Project

General

Profile

Tâche #26475

Scénario #26521: Gérer correctement la désactivation de l'IPv6 sur EOLE 2.7

Impossible d'instancier un serveur a cause d'IPv6

Added by Emmanuel GARETTE over 2 years ago. Updated over 2 years ago.

Status:
Fermé
Priority:
Normal
Start date:
01/21/2019
Due date:
% Done:

100%

Estimated time:
0.10 h
Spent time:
Remaining (hours):
0.0

Description

Le serveur n'est pas en DHCP par contre il est impossible de l'instancier :

root@zephir:~# CreoleGet eth0_method
statique
root@zephir:~# ip addr show
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
2: ens3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether 02:00:c0:a8:1e:3b brd ff:ff:ff:ff:ff:ff
    inet 192.168.30.58/24 brd 192.168.30.255 scope global ens3
       valid_lft forever preferred_lft forever
    inet6 fdea:9906:11ae::b5c/128 scope global noprefixroute 
       valid_lft forever preferred_lft forever
    inet6 fdea:9906:11ae::c0ff:fea8:1e3b/64 scope global mngtmpaddr noprefixroute 
       valid_lft forever preferred_lft forever
    inet6 fd8e:d1f8:4c61::c0ff:fea8:1e3b/64 scope global mngtmpaddr noprefixroute 
       valid_lft forever preferred_lft forever
    inet6 fe80::c0ff:fea8:1e3b/64 scope link 
       valid_lft forever preferred_lft forever
root@zephir:~# systemd-resolve --status
Global
         DNS Servers: 192.168.30.254
          DNS Domain: cadoles.com
          DNSSEC NTA: 10.in-addr.arpa
                      16.172.in-addr.arpa
                      168.192.in-addr.arpa
                      17.172.in-addr.arpa
                      18.172.in-addr.arpa
                      19.172.in-addr.arpa
                      20.172.in-addr.arpa
                      21.172.in-addr.arpa
                      22.172.in-addr.arpa
                      23.172.in-addr.arpa
                      24.172.in-addr.arpa
                      25.172.in-addr.arpa
                      26.172.in-addr.arpa
                      27.172.in-addr.arpa
                      28.172.in-addr.arpa
                      29.172.in-addr.arpa
                      30.172.in-addr.arpa
                      31.172.in-addr.arpa
                      corp
                      d.f.ip6.arpa
                      home
                      internal
                      intranet
                      lan
                      local
                      private
                      test

Link 2 (ens3)
      Current Scopes: DNS
       LLMNR setting: yes
MulticastDNS setting: no
      DNSSEC setting: no
    DNSSEC supported: no
         DNS Servers: fd8e:d1f8:4c61::1
                      fdea:9906:11ae::1
root@zephir:~# instance 
---------------------------------------------------------------------------------------
                                Début de configuration                                 
---------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------
                               Préparation pour instance                               
---------------------------------------------------------------------------------------
Restart Systemd service creoled                                                [  OK  ]
Problème de validation de la configuration, veuillez vérifier la configuration du serveur

Pour plus d'informations consulter : la documentation du module ou
la documentation commune 'Mise en œuvre des modules EOLE'.

Erreur creole 3 : "fd8e" est une valeur invalide pour l'option "Adresse IP du serveur DNS fourni par un serveur DHCP" de type IP

Associated revisions

Revision aeaa33d1 (diff)
Added by Fabrice Barconnière over 2 years ago

IPV6 activation/desactivation is not correctly supported by netplan

ref #26475

Revision 14031436 (diff)
Added by Fabrice Barconnière over 2 years ago

IPV6 activation/desactivation is not correctly supported by netplan

  • debian/eole-server.postinst : force ipv6 desactivation with Grub

ref #26475

Revision 8a9a0f65 (diff)
Added by Fabrice Barconnière over 2 years ago

IPV6 activation/desactivation is not correctly supported by netplan

  • debian/eole-server.postinst : force ipv6 desactivation with Grub

ref #26475

Revision c23c2c2e (diff)
Added by Fabrice Barconnière over 2 years ago

IPv6 activation will be managed when netplan support it ;-)

ref #26475

Revision b473e58b (diff)
Added by Fabrice Barconnière over 2 years ago

Revert "IPv6 activation will be managed when netplan support it ;-)"

We don't know the results on whole system

ref #26842

This reverts commit c23c2c2ea9dfdcc87926197b8d360d39c99d0725.

Revision 49c71368 (diff)
Added by Fabrice Barconnière over 2 years ago

Revert "IPv6 activation will be managed when netplan support it ;-)"

We don't know the results on whole system

ref #26842

This reverts commit c23c2c2ea9dfdcc87926197b8d360d39c99d0725.

Revision b1e55bc2 (diff)
Added by Fabrice Barconnière over 2 years ago

Revert "IPV6 activation/desactivation is not correctly supported by netplan"

We don't know the results on whole system

ref #26842

This reverts commit 14031436e898db0c5aaefb9667b5f24493916257.

Revision 8d2fd322 (diff)
Added by Fabrice Barconnière over 2 years ago

Revert "IPV6 activation/desactivation is not correctly supported by netplan"

We don't know the results on whole system

ref #26842

This reverts commit 8a9a0f6583482be09289691f8e3db9d7057b4966.

Revision 6402e565 (diff)
Added by Fabrice Barconnière over 2 years ago

auto_dns function added IP DNS without control

  • creole/eosfunc.py : auto_dns add only IPv4 addresses

ref #26475

History

#2 Updated by Joël Cuissinat over 2 years ago

  • Parent task set to #26521

#3 Updated by Joël Cuissinat over 2 years ago

  • Status changed from Nouveau to En cours
  • Assigned To set to Joël Cuissinat

Il existe déjà le template suivant mais cela ne doit plus fonctionner :

dicos/00_common.xml:        <file name='/etc/modprobe.d/blacklist-eole.conf'/>

# cat /etc/modprobe.d/blacklist-eole.conf 
blacklist ipv6

#4 Updated by Fabrice Barconnière over 2 years ago

https://askubuntu.com/questions/1046057/disabling-ipv6-in-ubuntu-server-18-04 : "... Netplan seems to have too many bugs for 18.04 STABLE IMO..."

You only need to add this to /etc/default/grub

GRUB_CMDLINE_LINUX="ipv6.disable=1" 

I also did it on GRUB_CMDLINE_LINUX_DEFAULT to be safe

#5 Updated by Joël Cuissinat over 2 years ago

  • Assigned To changed from Joël Cuissinat to Fabrice Barconnière

#6 Updated by Fabrice Barconnière over 2 years ago

  • Status changed from En cours to Résolu
  • % Done changed from 0 to 100
  • Estimated time set to 0.10 h
  • Remaining (hours) set to 0.1

#7 Updated by Fabrice Barconnière over 2 years ago

Un bug de fping : https://github.com/schweikert/fping/issues/118 provoque une erreur au diagnose (#26842).
Il est corrigé en version 4.1. Malheureusement, on est en 4.0.6 sur Bionic.
Du coup, on réactive ipv6 et on adapte le code creole:6402e565

#8 Updated by William Petit over 2 years ago

Il semblerait qu'appliquer le patch suivant sur le fichier /usr/share/eole/creole/00-eole.yaml permette d'éviter de récupérer des IPv6 avec Netplan:

--- distrib/00-eole.yaml    2018-12-18 14:04:11.000000000 +0100
+++ modif/00-eole.yaml    2019-02-14 09:03:01.760382428 +0100
@@ -21,6 +21,10 @@
             %if %%interface_gw == %%getVar('nom_zone_' + %%current_interface):
             gateway4: %%adresse_ip_gw
             %end if
+            %if %%getVar('activer_ipv6') == "non" 
+            dhcp6: no
+            accept-ra: no
+            %end if
         %elif %%interface_mode == 'dhcp'
             dhcp4: yes
         %else

Voir https://netplan.io/reference pour plus d'informations.

#9 Updated by Gilles Grandgérard over 2 years ago

  • Status changed from Résolu to Fermé
  • Remaining (hours) changed from 0.1 to 0.0

Also available in: Atom PDF