IPv6 Wan rtsold premission denied

CoinTos

Hi,

So this weekend I thought I would try out IPv6, as according to my provider's (Cogeco) website they support both v4 and v6 natively, and to also learn more about v6. My goal is to have my Xbox One dual stacked as test. So far I am off to a miserable as soon as I turn on DHCPv6 on the WAN I am provided with this error in my log:

Apr 14 12:02:28 rtsold 91099 <sendpacket>sendmsg on igb0: Permission denied
Apr 14 12:02:32 rtsold 91099 <sendpacket>sendmsg on igb0: Permission denied

I have searched around the forum, watch some tutorials, read the man file on rtsold and I can seem to find/figure out what would cause the permission denied.

Anybody come across this or have a direction I should look in?</sendpacket></sendpacket>

JKnott

Post your WAN and LAN configuration.

CoinTos

WAN igb0:
DHCP and DHCP6
Defaults for both them expect i changed 64 to 56 on DHCP6
Block private and Bogon is enabled

LAN is a router on a stick setup.
LAN proper is management due to Ubiquiti Unfi equipment.

LAN igb1:
|- VLAN11 - wired lan (has the xbox on it)
|- VLAN31 - wireless
|- VLAN41 - guest wireless
Everything is defaults for Static IPv4 on each interface except IPv4 address. Haven't moved on to Track Interface yet since i couldn't even pull an IPv6 address for the WAN itself and found the permission error.

JKnott

Take a capture of the configuration so that we can see exactly what you have.

CoinTos

Sorry to sound like an idiot but by configuration do you mean screenshot of the interfaces etc or is there something that provide a summary of the configuration that would be more helpful?

On a sidenote because I have been fiddling with it:
If I turn 'Do not wait for RA' on, I no longer the rtsold error but an error from the DHCP log.
Apr 14 16:48:46 dhcp6c 93655 failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 14 16:48:46 dhcp6c 93655 failed initialize control message authentication
Apr 14 16:48:46 dhcp6c 93655 skip opening control port
Apr 14 16:48:47 dhcp6c 93862 Sending Solicit
Apr 14 16:48:47 dhcp6c 93862 transmit failed: Permission denied

Thanks again for taking the time to look at this thread JKnott.

JKnott

Just post a screen capture.  It's hard to know what your problem is, if we don't know your configuration.

CoinTos

Ok, here's a screenshot of my dashboard.

JKnott

What we need are the WAN and LAN interfaces.  That's where the configuration info is.

CoinTos

My apologies for the previous mix up on my part, I have attached the screenshots requested. Thanks.

JKnott

Well, for starters, you don't appear to have IPv6 enabled on the LAN side.
In IPv6 configuration type, select Track Interface.  After you do that, you'll see some more IPv6 stuff.
Under Track IPv6 Interface, for IPv6 Interface, select WAN and Prefix ID 0,  I see you've done that on VLAN11.  When you use more than 1 /64, you have to choose a different prefix ID.  With a /56 prefix, the range is 0-ff.

On the WAN page, under DHCP6 Client configuration, select:
Use IPv4 connectivity as parent interface - Request a IPv6 prefix/information through the IPv4 connectivity link, Send IPv6 prefix hint - Send an IPv6 prefix hint to indicate the desired prefix size for delegation
Do not wait for a RA - Required by some ISPs, especially those not using PPPoE
Do not allow PD/Address release - dhcp6c will send a release to the ISP on exit, some ISPs then release the allocated address or prefix. This option prevents that signal ever being sent

The above works with Rogers.  I assume it will also work with Cogeco.

BTW, I see you have 3 VLANs.  It's best to get the main LAN up first, to make sure everything is working, then add VLANs, following the LAN as an example, but choosing a different Prefix ID.

CoinTos

So I selected the options on the WAN, set the vlan11 back to none and tried the Track Interface settings on my main LAN (technically my management lan for my unifi equipment since they don't allow a vlan for management). I rebooted and I no longer receive a rtsold error in the main log but in the dhcp log i receive the following:

Apr 14 23:12:01 dhcp6c 42309 failed to open /usr/local/etc/dhcp6cctlkey: No such file or directory
Apr 14 23:12:01 dhcp6c 42309 failed initialize control message authentication
Apr 14 23:12:01 dhcp6c 42309 skip opening control port
Apr 14 23:12:01 dhcp6c 42491 Sending Solicit
Apr 14 23:12:01 dhcp6c 42491 transmit failed: Permission denied
Apr 14 23:12:03 dhcp6c 42491 Sending Solicit
Apr 14 23:12:03 dhcp6c 42491 transmit failed: Permission denied
Apr 14 23:12:05 dhcp6c 42491 Sending Solicit
Apr 14 23:12:05 dhcp6c 42491 transmit failed: Permission denied
Apr 14 23:12:09 dhcp6c 42491 Sending Solicit
Apr 14 23:12:09 dhcp6c 42491 transmit failed: Permission denied
Apr 14 23:12:17 dhcp6c 42491 Sending Solicit
Apr 14 23:12:17 dhcp6c 42491 transmit failed: Permission denied
Apr 14 23:12:33 dhcp6c 42491 Sending Solicit
Apr 14 23:12:33 dhcp6c 42491 transmit failed: Permission denied

As per your guidance I don't plan to add the vlans and set different prefix til i figure out the main so they are all set to none for IPv6 Configuration Type.

Edit:

If I go into System –> Advance --> Networking and check All IPv6 traffic will be blocked by the firewall unless this box is checked. It works. So I am guessing something firewall related I screwed up on somewhere.

JKnott

So I am guessing something firewall related I screwed up on somewhere.

One thing I've often found is it's better to start from scratch, as something might have been set that shouldn't have been.  Also, as I mentioned, keep things simple at first, to get it going, then go from there.