V6 troubles
-
I've been trying to get v6 connectivity setup on my 2.1-rc0 box with limited success. I finally managed to bring the interface up but for some reason I still don't pass the tests at http://test-ipv6.com. I've also found that if I SSH into my box I don't get any echo replies using ping6 (I've tried ipv6.google.com and my "IPv6 Server Address", 2001:470:XXXX:XXXX::1 at HE).
My LAN clients are also not receiving leases form DHCPv6 but I'll worry about that after I get the tunnel up and running properly.
Here's my interface information:
*** Welcome to pfSense 2.1-RC0-pfSense (amd64) on sigmund *** CENTURYLINK (wan) -> pppoe0 -> v4/PPPoE: 75.XXX.XXX.XXX/32 LAN (lan) -> ue0 -> v4: 192.168.1.1/24 v6: 2001:470:XXXX:XXXX::1/64 V6 (opt1) -> bge0 -> v6: 2001:XXXX:XXXX:fc::2/64If it matters, I have the latest pfSense 2.1-rc0 installed to the hard drive of an amd64 Dell desktop.
If you need more information, logs or config info just let me know.
Thanks for the help.
–adam
-
Here's some log data. It's from just after a reboot (for some reason my webui quit responding, "Restart webConfigurator" didn't even help)
System:General
Jul 1 14:56:52 kernel: bge0: link state changed to DOWN
Jul 1 14:56:51 check_reload_status: Linkup starting bge0
Jul 1 14:56:52 sshd[8998]: Server listening on :: port 22.
Jul 1 14:56:52 sshd[8998]: Server listening on 0.0.0.0 port 22.
Jul 1 14:56:52 sshlockout[9219]: sshlockout/webConfigurator v3.0 starting up
Jul 1 14:56:53 php: rc.bootup: Starting 3gstats.php on device '' for interface 'wan'
Jul 1 14:56:54 check_reload_status: Linkup starting ue0
Jul 1 14:56:54 kernel: ue0: link state changed to DOWN
Jul 1 14:56:54 php: rc.bootup: The command '/sbin/ifconfig gif0 tunnel 216.218.226.238' returned exit code '1', the output was 'ifconfig: 'tunnel' requires 2 arguments'
Jul 1 14:56:54 php: rc.bootup: The command '/sbin/ifconfig gif0 inet6 2001:470:XXXX:XXXX::2 2001:470:XXXX:XXXX::1 prefixlen /64 ' returned exit code '1', the output was 'ifconfig: ioctl (SIOCAIFADDR): File exists'
Jul 1 14:56:54 kernel: ifa_add_loopback_route: insertion failed
Jul 1 14:56:54 php: rc.bootup: Resyncing OpenVPN instances.
Jul 1 14:56:54 check_reload_status: Linkup starting bge0
Jul 1 14:56:54 kernel: bge0: link state changed to UP
Jul 1 14:56:54 dhcpleases: Could not deliver signal HUP to process because its pidfile does not exist, No such file or directory.
Jul 1 14:56:54 kernel: pflog0: promiscuous mode enabled
Jul 1 14:56:54 php: rc.bootup: Could not find IPv4 gateway for interface (wan).
Jul 1 14:56:54 php: rc.bootup: Could not find IPv4 gateway for interface (wan).
Jul 1 14:56:54 php: rc.bootup: Could not find IPv6 gateway for interface(wan).
Jul 1 14:56:56 check_reload_status: Linkup starting ue0
Jul 1 14:56:56 kernel: ue0: link state changed to UP
Jul 1 14:56:58 php: rc.bootup: ROUTING: setting IPv6 default route to 2001:470:XXXX:XXXXc::1
Jul 1 14:56:58 dhcpleases: Could not deliver signal HUP to process because its pidfile does not exist, No such file or directory.
Jul 1 14:56:59 dhcpleases: kqueue error: unkown
Jul 1 14:56:59 check_reload_status: Updating all dyndns
Jul 1 14:56:59 php: rc.bootup: Could not find IPv6 gateway for interface(wan).
Jul 1 14:57:01 php: rc.newwanip: The command '/sbin/ifconfig gif0 inet6 2001:470:XXXX:XXXX::2 2001:470:XXXX:XXXX::1 prefixlen /64 ' returned exit code '1', the output was 'ifconfig: ioctl (SIOCAIFADDR): File exists'
Jul 1 14:57:01 kernel: ifa_add_loopback_route: insertion failed
Jul 1 14:57:01 php: rc.newwanip: ROUTING: setting default route to 207.225.84.49
Jul 1 14:57:02 php: rc.dyndns.update: phpDynDNS: updating cache file /conf/dyndns_wannamecheap'MYDOMAIN.com'0.cache: 71.XXX.XXX.149
Jul 1 14:57:02 php: rc.dyndns.update: phpDynDNS: (Success) IP Address Updated Successfully!
Jul 1 14:57:02 php: rc.newwanip: phpDynDNS (voxadam.com): No change in my IP address and/or 25 days has not passed. Not updating dynamic DNS entry.
Jul 1 14:57:04 php: rc.bootup: Creating rrd update script
Jul 1 14:57:04 syslogd: exiting on signal 15
Jul 1 14:57:05 syslogd: kernel boot file is /boot/kernel/kernel
Jul 1 14:57:05 php: rc.start_packages: Restarting/Starting all packages.
Jul 1 14:57:09 php: rc.newwanip: Resyncing OpenVPN instances for interface CENTURYLINK.
Jul 1 14:57:09 php: rc.newwanip: Creating rrd update script
Jul 1 14:57:11 php: rc.newwanip: pfSense package system has detected an ip change 75.XXX.XXX.132 -> 71.XXX.XXX.149 … Restarting packages.
Jul 1 14:57:11 check_reload_status: Starting packages
Jul 1 14:57:11 check_reload_status: Reloading filter
Jul 1 14:57:12 login: login on ttyv0 as root
Jul 1 14:57:12 sshlockout[94391]: sshlockout/webConfigurator v3.0 starting up
Jul 1 14:57:14 php: rc.start_packages: Restarting/Starting all packages.
Jul 1 14:57:14 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan).
Jul 1 14:57:23 check_reload_status: updating dyndns v6_HE_GW
Jul 1 14:57:23 check_reload_status: Restarting ipsec tunnels
Jul 1 14:57:23 check_reload_status: Restarting OpenVPN tunnels/interfaces
Jul 1 14:57:23 check_reload_status: Reloading filter
Jul 1 14:57:27 php: rc.filter_configure_sync: Could not find IPv6 gateway for interface(wan).System:Gateways
Jun 30 18:55:59 apinger: Starting Alarm Pinger, apinger(20195)
Jun 30 18:56:04 apinger: Exiting on signal 15.
Jun 30 18:56:05 apinger: Starting Alarm Pinger, apinger(41914)
Jun 30 18:56:15 apinger: ALARM: v6_HE_GW(2001:470:a:fc::1) *** down ***
Jun 30 23:57:36 apinger: Exiting on signal 15.
Jun 30 23:57:37 apinger: Starting Alarm Pinger, apinger(28438)
Jun 30 23:57:47 apinger: ALARM: v6_HE_GW(2001:470:a:fc::1) *** down ***
Jul 1 14:56:56 apinger: Starting Alarm Pinger, apinger(21026)
Jul 1 14:57:01 apinger: Exiting on signal 15.
Jul 1 14:57:02 apinger: Starting Alarm Pinger, apinger(43554)
Jul 1 14:57:13 apinger: ALARM: v6_HE_GW(2001:470:a:fc::1) *** down ***System:Routing
Jul 1 00:13:17 radvd[64572]: version 1.9.1 started
Jul 1 00:13:54 radvd[65161]: attempting to reread config file
Jul 1 00:13:54 radvd[65161]: resuming normal operation
Jul 1 00:23:45 radvd[65161]: attempting to reread config file
Jul 1 00:23:45 radvd[65161]: resuming normal operation
Jul 1 14:56:59 radvd[36771]: version 1.9.1 startedSystem:Resolver
Jul 1 14:56:59 dnsmasq[33459]: started, version 2.66 cachesize 10000
Jul 1 14:56:59 dnsmasq[33459]: compile time options: IPv6 GNU-getopt no-DBus i18n IDN DHCP DHCPv6 no-Lua TFTP no-conntrack no-ipset auth
Jul 1 14:56:59 dnsmasq[33459]: reading /etc/resolv.conf
Jul 1 14:56:59 dnsmasq[33459]: using nameserver 4.2.2.6#53
Jul 1 14:56:59 dnsmasq[33459]: using nameserver 8.8.4.4#53
Jul 1 14:56:59 dnsmasq[33459]: using nameserver 8.8.8.8#53
Jul 1 14:56:59 dnsmasq[33459]: ignoring nameserver 127.0.0.1 - local interface
Jul 1 14:56:59 dnsmasq[33459]: read /etc/hosts - 7 addresses
Jul 1 14:56:59 dnsmasq[33459]: read /etc/hosts - 7 addresses
Jul 1 14:56:59 dnsmasq[33459]: read /etc/hosts - 11 addresses
Jul 1 14:57:01 dnsmasq[33459]: reading /etc/resolv.conf
Jul 1 14:57:01 dnsmasq[33459]: using nameserver 4.2.2.6#53
Jul 1 14:57:01 dnsmasq[33459]: using nameserver 8.8.4.4#53
Jul 1 14:57:01 dnsmasq[33459]: using nameserver 8.8.8.8#53
Jul 1 14:57:01 dnsmasq[33459]: ignoring nameserver 127.0.0.1 - local interface
Jul 1 15:00:03 dnsmasq[33459]: read /etc/hosts - 11 addresses -
Hi Adam,
First of all review these instructions: http://doc.pfsense.org/index.php/Using_IPv6_on_2.1_with_a_Tunnel_Broker
These were quite useful for my installation and following them made my tunnel operational.
Also I see you are using the bge0 interface. This does look like a link aggregation interface. HE does use a GIF (Generic Tunnel Interface) tunnel. So for the V6 I would expect gif0 instead of bge0.
I hope this helps.
Best regards
Pendi -
+1 on that, need a tunnel iface for that with WAN as parent, not ethernet. The howto should get you started pretty quickly.