You are not logged in.

#1 2016-03-31 01:08:29

smpolymen
Member
Registered: 2010-03-21
Posts: 12

IPV6 VLANs and systemd-networkd: Wrong VLAN getting RAs?

I am trying to set up IPv6 on two VLANs on a single interface. One VLAN is completely private to my internal network (VLAN 15, no internet) and the other does have an internet connection (VLAN 20).

The issue I am seeing is that both interfaces get all the addresses, internet IPv6 address and the same "private" IPv6 addresses. For example:
fd47:15 should be on VLAN 15
fd47:20 should be on VLAN 20 and
2600: should be on VLAN 20

3: V15@eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000                                                                                                                                                                                                                                                                                                                                                                                       
    inet6 fd47:15::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                                         
       valid_lft 2591980sec preferred_lft 604780sec                                                                                                                                                                                                                            
    inet6 fd47:20::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                                         
       valid_lft 2591955sec preferred_lft 604755sec                                                                                                                                                                                                                            
    inet6 2600::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                             
       valid_lft 2591955sec preferred_lft 604755sec                                                                                                                                                                                                                                                                                                                                                                                                                                                          
4: V20@eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000                                                                                                                                                                                                                                                                                                                                                                                                   
    inet6 fd47:15::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                                         
       valid_lft 2591980sec preferred_lft 604780sec                                                                                                                                                                                                                            
    inet6 fd47:20::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                                         
       valid_lft 2591955sec preferred_lft 604755sec                                                                                                                                                                                                                            
    inet6 2600::15/64 scope global mngtmpaddr noprefixroute dynamic                                                                                                                                                                                             
       valid_lft 2591955sec preferred_lft 604755sec                                                                                                                                                                                                                                

The strangest thing is that when I run wireshark, interface V15 is only getting Router Advertisements for fd47:15 and interface V20 is only getting Router Advertisements for fd47:20 and 2600, so my upstream router is working correctly and is telling this device exactly what it needs to configure as I intend. My config in the arch box seems to be what I intend, so I don't know if this is maybe a bug. Also if I disable RAs completely on the upstream router VLAN 15, interface V15 recieves NO RAs but still configures the VLAN 20 prefixes. Has anyone seen anything like this? 

I did see this, but it does not seem to be the same issue: https://bbs.archlinux.org/viewtopic.php?id=163737


Here are my config files for reference:

#eno1.network
[Match]                                                                                                                                                                                                                                                                        
Name=eno1                                                                                                                                                                                                                                                                      
                                                                                                                                                                                                                                                                               
[Link]                                                                                                                                                                                                                                                                         
MTUBytes=4064                                                                                                                                                                                                                                                                  
                                                                                                                                                                                                                                                                               
[Network]                                                                                                                                                                                                                                                                      
VLAN=V15                                                                                                                                                                                                                                                                       
VLAN=V20                                                                                                                                                                                                                                                                       
IPv6AcceptRouterAdvertisements=false                                                                                                                                                                                                                                           
DHCP=no         
#V20.network
[Match]                                                                                                                                                                                                                                                                        
Name=V20                                                                                                                                                                                                                                                                       
                                                                                                                                                                                                                                                                               
[Link]                                                                                                                                                                                                                                                                         
MTUBytes=4060                                                                                                                                                                                                                                                                  
                                                                                                                                                                                                                                                                               
[Network]                                                                                                                                                                                                                                                                      
IPv6Token=::15                                                                                                                                                                                                                                                                 
Address=192.168.20.15/24                                                                                                                                                                                                                                                       
Gateway=192.168.20.1                                                                                                                                                                                                                                                           
DNS=192.168.20.1                                                                                                                                                                                                                                                               
Domains=int.mydomain.com
#V20.netdev
[NetDev]                                                                                                                                                                                                                                                                       
Name=V20                                                                                                                                                                                                                                                                       
Kind=vlan                                                                                                                                                                                                                                                                      
                                                                                                                                                                                                                                                                               
[VLAN]                                                                                                                                                                                                                                                                         
Id=20    
#V15.network                                                                                                                                                                                                                                                                 
[Match]                                                                                                                                                                                                                                                                        
Name=V15                                                                                                                                                                                                                                                                       
                                                                                                                                                                                                                                                                               
[Link]                                                                                                                                                                                                                                                                         
MTUBytes=4060                                                                                                                                                                                                                                                                  
                                                                                                                                                                                                                                                                               
[Network]                                                                                                                                                                                                                                                                      
IPv6Token=::15                                                                                                                                                                                                                                                                 
Address=10.0.0.15/24                                                                                                                                                                                                                                                           
DNS=10.0.0.1                                                                                                                                                                                                                                                                   
Domains=prv.mydomain.com           
#V15.netdev
[NetDev]                                                                                                                                                                                                                                                                       
Name=V15                                                                                                                                                                                                                                                                       
Kind=vlan                                                                                                                                                                                                                                                                      
                                                                                                                                                                                                                                                                               
[VLAN]                                                                                                                                                                                                                                                                         
Id=15         

Last edited by smpolymen (2016-03-31 02:28:04)

Offline

#2 2016-04-03 18:05:52

smpolymen
Member
Registered: 2010-03-21
Posts: 12

Re: IPV6 VLANs and systemd-networkd: Wrong VLAN getting RAs?

When I get some time (hopefully within the next week) I will do some troubleshooting to narrow down the issue and file a bug. I will try other distros and see if it may be an issue with Arch's kernel defaults, or with systemd or some network helper, and will try with BSD to rule out any funky issues with my upstream router. I'll report back with my findings.

Offline

#3 2016-04-05 02:36:05

smpolymen
Member
Registered: 2010-03-21
Posts: 12

Re: IPV6 VLANs and systemd-networkd: Wrong VLAN getting RAs?

I did some testing and it seems this only happens in Arch. I guess I am going to file a bug here.

I tried:
-FreeBSD (for fun and to prove out my network)
-Linux Mint 17.3 (non-systemd-networkd config)
-Fedora 23 (systemd-networkd on another distro)

All worked as intended, (although Fedora has a weird issue with route selection.)

Offline

#4 2016-04-05 02:44:52

smpolymen
Member
Registered: 2010-03-21
Posts: 12

Re: IPV6 VLANs and systemd-networkd: Wrong VLAN getting RAs?

Haha, don't know how i missed it, but this is already an upstream bug: https://github.com/systemd/systemd/issues/2004

Offline

Board footer

Powered by FluxBB