FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian ISP

 
 
LinkBack Thread Tools
 
Old 08-11-2012, 09:11 PM
Povl Ole Haarlev Olsen
 
Default IPv6 config... grmpf!

On Sat, 11 Aug 2012, Michelle Konzack wrote:

Am 2012-08-11 16:41:16, hacktest Du folgendes herunter:

You could try a traceroute6 from your server to ipv6.google.com or
you could use Hurricane Electric's Looking Glass at
http://lg.he.net/ to do a traceroute from one of their routers to
your server.

My first Server <mail.tamay-dogan.net> seems to work now with IPv6
properly. Unfortunately, the second Server <dns1.tamay-dogan.net>
currently not. I hope I can resolv this problem this weekend.


What does ifconfig eth0 have to say about it?


However, while I use for the Server the IPv6 from
<2a01:4f8:d12:1300:::0:0> to <2a01:4f8:d12:1300:::0:ffff>
I have configured my <intranet1.tamay-dogan.net> subnet to use
<2a01:4f8:d12:1300:::1:0> to <2a01:4f8:d12:1300:::1:ffff>
but I can not establish connections between my my workstations and
servers:

--[ '/etc/bind/masters/net/tamay-dogan/net.tanmay-dogan.intranet1' ]--
@ 3600 IN SOA dns1.tamay-dogan.net. hostmaster.tamay-dogan.net. ( 1344640689 14400 3600 604800 86400 )


# dig @dns1.tamay-dogan.net +short -t soa intranet1.tamay-dogan.net
dns1.tamay-dogan.net. hostmaster.tamay-dogan.net. 1342711104 14400 3600 604800 86400

An older serial... Have you asked bind to reload the zone?


router.intranet1.tamay-dogan.net. IN AAAA 2a01:04f8:0d12:1300:0000:0000:0001:0001


This and the other AAAA records seems fine, but asking your DNS about that
AAAA-record doesn't return anything. I don't know if you're using views or
if it's because you haven't reloaded the new zone file.



Is there something missing?


Maybe a /etc/init.d/bind9 reload

Anyway... I would make sure IPv6 works before adding AAAA-records. It
seems like you're trying to do both at once and that's what making it
harder to troubleshoot the problem.


I.e. make sure a traceroute6 to 2a01:04f8:0d12:1300::1:1 works before you
try to get a traceroute6 to router.intranet1.tamay-dogan.net working.



On my Workstation it looks like:

--[ '/etc/network/interfaces' ]-----------------------------------------
auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 192.168.0.13
netmask 255.255.255.0
network 192.168.0.0
broadcast 192.168.0.255
gateway 192.168.0.1
dns-nameservers 192.168.0.11
dns-search intranet1.tamay-dogan.net

iface eth0 inet6 static
address 2a01:04f8:0d12:1300:0000:0000:0001:0013
netmask 64
gateway 2a01:04f8:0d12:1300:0000:0000:0000:0001


Seems ok so far.


dns-nameservers 2a01:04f8:0d12:1300:0000:0000:0001:0011
dns-search intranet1.tamay-dogan.net
up ip -6 route add 2a01:04f8:0d12:1300:0000:0000:0000:0001 dev eth0
down ip -6 route del 2a01:04f8:0d12:1300:0000:0000:0000:0001 dev eth0
up ip -6 route add default 2a01:04f8:0d12:1300:0000:0000:0000:0001 dev eth0
down ip -6 route del default 2a01:04f8:0d12:1300:0000:0000:0000:0001 dev eth0


I don't use those extra lines in my /etc/network/interfaces. The route
commands shouldn't be necessary as you already have a gateway line for
eth0.



Same on the <dns1>, <samba> and <cups> server and <work2> workstation
and of course, with there own rigth IPs.


Can you show us the output of ifconfig?


If I get my local network running with IPv6, I will continue to setup
the VPN between the <mail> server which then will be act like an IPv6
Broker and as Gateway...


I haven't dealt with VPNs before, so I can't help you with that.


I have some problems with "nmap" and IPv6. Do I need special options to
check an IPv6?


Besides -6? I don't think so.

# nmap -6 2a01:04f8:0d12:1300:0000:0000:0000:0002

works for me (22, 25, 80, 143, 443, 465, 587 and 993 open).

What problems are you having? Any error messages?

--
Povl Ole


--
To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/alpine.DEB.2.00.1208112219260.31523@noget.stderr.d k.localdomain
 
Old 08-12-2012, 10:36 PM
Michelle Konzack
 
Default IPv6 config... grmpf!

Hello Povl Ole Haarlev Olsen,

Am 2012-08-11 23:11:47, hacktest Du folgendes herunter:
> What does ifconfig eth0 have to say about it?

Exactly the same ad <mail>, except that the <dns1> has a different IPv6
block.

> # dig @dns1.tamay-dogan.net +short -t soa intranet1.tamay-dogan.net
> dns1.tamay-dogan.net. hostmaster.tamay-dogan.net. 1342711104 14400 3600 604800 86400
>
> An older serial... Have you asked bind to reload the zone?
>
> >router.intranet1.tamay-dogan.net. IN AAAA 2a01:04f8:0d12:1300:0000:0000:0001:0001
>
> This and the other AAAA records seems fine, but asking your DNS
> about that AAAA-record doesn't return anything. I don't know if
> you're using views or if it's because you haven't reloaded the new
> zone file.

--[ command 'dig @dns1.tamay-dogan.net ANY dns1.tamay-dogan.net' ]------
dns1.tamay-dogan.net. 3600 IN A 78.47.104.44
dns1.tamay-dogan.net. 3600 IN RRSIG A 5 3 3600 20120821071637 20120722070052 6642 tamay-dogan.net. T6Y2jh4dKpxA13LMVB0Avy/I7OTqcOT4nWw1f2KKmeUVnW3jcbAXBxdy Dys0G8Q1X4UwfnpcZVWZjiPkbL9n5o0u4OktT91YyGXcygfwz9 JX3Hyb cQACieHBZf0C3Y9WLC79iBTXN883X9UGWDOcWPWNly7oivqvLs yPO6em 6T4=
dns1.tamay-dogan.net. 86400 IN NSEC dns2.tamay-dogan.net. A RRSIG NSEC
dns1.tamay-dogan.net. 86400 IN RRSIG NSEC 5 3 86400 20120821071637 20120722070052 6642 tamay-dogan.net. sPmWPU/PnpyOJAavlUEQJaRELkFR+Wn++2y404k8onRYCsh6e4Q4QZqi 1v0oxGY/dVNIis4z6jIgYeezVokmIJZxIi1Nn5ZDFr3pmKITpu0BMq0C QBwrwdX5iZs6eI87V89QOcXyf6RQ/ecBJmk9NoQT2AhFU5UXKgq+JsSR qbo=
tamay-dogan.net. 3600 IN NS dns1.tamay-dogan.net.
tamay-dogan.net. 3600 IN NS dns2.tamay-dogan.net.
tamay-dogan.net. 3600 IN NS dns3.tamay-dogan.net.
tamay-dogan.net. 3600 IN RRSIG NS 5 2 3600 20120821072210 20120722065351 6642 tamay-dogan.net. jawQ0cWP4JDcUXmsAv4oTT29gWvFgBy3Uikl1Ds5J5ElNtqo7R 4CcMYN vmeDpEDkI4QOoNi4Pdc6MW+9uqkjA4oTfthpe0YTA9LS6djkES 2Di+Rf ADRPsPYNFRokIa7VOPA9jc1wunn1RiBG3dmeMpYECrlGHvnJZa eYBVOq kow=
dns2.tamay-dogan.net. 3600 IN A 217.147.94.23
dns3.tamay-dogan.net. 3600 IN A 78.47.247.21
dns2.tamay-dogan.net. 3600 IN RRSIG A 5 3 3600 20120821080218 20120722074147 6642 tamay-dogan.net. YDZ4JIUO8I5nLv3Bh+M1YNxQshgsSkynPf+w5hm3IzXxLUMoDl yXe1kg iSNejWLA5dWHjnl0K3sE2DKyg9i9c4xOhCwP82rKmf+j4dZW2g +B/gMF 7X1rey2SlBgzI30LS1cz3/G/DecL9b6mZ5eMh1kx9n40KBP4P6mD6grK sfs=
dns3.tamay-dogan.net. 3600 IN RRSIG A 5 3 3600 20120821071314 20120722070632 6642 tamay-dogan.net. l33YeRmRytXfjFGBqY/NU3TOOpiZNtAAMiDJ0+t7BPOfYPxQphuL57dL 7g68Eozv5EnksdBqugFfqOyMrGIHRDzPE3qoXP3olS7z1deoVZ 7XB/pp dmqpR818Y7Ob+P4f0LzWPIJzN08ibOxkRUbOIdGPCcFJH5WAjh ZWgwO2 p4Y=
------------------------------------------------------------------------

--[ command 'dig @dns1.tamay-dogan.net ANY mail.tamay-dogan.net' ]------
;; Truncated, retrying in TCP mode.
mail.tamay-dogan.net. 3600 IN A 78.47.247.21
mail.tamay-dogan.net. 3600 IN RRSIG A 5 3 3600 20120821071637 20120722070052 6642 tamay-dogan.net. TJtmxzw7t+0UEuqKcaU0fQneRson576Jp5YKv1smztNwxQlRZY c9KcXj 9KvdxUpjzyv2sbNknxyHdeZHFexF++I9qDS/jPnWZO7Zcw4m7aVAAbFn bT30x2WrclmmGI+4EJqHX5yBL1kWxS3KQm0GvFD4XtVXeZTfr6 Lll+Bm 504=
mail.tamay-dogan.net. 3600 IN AAAA 2a01:4f8:d12:1300::2
mail.tamay-dogan.net. 3600 IN RRSIG AAAA 5 3 3600 20120821071637 20120722070052 6642 tamay-dogan.net. QoCxQlXyCQlQaFWOZznVY9sNCGD6Rzggn/tmV4Lqy77fq69CAX8hwial 96UwmqFibEbsAW54Gx3JqeZCDd7ztcVhAjCnWTgzSdAljVOp7n KcmWsb bhZZpAulSJE8ijOYDU9HKbMDYL3WOaDW9T3z3yZOcHoQl6lBkZ apgDJN 6/A=
mail.tamay-dogan.net. 86400 IN NSEC myspace.tamay-dogan.net. A AAAA RRSIG NSEC
mail.tamay-dogan.net. 86400 IN RRSIG NSEC 5 3 86400 20120821071637 20120722070052 6642 tamay-dogan.net. g9DZhkxFmVFrfnaRdqeX5hOONChIhPuiYOCGO22sAwvnh/oyVCsC9yXC OgTuF65XlYTylmwTd5cQzifF+D1rIZbMmFJ0RaZViWxquMok3M oSOQVe XMH33l/jrpBB1P8d6MldunIy0qOZLKzYGXfMB73wNpUAF5ZK2SOWhcUX NW4=
tamay-dogan.net. 3600 IN NS dns3.tamay-dogan.net.
tamay-dogan.net. 3600 IN NS dns1.tamay-dogan.net.
tamay-dogan.net. 3600 IN NS dns2.tamay-dogan.net.
dns1.tamay-dogan.net. 3600 IN A 78.47.104.44
dns2.tamay-dogan.net. 3600 IN A 217.147.94.23
dns3.tamay-dogan.net. 3600 IN A 78.47.247.21
------------------------------------------------------------------------

Oops! -- It seems you are right.

Have to check why it does not load the new zone.

> >Same on the <dns1>, <samba> and <cups> server and <work2> workstation
> >and of course, with there own rigth IPs.
>
> Can you show us the output of ifconfig?

Currently I am not @home but will send it tomorrow, oops today!

> >I have some problems with "nmap" and IPv6. Do I need special options to
> >check an IPv6?
>
> Besides -6? I don't think so.
>
> # nmap -6 2a01:04f8:0d12:1300:0000:0000:0000:0002
>
> works for me (22, 25, 80, 143, 443, 465, 587 and 993 open).
>
> What problems are you having? Any error messages?

--[ command 'nmap -6 2a01:04f8:0d12:1300:0000:0000:0000:0002' ]---------

Starting Nmap 5.00 ( http://nmap.org ) at 2012-08-13 00:31 CEST
Note: Host seems down. If it is really up, but blocking our ping probes, try -PN
Nmap done: 1 IP address (0 hosts up) scanned in 1.03 seconds
------------------------------------------------------------------------

--[ command 'nmap -PN -v -A -6 2a01:04f8:0d12:1300:0000:0000:0000:0002' ]--

Starting Nmap 5.00 ( http://nmap.org ) at 2012-08-13 00:35 CEST
NSE: Loaded 30 scripts for scanning.
Initiating System DNS resolution of 1 host. at 00:35
Completed System DNS resolution of 1 host. at 00:35, 0.01s elapsed
Initiating Connect Scan at 00:35
Scanning mail.tamay-dogan.net (2a01:4f8:d12:1300::2) [1000 ports]
Completed Connect Scan at 00:35, 0.04s elapsed (1000 total ports)
Initiating Service scan at 00:35
NSE: Script scanning 2a01:4f8:d12:1300::2.
NSE: Script Scanning completed.
Host mail.tamay-dogan.net (2a01:4f8:d12:1300::2) is up.
0 ports scanned on mail.tamay-dogan.net (2a01:4f8:d12:1300::2)

Read data files from: /usr/share/nmap
Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 1.68 seconds
------------------------------------------------------------------------

Seems to be a local problem...

Thanks, Greetings and nice Day/Evening
Michelle Konzack

--
##################### Debian GNU/Linux Consultant ######################
Development of Intranet and Embedded Systems with Debian GNU/Linux
Internet Service Provider, Cloud Computing
<http://www.itsystems.tamay-dogan.net/>
<http://www.debian.tamay-dogan.net/>

itsystems@tdnet Jabber linux4michelle@jabber.ccc.de
Owner Michelle Konzack

Gewerbe Strasse 3 Tel office: +49-176-86004575
77694 Kehl Tel mobil: +49-177-9351947
Germany Tel mobil: +33-6-61925193 (France)

USt-ID: DE 278 049 239

Linux-User #280138 with the Linux Counter, http://counter.li.org/
 

Thread Tools




All times are GMT. The time now is 03:21 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org