Routed Configuration with IPv6 not working

N

nak

Member
Apr 15, 2021
7
6
8
I'm trying to set up a server with routed networking. My host has given me:

Public IPv4 IPs: 170.1.2.88/29
IPv4 Gateway IP: 170.1.2.89
Public IPv6 IPs: 2600:1234:1234:1234::/64
IPv6 Gateway 2600:1234:1234:1234::1

Here is my /etc/network/interfaces on the Proxmox host:

Code: 
auto lo
iface lo inet loopback

auto enp11s0f0np0
iface enp11s0f0np0 inet static
        address 170.1.2.90/29
        gateway 170.1.2.89
        post-up echo 1 > /proc/sys/net/ipv4/ip_forward
        post-up echo 1 > /proc/sys/net/ipv4/conf/enp11s0f0np0/proxy_arp

iface enp11s0f0np0 inet6 static
        address 2600:1234:1234:1234::90/64
        gateway 2600:1234:1234:1234::1
        post-up echo 1 > /proc/sys/net/ipv6/conf/all/forwarding

iface enp6s0 inet manual

iface enp7s0 inet manual

iface enp11s0f1np1 inet manual

iface enx5a3fcd409b33 inet manual

auto vmbr0
iface vmbr0 inet static
        address 10.13.1.1/24
        bridge-ports none
        bridge-stp off
        bridge-fd 0
        up ip route add 170.1.2.91/32 dev vmbr0

iface vmbr0 inet6 static
    address 2600:1234:1234:1234::10/64
    up ip -6 route add 2600:1234:1234:1234::91/128 dev vmbr0

source /etc/network/interfaces.d/*


and here is the configuration in a Proxmox container /etc/systemd/network/eth0.network:

Code: 
[Match]
Name = eth0

[Network]
Description = Interface eth0 autoconfigured by PVE
Address = 170.1.2.91/29
Gateway = 170.1.2.90
Address = 2600:1234:1234:1234::91/128
Gateway = 2600:1234:1234:1234::10
DHCP = no
IPv6AcceptRA = false

[Route]
Destination = 2600:1234:1234:1234::10/128
Scope = link


It appears that everything works OK for IPv4, both on host and guest.

The host can talk through IPv6 OK. However, the guest cannot communicate over IPv6 to the internet.

Can anyone help see what is wrong in my configuration? Thank you!
 
The gateway 2600:1234:1234:1234::1 would send packets to 2600:1234:1234:1234::91 into its LAN, trying to resolve the MAC address via neighbor discovery.

Your guest with this IP is not in the same broadcast domain, hence neighbor discovery will not find it. The gateway has no destination to send the packets to.

You cannot have the same IPv6 network on two different broadcast domains.

With IPv4 you use Proxy-ARP which relays ARP requests. There seems to be something similar for ND, but I do not know if there is an implementation for Linux available.

https://www.rfc-editor.org/rfc/rfc4389
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back