Page MenuHomeVyOS Platform
Create Task
Maniphest T3068

Automatic generation of IPv6 link local addresses for tunnel interfaces
Closed, ResolvedPublicENHANCEMENT
Actions

Description

When you create a tunnel (GRE, IPIP,..) no IPv6 Link Local address is created. This behaviour is different to real interfaces or other tunnel interfaces like L2TPv3. This is happen because interface has no MAC. Link local address is required by different protocols (e.g. OSPF) and have to set manually. Really stupid.. I think we should unify this process to assign IPv6 Link Local address after tunnel is created.

Steps:

  1. Create tunnel interfaces
  2. Generate unique IPv6 Link Local address
  3. Assign address to tunnel interface

Details

Difficulty level
Unknown (require assessment)
Version
1.3-rolling-202011130217
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)

Related Objects
Search...

Event Timeline

ernstjo created this task.Nov 13 2020, 9:48 AM
c-po added a subscriber: c-po.EditedNov 13 2020, 10:38 AM

@ernstjo yeah we also have this "situation" with wireguard tunnels. Should be fixed in general with the rewrite of tunnel to get_config_dict() which is the second last interface not using this scheme, vti is last.

ernstjo added a comment.Nov 13 2020, 10:40 AM

I have written an "fast" fix until tunnel is rewritten. Can you test it?

pasik added a subscriber: pasik.Nov 13 2020, 2:47 PM
Viacheslav added a subscriber: Viacheslav.Nov 13 2020, 7:03 PM

T2802

c-po changed the task status from Open to In progress.Nov 14 2020, 6:07 PM
c-po claimed this task.
c-po triaged this task as Normal priority.
c-po changed Version from - to 1.3-rolling-202011130217.

VyOS 1.2 adds a random link-local address on tunnel interfaces by default.

set interfaces tunnel tun10 encapsulation 'ipip6'
set interfaces tunnel tun10 local-ip '2001:db8:f00::1'
set interfaces tunnel tun10 remote-ip '2001:db8:f00::2'

results in

9: tun10@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1452 qdisc noqueue state UNKNOWN group default qlen 1000
    link/tunnel6 2001:db8:f00::1 peer 2001:db8:f00::2
    inet6 fe80::4007:96ff:fe5d:5b20/64 scope link
       valid_lft forever preferred_lft forever
c-po added a parent task: T3072: Migrate tunnel interfaces to new get_config_dict() approach.Nov 20 2020, 11:28 AM
c-po closed this task as Resolved.Nov 20 2020, 11:57 AM
c-po mentioned this in T3077: WireGuard: automatically create link-local IPv6 adresses.Nov 20 2020, 1:27 PM