1. Forum
  2. Usenet
  3. COMP.UNIX.BSD.OPENBSD.MIS

  • OpenBGPd 6.2 issues

    From Johan Landerholm@21:1/5 to All on Tue Nov 7 07:45:41 2017
    XPost: c, o, m
    XPost: p, ., u
    XPost: n, i, x
    XPost: ., b, s
    XPost: d, ., o
    XPost: p, e, n
    XPost: b, s, d
    XPost: ., m, i
    XPost: s, c

    This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --B7ifegGUNoXQL6R5pD2BAx1axQJkh2wMv
    Content-Type: multipart/mixed;
    boundary="------------FA40645692C09D7F88877460"
    Content-Language: sv

    This is a multi-part message in MIME format. --------------FA40645692C09D7F88877460
    Content-Type: text/plain; charset=windows-1252
    Content-Transfer-Encoding: quoted-printable

    Hi all,

    I have been at very long time OpenBSD (since 3.x something) user and
    since a couple of years, I have been using the Tunnelbroker.net service
    to have IPv6 connectivity for my home network.
    Since upgrading to OpenBSD 6.2, this connectivity has ceased to work.
    And I can't figure out what has changed to cause it to stop.

    Is there anyone else that is running a BGP setup to Tunnelbroker.net and
    is using OpenBSD 6.2 ?

    This is my information:
    pf.conf (relevant rules):
    pass in on $ext_if proto 41 from any to any
    pass out on $ext_if proto 41 from any to any
    pass in on gif0 inet6
    pass out on gif0 inet6

    # ifconfig gif0
    gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1280
    index 16 priority 0 llprio 3
    groups: gif egress
    tunnel: inet 81.235.35.241 -> 216.66.84.54
    inet6 fe80::6a05:caff:fe3c:9812%gif0 -> prefixlen 64 scopeid 0x10
    inet6 2001:470:12:e0::2 -> 2001:470:12:e0::1 prefixlen 128

    # netstat -nr |grep default
    default 2001:470:12:e0::1 UGS
    0 200 - 8 gif0

    # bgpd -vn
    AS 200704
    router-id 10.0.0.254
    socket "/var/run/bgpd.sock.0"
    holdtime min 3
    log updates
    listen on 2001:470:12:e0::2
    fib-priority 48
    network 2001:67c:11f0::/48
    rde rib Adj-RIB-In no evaluate
    rde rib Loc-RIB rtable 0 fib-update yes

    neighbor 2001:470:12:e0::1 {
    descr "tunnelbroker"
    remote-as 6939
    announce IPv6 unicast
    }
    allow from AS 6939

    # bgpctl show sum
    Neighbor AS MsgRcvd MsgSent OutQ Up/Down
    State/PrfRcvd
    tunnelbroker 6939 0 0 0 Never Active

    # tcpdump -ni gif0
    tcpdump: listening on gif0, link-type LOOP
    07:41:13.039602 2001:470:12:e0::1.8231 > 2001:470:12:e0::2.179: S 3037657124:3037657124(0) win 65000 <mss 1440> [class 0xc0]
    07:41:14.138976 2001:470:12:e0::1.8160 > 2001:470:12:e0::2.179: S 3042665795:3042665795(0) win 65000 <mss 1440> [class 0xc0]
    07:41:14.389958 2001:470:12:e0::1.8160 > 2001:470:12:e0::2.179: S 3042665795:3042665795(0) win 65000 <mss 1440> [class 0xc0]
    07:41:14.991109 2001:470:12:e0::1.8160 > 2001:470:12:e0::2.179: S 3042665795:3042665795(0) win 65000 <mss 1440> [class 0xc0]

    So, there is BGP traffic on the gif0 tunnel interface, but the OpenBGP
    daemon simply does not pick the traffic up?
    Also, there seems to be something wrong in the basic IPv6 networking,
    pinging the remote tunnel endpoint fails:
    # ping6 2001:470:12:e0::1
    PING 2001:470:12:e0::1 (2001:470:12:e0::1): 56 data bytes
    ping6: sendmsg: No route to host
    ping: wrote 2001:470:12:e0::1 64 chars, ret=-1
    ping6: sendmsg: No route to host
    ping: wrote 2001:470:12:e0::1 64 chars, ret=-1

    This has been working fine for years, but since 6.2 - the traffic has
    stopped working.

    Anyone has a clue to how I get this networking correct again?

    Thanks for any help!
    /Johan


    --------------FA40645692C09D7F88877460
    Content-Type: application/pgp-keys;
    name="0x6001731A.asc"
    Content-Transfer-Encoding: quoted-printable
    Content-Disposition: attachment;
    filename="0x6001731A.asc"

    -----BEGIN PGP PUBLIC KEY BLOCK-----

    mQINBFf9X/UBEADElrccjVyD5eQb8NCb5U+6LDT8xSp8OTJ1S+QHhqD2AO/B2kzW jXITgdsoEdKHJ2HRUVuaH0WmiE2wUbRn2vwwAW5rO4T9ZIxuNpBqKPMtqgQzGESo SJnX3MIAGZshvASEZjuhgXzXVGpvV96VqFO1uFbwH4+rYkZklMidbsSD5RIMCJSd BKhAKYEEjGe1QonGBNBgGHOau696W8Vz/cwUojoD1xuAkPwVgH619Cj+HMokm775 ncp+HRshlVZ6wD3AwYoDFdAOUyONHfbZltpzMOM1G/eXPPb2gT2NS/KUNBheeIN2 qBn4ejGGdFwP25zM13PvdioOCbqt3wuE52yWKbI5FfmlrCd43xXDGRiijBteegsq IZCch1swgbQ+rtiYbttQdY1jOkafb5XW90i7OgIZm2W4HGinCFQ7uUZoyTiRqor1 YR2VHZAhMzUNp0xC946IjR09guGwLrLC040yPSfl9k6c3xl7txy9i0kazWt+Y+eJ 8vzIzjWbsSl9czwgKXI1swGcbGvkAw21zelccumY3b16T6M/umR97Wj/5AWE858v dH0zR+SOC5kdQAlmKdl8k+q7cgNbwcnc4kTA0c0EzdlChXYelatiwVKNfTtMZEjB 0itS44OgxqPjMzD58INb+ZJHiyBKEx5P2OdiBuft2Pc1O18TBFW9Sx8S5wARAQAB tCdKb2hhbiBMYW5kZXJob2xtIDxqb2hhbkBsYW5kZXJob2xtLm5ldD6JAj0EEwEK ACcFAlf9X/UCGwMFCQeGH4AFCwkIBwMFFQoJCAsFFgIDAQACHgECF4AACgkQY+bq SmABcxpa/g//TTRc/vnS0BGKcSfg+NVeli/HuzejYyaeNHeab9BtcHDh0cr9t20G aNmDf+hM5LUnu9MF+FgqxZPqM3+kwb93VzU0KSc0m4+FYzU/KsGs/yELa2X6CP0D fv/mMcy1hZ8lLVy9S2M44mXmYOmiwfd94t3SsYso9rnEEvMILnmlcut1wurDBVx3 YTYTTPqCKnsTS+FLMJ4DWtc1boNifGkYQULL0J+L+dGNcKbZ5T149b/YtZ4MefMC ih7dqg0yP5J1U7f6bbij9GE2ITOY3rmu/WrbHdG4+TUC7xRB7ya9MzVHveNghShA oqHW5sHjS5jmSQGsiQeHNPwRb1S2nppQDzm4RbIEpYxGH6XqyVKtP2EncUbW0OsH /es+vQdzgtVah86OLvI0mZU/oLZA+osUld4i691uB3ffJ3LCZToze7r5DgaJyjpu fJuy4+E8NOUBfcYm7KK3kMvujtZupX3sw9qbaUKxjLxlxVAeZTB1lPqOaLvjy+vw aIupBiixKD5w22m7R/HtuE34bA1jva5LhPJN1lL3ldUya/oU734ajdPSbEQ1XFNZ qaoxjK6ZXS0xDxOOpriOpHAYe1/XlwRYnjb3T73jdUSI8EFQXF2WXOsaSmBjopyZ BU3qruap0M86/KAWRCauwE0m8ueHMbmHtbQX5QVfnUIvlION5w3x7la5Ag0EV/1f 9QEQALBaFPsYZEtL2SUNcIXCzrpg+aQwFMIikO0GYtLM0X7wSxq9Hh00+IveTXzt zSvXSTx3HNv2aKI8IG5eU9bcdJCfgtbvKb+b9dMG6AW9AcdxgQFaydqVglnEWaKF yIuSHZT0ZwJYDHTzlvp/lz8eiJ5gHqLXigz9yeW01kUYV0ZH9nYxLRuXn9SKU+py lh3RS/ll170wpE6C1O0gM9ndcFPxSYRoIa/Oa+M7JZICKlIT7Fa16GXnf2FORU4+ /JsgibA7kxrakYo8QH5nuIMtusaX8pNhsu03eESfl/1DavFo7tSs7fxmvnFFPdv9 uqPIBHGwK5rq2IkQouoXxJjKAshbubs0aaZfKAPL7MZityOu4LjFmq4HPngEsZzt gwULur56YKAPSfiJmlv7lkUsGOQq8T2fC6od3feJwOmk8OIpqJSwSPmoZ+PSIXKa c9NOBl4b2Ad4eIv9HM/1X/1mJiUInGhd1k5nTgN2RRca6I9HyYiRRdFMkszhuwz9 j1F26dIE6anipqm9y0AAE2TfmJgdIsCwDRonnaVMPEr32gcNElyUJe/d12ilgToM +/bS/zmxRUzgAmP7ZZGV+ajTdHMc+ZdHsImnAiDNNY7tEkxwoaxVmbKmgxi6nE7t 3LDdIu0zy+XE6Pffg1FE+ahBdG2rsi/bl2Vb3ixZhTrbyI9vABEBAAGJAiUEGAEK AA8FAlf9X/UCGwwFCQeGH4AACgkQY+bqSmABcxpGshAAmjOM43hbQ1neApGL5IxH nCpN1BIHlq4899qb4zko2buzxgaIa36ThEIeiPBjDirfTSpxzq/pfmyQLlR//KY8 Utku/BDsnsd5CpGM/c6TGDBx9WD2rXLE645lRqikgpW/6N8arpF8GPnMLpJEL9pZ NzyDvCUWoKx4X941CnMakufOtgwKddlJ52c/oSA1+kIs0ASd5s0uBcjBSeudzLQ/ ns0z1sjDEoVGdRkb1D4jiO7CUkrqNtw9IrndMCoA5qRilCmsDjSDuKAENgPXYG6B y+Uw93ZJUJQtvsQMWaroWYB09dy5twzCri7P6FvfqIvFo0jPWYOR3Uie5kYf1mQE TO9XAPOlzgC/tR98TZkAoMPJaG0Do6ugGl9e/mRAhCp0xdR9Ys86in7SuLGlQdZE YVdVpkbs7Nt4wdH0mlzoFzZJHlmqR7G/VsSKNaQqLDQn9y7IZpX2o+GbWgZ+h4gb E4ccO4C9AZZ0ezwRqI7ePiG4U0k836TJ+xP0j2kDF1wrT/H7GWNxrKc435V3ztHd JqtyN8E5OaCnDZaau9UzCTgpa2kY+blNYfCA1uFe3NV7TOrRVqXu+P8Vkdj+wfTp r6jNlI98ZJ5pwzJSyQ9whIJTNPtEkDTaXDTb+Gx4IKCkR1mLtofXh8Nngp5g6SY9 VjpfkHXeP6o7hWCQ9gXMvgI=
    =BNe0
    -----END PGP PUBLIC KEY BLOCK-----

    --------------FA40645692C09D7F88877460--

    --B7ifegGUNoXQL6R5pD2BAx1axQJkh2wMv--

    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEjK5O8hP1z/f5/o9jY+bqSmABcxoFAloBVpYACgkQY+bqSmAB cxpU2w//aZj7c1tiuptMJKR9EqmTWhknwC3sKAkG5zbcUSOc7y9yoENFu3YPHIgm SelArtqbi70Txc6fAEmv0jOd9FPni4uILARXuFYEZGxMLjZdnp7G9aFOdGLhK0mU yYKBiyBHCGsOw9Fe1C+rwIaADvP737T+++2U0INv7gfqjqso2wR00+qVMOy7GNYt 5s3NDDCgShY+iJcKlbK0244pw93gKxKcRCBqi3MoiMGBk/BI8Ex2yoUSXVuZWM8k l2N22hiOURY8r0nW9dpf2kSt6J1hdQPYNtsyXUhpBrgp2IZTVed7fjDlUjSyB/Ll 33GFDPTK2MxEv5I22h0euBYbDMsR3Rvp/d1pHnrTSWa41iMwKAKK4lBQuP0KOqMp FYR/gAACyRvYAaZ7pOL3tCNzViigGFuniVYKUuBzaWbSWLTO2LjFYwuDNTJqzOdL f/Ig98zaiL2KzbrbtjmLR0aXEy1a/EPBqPlkNOJ8raMll9rUHB+mIr2sr9MpYTLJ aOX4O7b1TpKBXHiJmyGiPmlzjLfhG8jbUfJlorxQAgxkYvCdjZd4OUm3CSSis/Fv N0mmJBBNaSKW1d/J0LKrKxfGvBFlCGRvsDnj4eM5U9t6x/IAAkZvSFjlI64+4kHB x7bk7/WV+LxzVyhpLcp/2spTGbdhshI3ZDxNVk5PRGjyGwNdWwU=
    =+Gaz
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)