From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-wi0-f181.google.com (mail-wi0-f181.google.com [209.85.212.181]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id 48DA720082F for ; Sun, 18 Mar 2012 14:24:16 -0700 (PDT) Received: by wibhr17 with SMTP id hr17so2711701wib.10 for ; Sun, 18 Mar 2012 14:24:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=wXY9ffh9tSk1gk9DjKSHE2dW0Z+Lm/AJxnnoLTsvvks=; b=Jg7v9Jws5eEmgM2h6Z1mCNtQ4hEyUF8lhYPELhId2cqmWOSWJw+BiXaTD95G2YSC2C dAsOe9vKa+sYKpOnTbziTp2LbO58ctKqy2PriGWuzdgpXD3a61YSoz9TU2w6YoxV8bYM Nj4y/4FqcDTQHWAuj4EHR0f+64gVL9xG2PnHpyhYlA7pRVMiwWLgZqXqyhyyqA62d5MB c3v9N4Wh1PliETpDW2VbtJ9BgOKu3gkM0rfoXQsERWfl0dslT1vPHavAgJ5Fl/6NGfRf PgkoAshz9TmIU3OJszJJYM4Dd5ZdaWX2+VEQayDD/iG84j9C+blMvx0QkrrChde1xGgY d9sw== MIME-Version: 1.0 Received: by 10.216.133.137 with SMTP id q9mr5787789wei.12.1332105854232; Sun, 18 Mar 2012 14:24:14 -0700 (PDT) Received: by 10.223.126.209 with HTTP; Sun, 18 Mar 2012 14:24:14 -0700 (PDT) In-Reply-To: References: Date: Sun, 18 Mar 2012 14:24:14 -0700 Message-ID: From: Dave Taht To: cerowrt-devel@lists.bufferbloat.net Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: [Cerowrt-devel] mdns reflector issues on ipv6/babel routing through nat. X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 Mar 2012 21:24:16 -0000 On Sun, Mar 18, 2012 at 2:22 PM, Dave Taht wrote: > Once you get to a few routers, a few deep, (3 in series in this case, > 9 overall), the avahi mdns proxy starts to malfunction over ipv6, and > I ended up with a rather nasty broadcast storm. > > So I had to disable the ipv6 multicast of mdns in order to get my > network back in this (excessively) complex network. > > use-ipv6=3Dno in the /etc/avahi/avahi-daemon file > > Seems to work fine, two deep. Curiously, I did not observe a similar > storm for ipv4... > > Now this is across like 5 different versions of cerowrt, but it would > not surprise me that this is a =A0generic problem with avahi on ipv6, > and/or a symptom of the brain-damaged-ness of mdns in the first place. > > use-ipv6=3Dno > > I note that when you connect cero boxes together in a babel mesh > configuration, site-local multicast is not a problem, because it > doesn't work in the first place (by design). This can be construed as > an advantage (no broadcast storm), or disadvantage (mdns and > site-local multicast doesn't work across meshed links) Actually I was wrong. I'm STILL observing a broadcast storm, AND it is taking place across the meshed links too.... aggggh..... > Incidentally, I don't know if anyone would purposely inflict a network > this complex on themselves: > > http://pastebin.com/LzeeiCXg > > but it does illustrate that a complex, automagically routed, fault > tolerant ipv4 and ipv6 network IS feasible, so long as all internal > addresses are unique. > > The biggest problem I run into is that 'failover-capable, > fault-tolerant routing' introduces major headaches with firewall > rules. > > Another thing the above paste illustrates that you can mix and match > ipv4 nat with ipv6 fully meshed routing. > > The box I took that trace off has babel enabled on all interfaces, and > has the following rule at the top of it's babeld.conf file > > out if ge00 ip 0.0.0.0/0 deny > > (as do multiple other boxes in the lab on the external network) > > this prohibits announcing ipv4 routes across the natted ge00 > interface, but allows ipv6. In the caseof that paste, this particular > router has NO internal wired connections at all, it just meshes > internally for ipv4, and because ge00 is a higher quality (ethernet) > interface, babel chooses it for the default for ipv6 for most routes. > > > > -- > Dave T=E4ht > SKYPE: davetaht > US Tel: 1-239-829-5608 > http://www.bufferbloat.net --=20 Dave T=E4ht SKYPE: davetaht US Tel: 1-239-829-5608 http://www.bufferbloat.net