OpenVZ Forum


Home » General » Support » IPv6 native strangeness
IPv6 native strangeness [message #33822] Wed, 12 November 2008 23:59 Go to next message
broquea is currently offline  broquea
Messages: 20
Registered: December 2007
Junior Member
I'm BACK! Smile

So lets start with what the HN is etc:

Ubuntu 8.04 64bit server
Kernel = 2.6.24-21-openvz
{EDIT} Forgot to mention I use VENET not VETH interfaces on all OpenVZ machines involved

Symptoms:
Using native IPv6, I cannot allocate addresses out of the same /64 I use on the HN. I find that I have to route a second /64 allocation through the first in order for the VEs to get native connectivity. This smells like IPv6 forwarding is not working correctly, except it does work if there is a static route in place on the router. This is not the case with my CentOS 5.2 based OpenVZ machines, only Ubuntu.

Meaning:
2001:470:0:c8::1/64 is on the router's interface
2001:470:0:c8::2/64 is configured on eth0 on the server
sysctl is configured correctly to allow IPv6 packet forwarding

2001:470:0:c8::3/64 (through the end of the range) cannot be reached when configured on a VE on the Ubuntu system. It can on CentOS.

However when I statically route a second allocation (in this case 2001:470:0:c9::/64) through 2001:470:0:c8::2/64 on my router and I assign 2001:470:0:c9::1/64 (through the end of the range) to a VE, IPv6 forwarding seems to work without issue.

Notes:
Funny enough, and by no means am I comparing one virtualization platform to another, but another Ubuntu 8.04 64bit machine running Xen and a Xen kernel (2.6.24-21-xen) this bridging for IPv6 seems to work without the need for any static routes.

For reference the CentOS 5.2 OpenVZ machine I have running uses kernel 2.6.18-92.1.13.el5.028stab059.3. On THIS OpenVZ machine, I can allocate addresses out of a single /64 for the VEs, and not resort to statically routing allocations through each other.

THE QUESTION:
I'm looking for any insight into why the current Ubuntu kernel for OpenVZ behaves differently from either an older OpenVZ kernel, or a same rev Xen kernel with regards to IPv6 packet forwarding and bridging.

[Updated on: Thu, 13 November 2008 01:19]

Report message to a moderator

Re: IPv6 native strangeness [message #34192 is a reply to message #33822] Fri, 12 December 2008 06:46 Go to previous messageGo to next message
elronxenu is currently offline  elronxenu
Messages: 5
Registered: November 2007
Junior Member
Nobody replied?

I found that OpenVZ does not enable proxy Neighbour Discovery for VEs. I'm using Debian lenny.

To make it work, i.e. to make my ipv6-enabled VEs reachable from my ipv6 router and/or the public internet, I had to do the following on the HN:

echo 1 > /proc/sys/net/ipv6/conf/all/proxy_ndp
ip -6 neigh add proxy 2001:xxxx:xxxx:xxxx::aa01 dev eth0
ip -6 neigh add proxy 2001:xxxx:xxxx:xxxx::aa02 dev eth0
ip -6 neigh add proxy 2001:xxxx:xxxx:xxxx::aa03 dev eth0
etc ...

It might be necessary to also do:
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding

I don't know why vzctl does not do this automatically like it does for ipv4.

Report message to a moderator

Re: IPv6 native strangeness [message #50312 is a reply to message #34192] Tue, 13 August 2013 18:19 Go to previous message
semir is currently offline  semir
Messages: 13
Registered: April 2013
Location: Magyarország
Junior Member
This one solved the same issue for me on centos 6.4.
Sorry for resurrecting the thread, but it was really useful.

Thanks!

Report message to a moderator

Previous Topic: limit traffic
Next Topic: Network configuration problem with NAT and OpenVZ
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Wed Jul 03 09:36:47 GMT 2024

Total time taken to generate the page: 0.05215 seconds
Powered by FUDforum Powered by Virtuozzo Containers