime '12h'
option dhcpv4 'server'
option ra 'relay'
list ra_flags 'none'
option dhcpv6 'relay'
option ndp 'relay'
config dhcp 'wan_ucas_ipv6'
option interface 'wan_ucas_ipv6'
option ignore '1'
option master '1'
option ra 'relay'
option dhcpv6 'relay'
option ndp 'relay'
list ra_flags 'none' |
My config worked fine until yesterday, but today it failed (I never modified it at all). I am confused that what causes the problem.
|
Surprisingly the problem was solved after I reboot my modem. so strange... |
and others
The relay mode does not work on my OpenWRT router. Devices on LAN can get inet6 addr but are unable to ping any public ipv6 address. By Googling odhcpcd and ipv6 relay, I find many similar problems but no one of them are solved. Therefore I think they are due to the bug of odhcpd rather than the configuration problem.
I think issue 15 and 25 are about the same problem but it is closed without actually solving it. I am glad to provide packet capture and other debug information if the developer is still interesting in solving this problem.
The text was updated successfully, but these errors were encountered: