From owner-freebsd-stable@FreeBSD.ORG Tue Apr 12 13:21:52 2011 Return-Path: Delivered-To: freebsd-stable@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E7A361065686 for ; Tue, 12 Apr 2011 13:21:52 +0000 (UTC) (envelope-from petefrench@ingresso.co.uk) Received: from constantine.ingresso.co.uk (constantine.ingresso.co.uk [IPv6:2001:470:1f09:176e::3]) by mx1.freebsd.org (Postfix) with ESMTP id AEEA98FC1D for ; Tue, 12 Apr 2011 13:21:52 +0000 (UTC) Received: from dilbert.london-internal.ingresso.co.uk ([10.64.50.6] helo=dilbert.ticketswitch.com) by constantine.ingresso.co.uk with esmtps (TLSv1:AES256-SHA:256) (Exim 4.73 (FreeBSD)) (envelope-from ) id 1Q9dXT-000Fvi-Qo for freebsd-stable@FreeBSD.org; Tue, 12 Apr 2011 14:21:51 +0100 Received: from petefrench by dilbert.ticketswitch.com with local (Exim 4.74 (FreeBSD)) (envelope-from ) id 1Q9dXT-0003hQ-Q1 for freebsd-stable@FreeBSD.org; Tue, 12 Apr 2011 14:21:51 +0100 To: freebsd-stable@FreeBSD.org Message-Id: From: Pete French Date: Tue, 12 Apr 2011 14:21:51 +0100 Cc: Subject: Latest STABLE appears to break IPv6 CARP (and other oddities) X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 Apr 2011 13:21:53 -0000 I updated to STABLE yesterday to get the net hast patches - all seemed fine, so I went round and upgraded all the machines. But since then have been fighting with some odd network issues - to the point where I have rolled back to an earlier kernel to fix them. The main issue for me appears to be that CARP under IPv6 broke. It seemed to work fine (interfaces failover properly) and behaves fine under IPv4. This is a pair of machines which are actin as a firewall - so there are CARP interfaces on the outside and the inside. On the inside, none of the machines can ping the CARP IPv6 address. TAs this is their default gateway, this means they lose connectivity to the outside world. Another effect I have is that the firewall machines cannot ping any aliased IPv6 addresses on the other boxes - I add an alias to an interface, and the orignal address can be pinged, but the alias cannot. So I rolled back to an earlier kernel - I now have working IPv6 connectivity again via CARP. But I have left the rest of the machines on yesterdays kernel, and there are still some oddities with networking - the aliased address problem on one of the machines is not working. The cusrious thing is, on the ourside (where the downstream machines are Cisco routers) then CARP worked fine with the upgrade. Itr is only when talking internally to other FreeBSD machines that I see problems. Anyone have any ideas ? -pete.