Hello,
I am using a PVE 7 distribution, installed from my provider's template. With IPv4, everything is working fine, but I cannot use IPv6 inside the VM, and do not understand why.
One thing that is not "vanilla" is that I installed a DHCP and DHCPv6 server on the PVE host. If I understand correctly, DHCPv6 has nothing to do with the routing, it only gives stateful IP addresses, so I did the routing "manually" but it is still not working.
It is actually working form the host, but not from the VM.
My configuration :
Host :
VM :
As a result, on the VM :
I can ping host and gateway from inside the VM :
Inside the host, I can ping the outside :
But not inside the VM :
Actually, I can ping `2001:41d0:xxxx:xxff:ff:ff:ff:ff` and `2001:41d0:xxxx:xxff:ff:ff:ff:fd` but not the next hop `2001:41d0:0:50::83d`
tcpdump is showing requests and replies on the bridge vmbr0, inside the host, but the same tcpdump query on the VM is not showing the reply (it show the request but not the reply).
Do you have any hint on how to resolve this issue ?
Thanks,
I am using a PVE 7 distribution, installed from my provider's template. With IPv4, everything is working fine, but I cannot use IPv6 inside the VM, and do not understand why.
One thing that is not "vanilla" is that I installed a DHCP and DHCPv6 server on the PVE host. If I understand correctly, DHCPv6 has nothing to do with the routing, it only gives stateful IP addresses, so I did the routing "manually" but it is still not working.
It is actually working form the host, but not from the VM.
My configuration :
Host :
Code:
network interface settings; autogenerated
# Please do NOT modify this file directly, unless you know what
# you're doing.
#
# If you want to manage parts of the network configuration manually,
# please utilize the 'source' or 'source-directory' directives to do
# so.
# PVE will preserve these directives, but will NOT read its network
# configuration from sourced files, so do not attempt to move any of
# the PVE managed interfaces into external files!
auto lo
iface lo inet loopback
iface eno1 inet manual
iface eno2 inet manual
auto vmbr0
iface vmbr0 inet static
address 217.xxx.xxx.xxx/32
gateway 217.xxx.xxx.254
bridge-ports eno1
bridge-stp off
bridge-fd 0
hwaddress A4:BF:xx:xx:xx:xx
iface vmbr0 inet6 static
address 2001:41d0:xxxx:xxxx::1/64
gateway 2001:41d0:xxxx:xxff:ff:ff:ff:ffVM :
Code:
auto ens18
iface ens18 inet dhcp
iface ens18 inet6 dhcp
post-up /sbin/ip -f inet6 route add 2001:41d0:xxxx:xxff:ff:ff:ff:ff dev ens18
post-up /sbin/ip -f inet6 route add default via 2001:41d0:xxxx:xxff:ff:ff:ff:ff dev ens18
Code:
# ip -6 addr
2: ens18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 state UP qlen 1000
inet6 2001:41d0:xxxx:xxxx::102/128 scope global dynamic
valid_lft 2373sec preferred_lft 1023sec
inet6 fe80::ff:fec8:cbec/64 scope link
valid_lft forever preferred_lft forever
# ip -6 route
::1 dev lo proto kernel metric 256 pref medium
2001:41d0:xxxx:xxxx::102 dev ens18 proto kernel metric 256 expires 2432sec pref medium
2001:41d0:xxxx:xxff:ff:ff:ff:ff dev ens18 metric 1024 pref medium
fe80::/64 dev ens18 proto kernel metric 256 pref medium
default via 2001:41d0:xxxx:xxff:ff:ff:ff:ff dev ens18 metric 1024 pref mediumI can ping host and gateway from inside the VM :
Code:
# ping6 2001:41d0:xxxx:xxxx::1
# ping6 2001:41d0:xxxx:xxff:ff:ff:ff:ffInside the host, I can ping the outside :
Code:
# ping6 2606:4700:4700::1111
# traceroute6 2606:4700:4700::1111
traceroute to 2606:4700:4700::1111 (2606:4700:4700::1111), 30 hops max, 80 byte packets
1 2001:41d0:xxxx:xxff:ff:ff:ff:fd (2001:41d0:xxxx:xxff:ff:ff:ff:fd) 1.108 ms 1.120 ms 1.196 ms
2 2001:41d0:0:50::83d (2001:41d0:0:50::83d) 0.261 ms 2001:41d0:0:50::83e (2001:41d0:0:50::83e) 0.252 ms 2001:41d0:0:50::83d (2001:41d0:0:50::83d) 0.241 ms
3 2001:41d0:0:50::1:8104 (2001:41d0:0:50::1:8104) 0.986 ms 2001:41d0:0:50::1:8100 (2001:41d0:0:50::1:8100) 1.099 ms 2001:41d0:0:50::1:8102 (2001:41d0:0:50::1:8102) 0.862 ms
4 2001:41d0:0:50::5:6 (2001:41d0:0:50::5:6) 0.155 ms 2001:41d0:0:50::5:4 (2001:41d0:0:50::5:4) 0.283 ms 2001:41d0:0:50::5:6 (2001:41d0:0:50::5:6) 0.261 ms
5 be101.gra-g1-nc5.fr.eu (2001:41d0::1102) 1.473 ms 1.492 ms gra-g2-nc5.fr.eu (2001:41d0::1103) 2.268 ms
6 * * be102.par-gsw-sbb1-nc5.fr.eu (2001:41d0::42f) 4.860 ms
7 2001:41d0::26a7 (2001:41d0::26a7) 4.464 ms 4.435 ms 4.425 ms
8 2001:41d0::2525 (2001:41d0::2525) 5.450 ms 5.569 ms 5.209 ms
9 2400:cb00:533:3:: (2400:cb00:533:3::) 5.223 ms 2400:cb00:538:3:: (2400:cb00:538:3::) 4.801 ms 4.773 ms
10 2400:cb00:534:1024::ac47:7d37 (2400:cb00:534:1024::ac47:7d37) 5.308 ms 2400:cb00:537:1024::ac47:8121 (2400:cb00:537:1024::ac47:8121) 4.928 ms 2400:cb00:537:1024::ac47:81e0 (2400:cb00:537:1024::ac47:81e0) 5.140 msBut not inside the VM :
Code:
traceroute to 2606:4700:4700::1111 (2606:4700:4700::1111), 30 hops max, 80 byte packets
1 2001:41d0:xxxx:xxff:ff:ff:ff:fd (2001:41d0:xxxx:xxff:ff:ff:ff:fd) 2.348 ms 2.309 ms 2.314 ms
2 * * *
3 * * *
4 * * *
5 * * *
6 * * *
7 * * *
8 * * *
9 * * *
10 * * *Actually, I can ping `2001:41d0:xxxx:xxff:ff:ff:ff:ff` and `2001:41d0:xxxx:xxff:ff:ff:ff:fd` but not the next hop `2001:41d0:0:50::83d`
tcpdump is showing requests and replies on the bridge vmbr0, inside the host, but the same tcpdump query on the VM is not showing the reply (it show the request but not the reply).
Code:
# tcpdump -n -i vmbr0 icmp6
13:04:50.457382 IP6 2001:41d0:xxxx:xxxx::102 > 2606:4700:4700::1111: ICMP6, echo request, id 58018, seq 3, length 64
13:04:50.462602 IP6 2606:4700:4700::1111 > 2001:41d0:xxxx:xxxx::102: ICMP6, echo reply, id 58018, seq 3, length 64
13:04:51.481440 IP6 2001:41d0:xxxx:xxxx::102 > 2606:4700:4700::1111: ICMP6, echo request, id 58018, seq 4, length 64
13:04:51.486684 IP6 2606:4700:4700::1111 > 2001:41d0:xxxx:xxxx::102: ICMP6, echo reply, id 58018, seq 4, length 64Do you have any hint on how to resolve this issue ?
Thanks,
