Regression #12582
closedRADVD can be started on both HA nodes when configured with an IPv6 link-local address
100%
Description
If IPv6 link-local address is used as `rainterface`, the status of the CARP VIP is not checked (get_carp_interfaces_status()
)
related to #11103
Related issues
Updated by Viktor Gurov almost 3 years ago
- Related to Feature #11103: Use virtual link local IP address as RA source address for HA environments added
Updated by Viktor Gurov almost 3 years ago
Updated by znerol znerol almost 3 years ago
Theory¶
It is in fact expected behavior that radvd
is starting on both hosts. radvd
is supposed to send RAs for a given interface iff the link-local address configured in AdvRASrcAddress
is present on the interface.
Practice¶
This works well in Linux because Keepalived makes sure that the virtual link-local address is configured on one node only. In BSD/CARP however, a virtual CARP address is always configured on all nodes. It is just flaged with MASTER/BACKUP.
Regrettably radvd
is not aware of the address flags in BSD. Thus, it will send RAs regardless of whether a link-local address is flagged with MASTER or BACKUP. I intended to report that upstream, but honestly forgot about it.
Summary¶
Thus, I agree that we need a workaround in pfSense
until upstream radvd
is patched to respect MASTER/BACKUP address flags on BSDs.
Updated by znerol znerol almost 3 years ago
Upstream issue: https://github.com/radvd-project/radvd/issues/162
Updated by Jim Pingle almost 3 years ago
- Status changed from New to Pull Request Review
- Assignee set to Viktor Gurov
- Target version set to CE-Next
- Plus Target Version set to Plus-Next
Updated by Viktor Gurov almost 3 years ago
- Status changed from Pull Request Review to Feedback
- % Done changed from 0 to 100
Applied in changeset abc7b3056fafb57e8941103f2565b5b113edd177.
Updated by Jim Pingle almost 3 years ago
- Target version changed from CE-Next to 2.7.0
- Plus Target Version changed from Plus-Next to 22.05
Updated by Jim Pingle over 2 years ago
- Subject changed from RADVD can be started on both HA nodes if IPv6 link-local address is used to RADVD can be started on both HA nodes when configured with an IPv6 link-local address
Updating subject for release notes.
Updated by Jim Pingle over 2 years ago
- Status changed from Feedback to Resolved
Seems to be OK. With radvd set to use an LL VIP I still only see radvd running on the node with master status on its VIPs.