https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162021-02-18T21:11:27ZpfSense bugtrackerpfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=512572021-02-18T21:11:27ZAnonymous
<ul></ul><p>"Me too"... After upgrading to 2.5.0, IPv6 did not work until I manually added an address for monitoring. After doing that, the gateway shows as "dynamic" on the Gateways page, and the dashboard widget doesn't show an IPv6 address for that gateway, but routing is working. Without specifying a monitoring address, the status on the dashboard widget showed as "Pending".</p>
<p>Forum thread: <a class="external" href="https://forum.netgate.com/topic/160952/ipv6-no-gateway-after-2-5-upgrade">https://forum.netgate.com/topic/160952/ipv6-no-gateway-after-2-5-upgrade</a></p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=512592021-02-18T22:01:39ZHayden Hill
<ul></ul><p>I am having this issue as well. Starting with 2.5. Without manually overriding gateway monitoring for the ipv6 gateway PfSense will fail to connect to IPV6 DNS Servers.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=512662021-02-19T01:26:28ZCar F
<ul></ul><p>Same here after update from 2.4.5_1 to 2.5.0. IPv6 is working but Gateway only shows "~" and there is no IPv6 Gateway address.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=512802021-02-19T07:08:32ZViktor Gurov
<ul></ul><p>something wrong with <code>/var/etc/rtsold_{realif}_script.sh</code> -<br />it saves empty <code>/tmp/{realif}_routerv6</code> and <code>/tmp/{realif}_defaultgwv6</code><br />empty route in logs:<br /><pre>
Feb 18 12:06:22 pf41 rtsold[70362]: Received RA specifying route for interface opt1(vtnet2)
</pre></p>
<p>2.4.5-p1 good:<br /><pre>
Feb 19 16:40:37 pg52 rtsold: Received RA specifying route fe80::2ce8:5ff:fee3:e415 for interface opt1(vtnet2)
</pre></p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=513332021-02-19T21:00:15ZAnonymous
<ul></ul><p>As noted in the thread now, this also affects firewall rules that make use of the Gateway option. Because the IPv6 gateway isn't known (my pfSense system only shows my IPv4 gateway), the rules are now broken. I don't know if that might warrant a boost in priority or not, but the scope of the effects of this seem to be growing.</p>
<p>Also an additional thread...<br /><a class="external" href="https://forum.netgate.com/topic/160750/fq_codel-ipv6-floating-rule-error">https://forum.netgate.com/topic/160750/fq_codel-ipv6-floating-rule-error</a></p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=513622021-02-20T18:43:53ZPete C
<ul></ul><p>Same issues as noted above.</p>
<p>I was able to get IP6 working after configuring IP6 gateway monitoring to IP6 address on interface.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=513912021-02-21T12:44:16ZNick B
<ul></ul><p>I'm also having the same problem. Manually setting the monitor address to the link-local address has worked around the issue however, as noted above this breaks CoDel rules.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517362021-02-28T10:28:45ZSteve Y
<ul></ul><p>Michael Virgilio wrote:</p>
<blockquote>
<p>but routing is working. Without specifying a monitoring address, the status on the dashboard widget showed as "Pending".</p>
</blockquote>
<p>After upgrading an SG-2100 to 21.02 I also see the Pending in Status/Gateways but can ping ipv6.google.com from my PC behind it. So at least the GUI part is not just in 2.5. Status/Interfaces does not list an IPv6 gateway:</p>
<p>Gateway IPv4 76.217.***<br />IPv6 Link Local fe80::2e0:edff:febe:d24d%mvneta0 <br />IPv6 Address 2600:1700:*** <br />Subnet mask IPv6 64 <br />MTU 1500</p>
<p>Diagnostics/Routes shows a default route to "fe80::8a96:4eff:fedd:1e70%mvneta0".</p>
<p>My pfSense is behind an AT&T router/modem.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517372021-02-28T14:34:56ZTim Dunn
<ul><li><strong>File</strong> <a href="/attachments/3458">rtsol.c.patch</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/3458/rtsol.c.patch">rtsol.c.patch</a> added</li></ul> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517382021-02-28T14:52:49ZTim Dunn
<ul><li><strong>File</strong> <a href="/attachments/3459">rtsol.c.patch</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/3459/rtsol.c.patch">rtsol.c.patch</a> added</li></ul><p>If ManagedConfigFlag is set in rtsold, managedconf_script (-M) will execute instead of otherconf_script (-O)</p>
<p>pfsense previously patched rtsol.c (<a class="external" href="https://github.com/pfsense/FreeBSD-src/commit/da4e972b334692e031d1f7deea7e4db02d1c0fdc">https://github.com/pfsense/FreeBSD-src/commit/da4e972b334692e031d1f7deea7e4db02d1c0fdc</a>) to add received RA as second argument to script.<br />It looks like the solution is either to revert upstream patch that conflicts or to modify arguments to managedconf_script as in attached patch</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517412021-02-28T20:47:36ZGreg Shaffer
<ul></ul><p>I noticed that both /tmp/em0_routerv6 and /tmp/em0_defaultgwv6 were empty while the ipv4 versions had the valid router addresses in them. Both of these are set in the script /var/etc/rtsold_em0_script.sh which is built by the script /etc/inc/interfaces.inc. It looks like the parameter is not being passed to the script. I modified the routine in interfaces.inc that builds the resold_em0_script (search for "rtsoldscript") to set a hard coded value for both these files and my IPv6 gateway started working! Routing, firewall rules, Policy Based Routing, etc, all work!</p>
<p>My mods:</p>
<p>#echo $2 > /tmp/em0_routerv6<br />echo "fe80::X:X:X:X" > /tmp/em0_routerv6<br />#echo $2 > /tmp/em0_defaultgwv6<br />echo "fe80::X:X:X:X" > /tmp/em0_defaultgwv6</p>
<p>After I made the mods, I "saved" the WAN interface again without making any changes. Hope this helps someone until a real fix is pushed out.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517432021-02-28T23:24:05ZGreg Shaffer
<ul><li><strong>File</strong> <a href="/attachments/3460">interfaces.inc.diff</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/3460/interfaces.inc.diff">interfaces.inc.diff</a> added</li></ul><p>UPDATE:</p>
<p>Here is a diff of my changes to /etc/inc/interfaces.inc</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=517452021-03-01T00:12:22ZCar F
<ul></ul><p>Thank you @Greg Schaffer, that worked for me!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518152021-03-01T17:29:48ZDennis P
<ul></ul><p>Greg Shaffer wrote:</p>
<blockquote>
<p>#echo $2 > /tmp/em0_routerv6<br />echo "fe80::X:X:X:X" > /tmp/em0_routerv6<br />#echo $2 > /tmp/em0_defaultgwv6<br />echo "fe80::X:X:X:X" > /tmp/em0_defaultgwv6</p>
</blockquote>
<p>I just manually created the files <code>/tmp/*_defaultgwv6</code> and <code>/tmp/*_routerv6</code> with the valid gateway/router IPv6 address as file content. A few seconds later, IPv6 routing and firewall rules finally started working again. Thank you.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518442021-03-02T07:58:05ZPete C
<ul></ul><p>Greg Shaffer wrote:</p>
<blockquote>
<p>UPDATE:</p>
<p>Here is a diff of my changes to /etc/inc/interfaces.inc</p>
</blockquote>
<p>Thank you Greg.</p>
<p>This worked for me and I changed the monitoring IP6 IP back to Google DNS the way it was in PFSense V2.4.x</p>
<p>My steps here were:</p>
<p>1 - looked up the local link gateway address via PFSense / diagnostics / routes / IP6 routes (FE80...)<br />2 - did a copy and paste of the address minus %em1 in to the diff file.<br />3 - rebooted PFSense<br />4 - put in the Google IP6 DNS address as the IP6 Gateway monitoring address</p>
<p>All is well now for time being.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518562021-03-02T11:01:37ZGreg Shaffer
<ul></ul><p>Dennis P wrote:</p>
<blockquote>
<p>Greg Shaffer wrote:</p>
<blockquote>
<p>#echo $2 > /tmp/em0_routerv6<br />echo "fe80::X:X:X:X" > /tmp/em0_routerv6<br />#echo $2 > /tmp/em0_defaultgwv6<br />echo "fe80::X:X:X:X" > /tmp/em0_defaultgwv6</p>
</blockquote>
<p>I just manually created the files <code>/tmp/*_defaultgwv6</code> and <code>/tmp/*_routerv6</code> with the valid gateway/router IPv6 address as file content. A few seconds later, IPv6 routing and firewall rules finally started working again. Thank you.</p>
</blockquote>
<p>I believe both of these files will be rewritten if you make a change to your WAN or you reboot your firewall.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518582021-03-02T11:05:35ZDennis P
<ul></ul><p>Greg Shaffer wrote:</p>
<blockquote>
<p>I believe both of these files will be rewritten if you make a change to your WAN or you reboot your firewall.</p>
</blockquote>
<p>That's true. It's just my personal workaround until the bug is fixed.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518622021-03-02T12:07:15ZMike Loiterman
<ul></ul><p>Dennis P wrote:</p>
<blockquote>
<p>Greg Shaffer wrote:</p>
<blockquote>
<p>I believe both of these files will be rewritten if you make a change to your WAN or you reboot your firewall.</p>
</blockquote>
<p>That's true. It's just my personal workaround until the bug is fixed.</p>
</blockquote>
<p>When you reference /tmp/*_defaultgwv6 and /tmp/*_routerv6, or you actually creating a file called *_routerv6 or are you creating, for example, ix0_routerv6 and ix0_defaultgwv6?</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518662021-03-02T13:33:15ZDennis P
<ul></ul><p>Mike Loiterman wrote:</p>
<blockquote>
<p>When you reference /tmp/*_defaultgwv6 and /tmp/*_routerv6, or you actually creating a file called *_routerv6 or are you creating, for example, ix0_routerv6 and ix0_defaultgwv6?</p>
</blockquote>
<p>The latter, of course. In my case, <code>*</code> is <code>vtnet0</code>.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=518672021-03-02T13:59:10ZEric B
<ul></ul><p>Greg Shaffer wrote:</p>
<blockquote>
<p>I noticed that both /tmp/em0_routerv6 and /tmp/em0_defaultgwv6 were empty while the ipv4 versions had the valid router addresses in them. Both of these are set in the script /var/etc/rtsold_em0_script.sh which is built by the script /etc/inc/interfaces.inc. It looks like the parameter is not being passed to the script. I modified the routine in interfaces.inc that builds the resold_em0_script (search for "rtsoldscript") to set a hard coded value for both these files and my IPv6 gateway started working! Routing, firewall rules, Policy Based Routing, etc, all work!</p>
<p>My mods:</p>
<p>#echo $2 > /tmp/em0_routerv6<br />echo "fe80::X:X:X:X" > /tmp/em0_routerv6<br />#echo $2 > /tmp/em0_defaultgwv6<br />echo "fe80::X:X:X:X" > /tmp/em0_defaultgwv6</p>
<p>After I made the mods, I "saved" the WAN interface again without making any changes. Hope this helps someone until a real fix is pushed out.</p>
</blockquote>
<p>Thank you Greg - I had noticed that the v6 files under /tmp were also empty but didn't understand exactly what supposed to be in them. Plus wasn't aware what created the rtsold_X__script.sh under /var/etc until your post. I haven't decided to make any changes to any base scripts but found a quick command to pull in the default ipv6 gw to echo into those files using:<br /><code>netstat -rn6 | grep default | awk '{print $2}' | cut -f1 -d%</code></p>
<p>It's a bit messy but will work in the short term.</p>
<p>Again, Thank you!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=519982021-03-07T23:36:26ZViktor Gurov
<ul></ul><p>see also <a class="issue tracker-1 status-5 priority-4 priority-default closed" title="Bug: WAN_DHCP6 down, but IPv6 actually works (Closed)" href="https://redmine.pfsense.org/issues/11187">#11187</a></p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=520112021-03-08T10:58:11ZGreg Shaffer
<ul></ul><p>Victor- Any idea when this is going to get some attention? This issue really ripples thru out the system (e.g. Gateway Monitoring, Track Interfaces, Routing, Firewall, Policy Based Routing, Limiters, etc). I've had to remove/disable a significant amount of functionality that just worked in 2.4.5-p1. IPv6 via DHCP6 is broken in both 2.5.0 and 21.02-p1.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=523482021-03-13T17:31:10ZPaul K
<ul></ul><p>I can confirm this as an issue.</p>
<p>This is however much larger issue than described in the original post. This should really be classified as a show stopper and fixed ASAP. After updating to 2.5 I lost internet access from all internal networks and had to waste a lot of time figuring out what exactly was causing it, so overall my upgrade experience has not been positive this time.</p>
<p>Viktor Gurov and Tim Dunn already explained exactly where the issue lies, but just to reiterate.</p>
<ul>
<li>We have a WAN interface that is configured to use DHCP6 with 'Do not wait for a RA' flag disabled</li>
<li><em>interface_dhcpv6_configure()</em> gets called and generates <em>/var/etc/dhcp6c_wan.conf</em></li>
<li><em>/var/etc/dhcp6c_wan.conf</em> executes <em>/var/etc/dhcp6c_wan_dhcp6withoutra_script.sh</em></li>
<li><em>/var/etc/dhcp6c_wan_dhcp6withoutra_script.sh</em> executes rtsold instructing it to execute <em>/var/etc/rtsold_igb0_script.sh</em></li>
<li><em>/var/etc/rtsold_igb0_script.sh</em> grabs second command line argument and dumps it into <em>/tmp/igb0_routerv6</em> and <em>/tmp/igb0_defaultgwv6</em>; problem is there is no second argument because rtsol requires custom patch to pass it so we end up with empty files.</li>
</ul>
<ul>
<li>when <em>get_interface_gateway_v6("wan")</em> is called it returns empty value instead of IPv6 gateway address, because it's looking things up from empty files</li>
<li>when <em>return_gateways_array()</em> is called 'gateway' is set to "dynamic" instead of IPv6 gateway address<br /><pre>
[WAN_DHCP6] => Array
(
[interface] => igb0
[gateway] => dynamic <-- this is a problem
[name] => WAN_DHCP6
[weight] => 1
[ipprotocol] => inet6
[descr] => Interface WAN_DHCP6 Gateway
[monitor] => 20xx:xxxx:xxxx::8888
[dynamic] => 1
[friendlyiface] => wan
[friendlyifdescr] => WAN
[attribute] => 1
[tiername] => Default (IPv6)
)
</pre></li>
<li>from this point any code that requires IPv6 gateway is broken that includes gateway monitoring, firewall rules that use gateway, snort package, etc.</li>
<li>/tmp/rules.debug gets generated as below<br /><pre>
# Gateways
GWWAN_DHCP = " route-to ( igb0 111.222.333.444 ) "
GWWAN_DHCP6 = " route-to ( igb0 111.222.333.444 ) " <-- this is wrong, should be IPv6 gateway
pass out quick on { igb0 } inet6 from any to <negate_networks> tracker 10000002 keep state dnqueue( 2,1) label "NEGATE_ROUTE: Negate policy routing for destination"
pass out quick on { igb0 } $GWWAN_DHCP6 inet6 from any to any tracker 1548386483 keep state dnqueue( 2,1) label "USER_RULE: v6-CoDel Limiters"
</pre><br />which of course throws errors during filter reload and generates alert</li>
</ul>
<p>All in all this leaves system in unusable state after the upgrade.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=523572021-03-14T00:22:29ZCar F
<ul></ul><p>Paul K wrote:</p>
<blockquote>
<p>I can confirm this as an issue.</p>
<p>This is however much larger issue than described in the original post. This should really be classified as a show stopper and fixed ASAP. After updating to 2.5 I lost internet access from all internal networks and had to waste a lot of time figuring out what exactly was causing it, so overall my upgrade experience has not been positive this time.</p>
</blockquote>
<p>Couldn't agree more. This is unacceptable for a "stable" release. In Germany there is heavy usage of IPv6 only connections so that you can't use them anymore. Further more if you update remoteley you're locked out. I'm surprised that there is no word from the devs to this.</p>
<p>I'm still using the workaround from Greg that seems to work fine.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524182021-03-16T07:53:46ZJim Pingle
<ul><li><strong>Assignee</strong> set to <i>Jim Pingle</i></li><li><strong>Target version</strong> set to <i>2.5.1</i></li></ul><p>To me, I have a fix.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524192021-03-16T08:06:25ZJim Pingle
<ul><li><strong>Subject</strong> changed from <i>dpinger not updating/learning IPv6 gateway</i> to <i>Gateway value for DHCP6 interfaces lost after RA events without gateway information, breaks monitoring</i></li><li><strong>Category</strong> changed from <i>Gateway Monitoring</i> to <i>Interfaces</i></li></ul><p>Updating subject for release notes and to more accurately reflect the nature of the problem.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524202021-03-16T08:10:11ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Feedback</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset <a class="changeset" title="Only write DHCP6 gw when given a value. Fixes #11454" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/78ca7d58c6cc706b5c6aeb8c00c6b4e2b5c841cd">78ca7d58c6cc706b5c6aeb8c00c6b4e2b5c841cd</a>.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524412021-03-16T11:34:35ZAnonymous
<ul></ul><p>I tried applying this as a patch to my 2.5 box... the patch tested properly and applied without issue, but after removing the manually set monitoring IP I've had set, the WAN_DHCP6 gateway is at "dynamic" for both the gateway and monitor address, and reverted to "Pending" status when I went back to my dashboard. The IPv6 gateway also still doesn't show in rules.</p>
<p>I tried releasing/renewing DHCP on my WAN interface, but no change. <br />I tried re-saving/applying the interface settings, but no change as well.</p>
<p>Are there other things that need to be done for this to update? Is it something that will only properly work with beta snapshots (something I'm trying to avoid)?</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524422021-03-16T11:36:26ZJim Pingle
<ul></ul><p>At a minimum you have to Edit/Save/Apply on the affected WAN interface after changing the gateway, otherwise it won't rewrite the RA script with the new code. A reboot would also work.</p>
<p>It shouldn't depend on any other changes, but I haven't tested it on a stock 2.5.0 to say that with 100% certainty.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524452021-03-16T11:48:57ZGreg Shaffer
<ul></ul><p>I restored the original interfaces.inc, applied the patch and rebooted my system. Doesn't look like it fixed the issue. My IPv6 gateway still shows as dynamic with "pending" for RTT, RTTsd and Loss. I'm getting alerts that the firewall rules won't load because "no routing address with matching address family found" for the IPv6 CoDel Limiter I have setup.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524472021-03-16T12:29:57ZGreg Shaffer
<ul><li><strong>File</strong> <a href="/attachments/3514">Screen Shot 2021-03-16 at 10.07.29 AM.png</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/3514/Screen%20Shot%202021-03-16%20at%2010.07.29%20AM.png">Screen Shot 2021-03-16 at 10.07.29 AM.png</a> added</li></ul> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524482021-03-16T12:39:37ZJim Pingle
<ul></ul><p>Please direct all feedback to threads on the forum category for Plus 21.02.2 / CE 2.5.1 at <a class="external" href="https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots">https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots</a></p>
<p>But please upgrade to a snapshot first to test the change completely. This fix is present in the newly published RC build.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524582021-03-16T14:34:36ZGreg Shaffer
<ul></ul><p>The 2.5.1-RC did not resolve the gateway issue. Thread started on the forum.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524692021-03-16T19:38:11ZFlole Systems
<ul></ul><p>No surprise that didn't fix it, where should that second argument be coming from? Its never passed to the managedconf_script as already described above. So it is not lost after RA events without gateway information but rtsol is simply not passing it to the managedconf_script.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524702021-03-16T19:42:22ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>In Progress</i></li></ul><p>Flole Systems wrote:</p>
<blockquote>
<p>No surprise that didn't fix it, where should that second argument be coming from? Its never passed to the managedconf_script as already described above. So it is not lost after RA events without gateway information but rtsol is simply not passing it to the managedconf_script.</p>
</blockquote>
<p>On a half dozen systems I got the gateway in the first RA response and then later responses had no gateway. So the gateway was clobbered on the second and later responses leading to identical symptoms. It works for me since now on ALL of my DHCP6 lab systems, most of which didn't have working gateway monitoring before, work now. Some never broke before or after this change.</p>
<p>It's the only scenario I've been able to reproduce here locally so far. Other environments must be hitting a different problem than I am.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524722021-03-16T23:50:27ZPaul K
<ul></ul><p>I think I might have found the problem.</p>
First of all, I stated incorrectly in my previous post that "/var/etc/dhcp6c_wan_dhcp6withoutra_script.sh" gets executed on my system. The correct sequence is:
<ul>
<li>rtsold is executed from interfaces.inc</li>
<li>which in turn executes rtsold_{$wanif}_script.sh</li>
<li>which then executes dhcp6c</li>
</ul>
<p>I applied Jim's patch on my system 2.5.0 (not 2.5.1 RC), manually removed igb0_routerv6/igb0_defaultgwv6 files and ran an update on WAN interface.</p>
<p>Updated /var/etc/rtsold_igb0_script.sh was generated as per patch:</p>
<pre>
#!/bin/sh
# This shell script launches dhcp6c and configured gateways for this interface.
if [ -n "$2" ]; then
echo $2 > /tmp/igb0_routerv6
echo $2 > /tmp/igb0_defaultgwv6
/usr/bin/logger -t rtsold "Received RA specifying route $2 for interface wan(igb0)"
fi
if [ ! -f /tmp/dhcp6c_igb0_lock ]; then
/usr/bin/touch /tmp/dhcp6c_igb0_lock
if [ -f /var/run/dhcp6c_igb0.pid ]; then
/bin/pkill -F /var/run/dhcp6c_igb0.pid
/bin/rm -f /var/run/dhcp6c_igb0.pid
/bin/sleep 1
fi
/usr/local/sbin/dhcp6c -D -c /var/etc/dhcp6c_wan.conf -p /var/run/dhcp6c_igb0.pid igb0
/usr/bin/logger -t rtsold "Starting dhcp6 client for interface wan(igb0)"
else
/usr/bin/logger -t rtsold "RTSOLD Lock in place - sending SIGHUP to dhcp6c"
dhcp6c_pid=$(cat "/var/run/dhcp6c_igb0.pid")
/bin/kill -1 ${dhcp6c_pid}
fi
</pre>
<p>However igb0_routerv6/igb0_defaultgwv6 files were not created as well as "Received RA specifying route $2 for interface wan(igb0)" was not logged in the system logs, so we know that conditional code was not executed and that there was no second argument passed to the script.</p>
<p>Here is where I think the problem lies:</p>
<p>in 2.4.5 code that executed rtsold looked like this:</p>
<pre>
mwexec("/usr/sbin/rtsold -1 " .
"-p {$g['varrun_path']}/rtsold_{$wanif}.pid " .
"-O {$g['varetc_path']}/rtsold_{$wanif}_script.sh " .
$wanif);
</pre>
<p>in 2.5.0 it looks like this:</p>
<pre>
mwexec("/usr/sbin/rtsold -1 " .
"-p {$g['varrun_path']}/rtsold_{$wanif}.pid " .
"-M {$g['varetc_path']}/rtsold_{$wanif}_script.sh " .
"-O {$g['varetc_path']}/rtsold_{$wanif}_script.sh " .
$wanif);
</pre>
<p>We can see that -M script was added for managed config. Looking at the source of rtsol (usr.sbin/rtsold/rtsol.c) we see that version used in 2.4.5 did not yet have support for the -M flag and current version used for 2.5.0 does support it.</p>
<p>So I ran rtsold manually with debugging turned on to see what I can find out (this is on 2.5.0):</p>
<pre>
# /usr/sbin/rtsold -f1 -d -D -p /var/run/rtsold_igb0.pid -M /var/etc/rtsold_igb0_script.sh -O /var/etc/rtsold_igb0_script.sh igb0*
rtsold: checking if igb0 is ready...
rtsold: igb0 is ready
rtsold: set timer for igb0 to 0s
rtsold: New timer is 0s
rtsold: timer expiration on igb0, state = 1
rtsold: set timer for igb0 to 4s
rtsold: New timer is 4s
rtsold: received RA from fe80::201:aaa:bbbb:cc on igb0, state is 2
rtsold: ManagedConfigFlag on igb0 is turned on
rtsold: script "/var/etc/rtsold_igb0_script.sh" status 0 <--
rtsold: OtherConfigFlag on igb0 is turned on
rtsold: Processing RA
rtsold: ndo = 0x7fffffffe220
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe240
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe260
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe280
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: rsid = [igb0:slaac]
rtsold: stop timer for igb0
rtsold: there is no timer
</pre>
<p>we see that managed config script is being executed and other config script is not being excuted, makes sense. What if we run it without -M flag</p>
<pre>
/usr/sbin/rtsold -f1 -d -D -p /var/run/rtsold_igb0.pid -O /var/etc/rtsold_igb0_script.sh igb0
rtsold: checking if igb0 is ready...
rtsold: igb0 is ready
rtsold: set timer for igb0 to 1s
rtsold: New timer is 1s
rtsold: timer expiration on igb0, state = 1
rtsold: set timer for igb0 to 4s
rtsold: New timer is 4s
rtsold: received RA from fe80::201:aaa:bbbb:cc on igb0, state is 2
rtsold: ManagedConfigFlag on igb0 is turned on
rtsold: OtherConfigFlag on igb0 is turned on
rtsold: Processing RA
rtsold: ndo = 0x7fffffffe250
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe270
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe290
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: ndo = 0x7fffffffe2b0
rtsold: ndo->nd_opt_type = 3
rtsold: ndo->nd_opt_len = 4
rtsold: rsid = [igb0:slaac]
rtsold: stop timer for igb0
rtsold: there is no timer
</pre>
<p>other config script is not being executed, hmmm. Looking at rtsol.c line 325 - it does not execute other script if ManagedConfigFlag is set in the response, even if -M is not specified. So basically it never executes other script if response comes back with managed flag.</p>
<p>So what I guess is happening is that people having problems receive RA response with ManagedConfigFlag turned on and Jim does not have ManagedConfigFlag turned on in his testing lab so for him rtsold executes other script instead of managed script. rtsold is patched to pass second argument to the other script (-O), but not to managed script (-M).</p>
<pre>
#define _ARGS_MANAGED managedconf_script, ifi->ifname <-- managed script, single argument
#define _ARGS_OTHER otherconf_script, ifi->ifname, ntopbuf <-- other script, two arguments
</pre> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524732021-03-17T00:01:10ZFlole Systems
<ul></ul><p>Exactly, and that was already described above. That's why I was wondering how this patch was supposed to fix it when all it does is ignoring everything if no second argument is present instead of adding that second argument.</p>
<p>Also in line 5091 of the interfaces.inc the -M flag is missing entirely, I think it should be added there aswell but I'm not sure about that.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524742021-03-17T00:10:27ZPaul K
<ul></ul><p>Yeah, I guess it was already described. The way I read that post though is that it was patched to pass second argument before, but is no longer patched to do that and not that it still works with -O script, but not with -M script.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524832021-03-17T10:35:32ZJim Pingle
<ul><li><strong>% Done</strong> changed from <i>100</i> to <i>50</i></li></ul><p>OK, so I did some sniffing and found that the systems I was observing had multiple devices on the segment responding to RA requests and though I thought it was pfSense (which is set to Managed+Other) responding but it was in fact another router which didn't have those flags. When I killed that and did the test above, I now get the same behavior others see.</p>
<p>So my fix did correct an issue seen in some networks, but not this main problem. We'll see what we can come up with for this shortly.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524852021-03-17T11:22:37ZGreg Shaffer
<ul></ul><p>Running rtsold manually, as Paul K (Thanks!) did, I see the same results.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524932021-03-17T13:15:16ZJim Pingle
<ul><li><strong>Assignee</strong> changed from <i>Jim Pingle</i> to <i>Renato Botelho</i></li></ul><p>OK I've tested with a patched rtsold on multiple systems and now I'm seeing the correct and expected behavior all around with M+O RA messages. We'll get that into builds shortly.</p>
<p>Thanks for all the info!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524942021-03-17T13:27:54ZRenato Botelhorenato@netgate.com
<ul><li><strong>Status</strong> changed from <i>In Progress</i> to <i>Feedback</i></li></ul><p>I've pushed rtsold fix to FreeBSD-src repository for all branches. It should be fine on next snapshot.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=524952021-03-17T13:29:54ZJim Pingle
<ul><li><strong>Subject</strong> changed from <i>Gateway value for DHCP6 interfaces lost after RA events without gateway information, breaks monitoring</i> to <i>Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway information</i></li></ul><p>Adjusting subject again to reflect both problems that were fixed since they were close, potentially related, but not identical</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525142021-03-18T08:08:32ZJim Pingle
<ul><li><strong>% Done</strong> changed from <i>50</i> to <i>100</i></li></ul><p>The complete set of fixes is in the current RC build, so it's ready for others to test. It works for me that's me and my environment so I'd like some more feedback.</p>
<p>Thanks!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525162021-03-18T08:17:35ZPatrik Lundquistpatrik.lundquist@gmail.com
<ul></ul><p>Working for me too now with 2.5.1.r.20210318.0300.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525172021-03-18T08:31:07ZJesse Beauclaire
<ul></ul><p>Hate to ask this here, but I am affected by this issue so it's sort of relevent... Can I update to the RC without killing my ability to stay on the Stable release channel? If yes, how can I grab the RC?<br />Thanks.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525182021-03-18T08:32:39ZJim Pingle
<ul></ul><p>Jesse Beauclaire wrote:</p>
<blockquote>
<p>Hate to ask this here, but I am affected by this issue so it's sort of relevent... Can I update to the RC without killing my ability to stay on the Stable release channel? If yes, how can I grab the RC?</p>
</blockquote>
<p>Just pick the RC branch, when it comes time for release it should lead naturally to the release and not future snapshots.</p>
<p><a class="external" href="https://www.netgate.com/blog/open-call-for-testing-pfsense-plus-and-ce-release-candidates.html">https://www.netgate.com/blog/open-call-for-testing-pfsense-plus-and-ce-release-candidates.html</a></p>
<p>If you have more questions, follow up on the forum: <a class="external" href="https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots">https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots</a></p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525242021-03-18T09:48:02ZMike McV
<ul></ul><p>This (2.5.1.r.20210318.0300) did not resolve it for me.</p>
<p>If i remove my static IPV6 monitor address Gateway monitoring stops working, but the protocol works and follows system routing.</p>
<p>I currently do not have the file /tmp/lagg0.666_defaultgwv6 (My upstream ISP) so the script is not creating this. I disabled the WAN IF and re enabled, and tried full rip replace of the IPV6 protocol from the system with no change.</p>
<p>Thank you for your help with this.</p>
<p>Info Snips...</p>
<p>2.5.1-RC (amd64)<br />built on Thu Mar 18 03:04:03 EDT 2021<br />FreeBSD 12.2-STABLE</p>
<p>WAN_DHCP<br />73.x.x.x 11.2ms 0.8ms 0.0% Online<br />WAN_DHCP6~ Pending Pending Pending Unknown</p>
<p>IPv6 Routes<br />Destination Gateway Flags Use Mtu Netif Expire<br />default fe80::2ca:e5ff:fec9:f022%lagg0.666 UG 2291 1500 lagg0.666 <br />::1 link#7 UH 817 16384 lo0</p>
<p>C:\Windows\System32>ping ipv6.google.com</p>
<p>Pinging ipv6.l.google.com [2607:f8b0:400a:803::200e] with 32 bytes of data:<br />Reply from 2607:f8b0:400a:803::200e: time=14ms<br />Reply from 2607:f8b0:400a:803::200e: time=16ms<br />Reply from 2607:f8b0:400a:803::200e: time=15ms<br />Reply from 2607:f8b0:400a:803::200e: time=14ms</p>
<p>Ping statistics for 2607:f8b0:400a:803::200e:<br /> Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),<br />Approximate round trip times in milli-seconds:<br /> Minimum = 14ms, Maximum = 16ms, Average = 14ms</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525252021-03-18T10:11:36ZJim Pingle
<ul></ul><p>Mike McV wrote:</p>
<blockquote>
<p>If i remove my static IPV6 monitor address Gateway monitoring stops working, but the protocol works and follows system routing.</p>
</blockquote>
<p>Did you reboot after doing that? Or at least edit/save/apply on the interface set to DHCP6?</p>
<blockquote>
<p>WAN_DHCP6~ Pending Pending Pending Unknown<br />default fe80::2ca:e5ff:fec9:f022%lagg0.666 UG 2291 1500 lagg0.666</p>
</blockquote>
<p>That would seem to suggest you are actually getting the gateway, but it's somehow not making it into dpinger. Maybe try clicking the trash can on the WAN_DHCP6 gateway entry on System > Routing, then reboot and see what happens.</p>
<blockquote>
<p>I currently do not have the file /tmp/lagg0.666_defaultgwv6 (My upstream ISP) so the script is not creating this. I disabled the WAN IF and re enabled, and tried full rip replace of the IPV6 protocol from the system with no change.</p>
</blockquote>
<p>That doesn't make sense otherwise you wouldn't have a <code>default</code> entry in the IPv6 routing table for that interface.</p>
<p>Something else may be going on with yours yet that is different from everyone else. Something else to try would be to manually invoke <code>rtsold</code> as others did in previous comments to see what it outputs and executes.</p>
<p>You should start a fresh thread under <a class="external" href="https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots">https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots</a> and we can discuss it more in detail there.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525262021-03-18T10:13:06ZFlole Systems
<ul></ul><p>Flole Systems wrote:</p>
<blockquote>
<p>Also in line 5091 of the interfaces.inc the -M flag is missing entirely, I think it should be added there aswell but I'm not sure about that.</p>
</blockquote>
<p>If that's an issue then you might be experiencing something related to this. Check if rtsold is running and if it's missing the -M flag, then you know if this could be the problem or not.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525272021-03-18T10:48:27ZGreg Shaffer
<ul></ul><p>2.5.1-RC-20210318-0300 resolved the IPv6 Gateway issue I was experiencing. Thanks for the fix!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525282021-03-18T10:56:27ZMike McV
<ul></ul><p>Jim Pingle wrote:</p>
<blockquote>
<p>If i remove my static IPV6 monitor address Gateway monitoring stops working, but the protocol works and follows system routing.</p>
<p>Did you reboot after doing that? Or at least edit/save/apply on the interface set to DHCP6?</p>
</blockquote>
<p>Yes</p>
<blockquote>
<p>WAN_DHCP6~ Pending Pending Pending Unknown<br />default fe80::2ca:e5ff:fec9:f022%lagg0.666 UG 2291 1500 lagg0.666</p>
<p>That would seem to suggest you are actually getting the gateway, but it's somehow not making it into dpinger. Maybe try clicking the trash can on the WAN_DHCP6 gateway entry on System > Routing, then reboot and see what happens.</p>
</blockquote>
<p>No Change</p>
<blockquote>
<p>I currently do not have the file /tmp/lagg0.666_defaultgwv6 (My upstream ISP) so the script is not creating this. I disabled the WAN IF and re enabled, and tried full rip replace of the IPV6 protocol from the system with no change.</p>
<p>That doesn't make sense otherwise you wouldn't have a default entry in the IPv6 routing table for that interface.</p>
</blockquote>
<p>Is there a possibility the scripts are not happy with a Tagged LAGG interface.(Outside of my expertise.)</p>
<blockquote>
<p>Something else may be going on with yours yet that is different from everyone else. Something else to try would be to manually invoke rtsold as others did in previous comments to see what it outputs and executes.</p>
</blockquote>
<p>Still working on this, I am not **ix/bsd fluent, I am a router guy, so working on syntax.</p>
<blockquote>
<p>You should start a fresh thread under <a class="external" href="https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots">https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots</a> and we can discuss it more in detail there.</p>
</blockquote>
<p>Will do</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525362021-03-18T11:43:38ZJim Pingle
<ul></ul><p>Mike McV wrote:</p>
<blockquote>
<p>Is there a possibility the scripts are not happy with a Tagged LAGG interface.(Outside of my expertise.)</p>
</blockquote>
<p>No because that's actually one of the scenarios I tested :-)</p>
<pre>
: cat /tmp/lagg0.4090_routerv6
fe80::208:a2ff:fe09:95b5
: pfSsh.php playback gatewaystatus | grep DHCP6
WAN_DHCP6 fe80::208:a2ff:fe09:95b5%lagg0.4090 694cf5c4 0.161ms 0.066ms 0.0% online none
: netstat -rn6 | grep default
default fe80::208:a2ff:fe09:95b5%lagg0.4090 UG lagg0.40
</pre> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525392021-03-18T11:56:19ZMike McV
<ul></ul><p>Got the syntax correct on the rtsold, and running this from the CLI resolves the issue, but it does not survive a reboot.</p>
<p>Re running it after reboot cat will restore GW Monitoring.</p>
<p>/tmp does not have the file lagg0.666_defaultgwv6 until the command is manually run.</p>
<p>Output below.</p>
<p>/usr/sbin/rtsold <del>f1 -d -D -p /var/run/rtsold_lagg0.666.pid -M /var/etc/rtsold_lagg0.666_script.sh -O /var/etc/rtsold_lagg0.666_script.sh lagg0.666<br />rtsold: checking if lagg0.666 is ready...<br />rtsold: lagg0.666 is ready<br />rtsold: set timer for lagg0.666 to 1s<br />rtsold: New timer is 1s<br />rtsold: timer expiration on lagg0.666, state = 1<br />rtsold: set timer for lagg0.666 to 4s<br />rtsold: New timer is 4s<br />rtsold: rtmsg type 1, len=240<br />rtsold: New timer is 4s<br />rtsold: rtmsg type 1, len=240<br />rtsold: New timer is 3s<br />rtsold: received RA from fe80::2ca:e5ff:fec9:f022 on lagg0.666, state is 2<br />rtsold: ManagedConfigFlag on lagg0.666 is turned on<br />rtsold: script "/var/etc/rtsold_lagg0.666_script.sh" status 0<br />rtsold: OtherConfigFlag on lagg0.666 is turned on<br />rtsold: Processing RA<br />rtsold: ndo = 0x7fffffffe1d0<br />rtsold: ndo</del>>nd_opt_type = 1<br />rtsold: ndo->nd_opt_len = 1<br />rtsold: ndo = 0x7fffffffe1d8<br />rtsold: ndo->nd_opt_type = 5<br />rtsold: ndo->nd_opt_len = 1<br />rtsold: ndo = 0x7fffffffe1e0<br />rtsold: ndo->nd_opt_type = 3<br />rtsold: ndo->nd_opt_len = 4<br />rtsold: ndo = 0x7fffffffe200<br />rtsold: ndo->nd_opt_type = 3<br />rtsold: ndo->nd_opt_len = 4<br />rtsold: ndo = 0x7fffffffe220<br />rtsold: ndo->nd_opt_type = 3<br />rtsold: ndo->nd_opt_len = 4<br />rtsold: ndo = 0x7fffffffe240<br />rtsold: ndo->nd_opt_type = 3<br />rtsold: ndo->nd_opt_len = 4<br />rtsold: rsid = [lagg0.666:slaac]<br />rtsold: stop timer for lagg0.666<br />rtsold: there is no timer</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525452021-03-18T14:33:39ZMike McV
<ul></ul><p>After quite a bit of digging and capturing i think i have found the missing link to my scenario. I will also create this in the 2.5.1 forum as I just tested again on the 2.4 train and this symptom does not happen there.</p>
<p>Fix/Workaround. <br />Be sure do not wait for RA is unchecked.</p>
<p>Observations.</p>
<p>If a router solicit and response sequence fully completes before the DHCP6 processes starts all will be fine.</p>
<p>If DHCP6 completes before the solicit response happens but the DHCP6 advertisement does not contain router information in the response (assumption to follow) the processes to listen for RA's to operate GW monitor functions stop running.</p>
<p>My ISP only provides address, delegation, and DNS in the DHCP6 advertisement.</p>
<p>@Jim Pingle, If there is anything you want me to look at before I open the new thread Let me know.</p>
<p>Thank You for the help</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525472021-03-18T14:46:49ZJim Pingle
<ul></ul><p>That's probably a bit tougher to replicate then. Like you said that's one for a new forum thread and likely a different Redmine issue once the details are hashed out since this one has seen two other related issues found and fixed already. I wouldn't want to drag this particular Redmine issue out further if it's fixed for all the other scenarios that were broken but the one you're seeing.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525482021-03-18T15:48:47ZFlole Systems
<ul></ul><p>I pointed out a possible cause for this 2 times now already and nobody seemed to care, so one last time:</p>
<p>Flole Systems wrote:</p>
<blockquote>
<p>Flole Systems wrote:</p>
<blockquote>
<p>Also in line 5091 of the interfaces.inc the -M flag is missing entirely, I think it should be added there aswell but I'm not sure about that.</p>
</blockquote>
<p>If that's an issue then you might be experiencing something related to this. Check if rtsold is running and if it's missing the -M flag, then you know if this could be the problem or not.</p>
</blockquote>
<p>In other words: If you check (using "ps -aux | grep rtsold") and it's missing the option there then this is most likely your problem.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525502021-03-18T20:32:55ZPaul K
<ul></ul><p>Tested with the new RC build and it is working fine for me know. Thanks for fixing it Jim and Renato!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525512021-03-18T20:45:57ZPaul K
<ul></ul><p>Flole Systems wrote:</p>
<blockquote>
<p>I pointed out a possible cause for this 2 times now already and nobody seemed to care, so one last time:</p>
<p>Flole Systems wrote:</p>
<blockquote>
<p>Flole Systems wrote:</p>
<blockquote>
<p>Also in line 5091 of the interfaces.inc the -M flag is missing entirely, I think it should be added there aswell but I'm not sure about that.</p>
</blockquote>
<p>If that's an issue then you might be experiencing something related to this. Check if rtsold is running and if it's missing the -M flag, then you know if this could be the problem or not.</p>
</blockquote>
<p>In other words: If you check (using "ps -aux | grep rtsold") and it's missing the option there then this is most likely your problem.</p>
</blockquote>
<p>I did look at line 5091 but there was nothing on that line related to rtsold. Anyway, I think you are talking about this line, 5055 in 2.5.0 branch.</p>
<pre>
$dhcp6cscriptwithoutra .= "/usr/sbin/rtsold -1 -p {$g['varrun_path']}/rtsold_{$wanif}.pid -O {$g['varetc_path']}/rtsold_{$wanif}_script.sh {$wanif}\n";
</pre>
<p>Jim, since Mike had "Do not wait for a RA" flag checked rtsold in his system was being launched from dhcp6c_wan_dhcp6withoutra_script.sh script (above code line) and not directly executed by PHP script. Once -M parameter is added to the above line it should solve his problem as well. Remember, my test showed that rtsold does not run -O script if RA response has ManagedConfigFlag enabled and there is no -M script provided, and Mike's response does have ManagedConfigFlag enabled.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525522021-03-18T21:17:55ZFlole Systems
<ul></ul><p>Paul K wrote:</p>
<blockquote>
<p>I did look at line 5091 but there was nothing on that line related to rtsold. Anyway, I think you are talking about this line, 5055 in 2.5.0 branch.</p>
</blockquote>
<p>Line 5055 in the 2.5.0 branch is now line 5091 in latest master. So yes, I was talking about that line.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525602021-03-19T07:17:02ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>In Progress</i></li><li><strong>Assignee</strong> changed from <i>Renato Botelho</i> to <i>Jim Pingle</i></li></ul><p>OK I thought it was more subtle than that but you are right, I was able to replicate it by checking that box, and confirming that adding -M there fixed it. I'll push a fix for that momentarily. Thanks!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525622021-03-19T07:25:09ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>In Progress</i> to <i>Feedback</i></li></ul><p>Applied in changeset <a class="changeset" title="Fix RA GW for "Do not wait for RA" path. Fixes #11454" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/f3488a18e3fc276b58ecc2aeb8f7471da9bd2088">f3488a18e3fc276b58ecc2aeb8f7471da9bd2088</a>.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525632021-03-19T08:02:57ZPete C
<ul></ul><p>Jim Pingle wrote:</p>
<blockquote>
<p>Applied in changeset <a class="changeset" title="Fix RA GW for "Do not wait for RA" path. Fixes #11454" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/f3488a18e3fc276b58ecc2aeb8f7471da9bd2088">f3488a18e3fc276b58ecc2aeb8f7471da9bd2088</a>.</p>
</blockquote>
<p>Will a different patch be available for 2.5.1?</p>
<p>Currently 2.5.1 is working but not showing gateway address.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525642021-03-19T08:15:57ZRenato Botelhorenato@netgate.com
<ul></ul><p>Pete C wrote:</p>
<blockquote>
<p>Jim Pingle wrote:</p>
<blockquote>
<p>Applied in changeset <a class="changeset" title="Fix RA GW for "Do not wait for RA" path. Fixes #11454" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/f3488a18e3fc276b58ecc2aeb8f7471da9bd2088">f3488a18e3fc276b58ecc2aeb8f7471da9bd2088</a>.</p>
</blockquote>
<p>Will a different patch be available for 2.5.1?</p>
<p>Currently 2.5.1 is working but not showing gateway address.</p>
</blockquote>
<p>Same patch was backported to 2.5.1. A new snapshot is building right now.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525652021-03-19T09:09:27ZPete C
<ul></ul><p>Thank you Renato.</p>
<p>f3488a18e3fc276b58ecc2aeb8f7471da9bd2088</p>
<p>Tried the above diff patch on my 2.5.1 build with the RA checkbox thing and it did not change anything.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525662021-03-19T09:38:27ZJim Pingle
<ul></ul><p>Pete C wrote:</p>
<blockquote>
<p>Tried the above diff patch on my 2.5.1 build with the RA checkbox thing and it did not change anything.</p>
</blockquote>
<p>Start a new thread on the forum at <a class="external" href="https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots">https://forum.netgate.com/category/83/21-02-2-2-5-1-snapshots</a> to diagnose your specific case further. When you post, include all the information from above (your config, log data, what happens when you run the command manually, etc), but don't put that in comments here, put it on a forum post.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525972021-03-19T12:41:44ZPete C
<ul></ul><p>Thank you Jim.</p>
<p>Moderator moved my original upgrade post on the forum to the snapshots section.</p>
<p>Updated to released snapshot and all is well now after updating to new release candidate: 2.5.1.r.20210318.0300</p>
<p>You guys are great!!!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525982021-03-19T13:27:34ZJesse Beauclaire
<ul></ul><p>RC worked great for me! dpinger works, and I could re-enable my traffic limiters (codel) with great success.</p>
<p>Thanks!!!</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=525992021-03-19T13:33:55ZJim Pingle
<ul></ul><p>I'll leave this open over the weekend to collect more feedback but I think at this point every problem scenario is solved.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=526132021-03-20T14:19:31ZMike McV
<ul></ul><p>All is good on my installation ...</p>
<p>Thank you to everyone for the help.</p> pfSense - Bug #11454: Gateway value for DHCP6 interfaces missing after RA events triggered script without gateway informationhttps://redmine.pfsense.org/issues/11454?journal_id=526402021-03-22T10:21:50ZRenato Botelhorenato@netgate.com
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul><p>It seems to be resolved now.</p>