News: This forum is now permanently frozen.
Pages: [1]
Topic: IPV6 not fully disabled  (Read 5840 times)
« on: February 22, 2011, 13:12:01 »
ccaron *
Posts: 6

My mono runing 1.33b2  is configured with IPV6 disabled but the DHCP seems to report enough information to make Windows 7 beleve IPV6 is available.

When I try to access a website reporting an IPV6 address in his DNS record Windows 7 first try to access the server using this protocol and after a timeout of 20 sec try with IPV4.

I enabled the IPV6 support once to play with but now the option is disabled. I don't know if this is part of the problem.
« Reply #1 on: February 22, 2011, 15:38:05 »
iridris ***
Posts: 145

Can you do an 'ipconfig /all' on your Windows 7 machine and post the results?  It is possible that Windows is trying to use a Teredo interface to access IPv6.
« Reply #2 on: February 22, 2011, 20:43:20 »
ccaron *
Posts: 6

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : champignac.com
   IPv6 Address. . . . . . . . . . . : 2001:db8:1:0:294f:4e02:8ab4:be8f
   Temporary IPv6 Address. . . . . . : 2001:db8:1:0:691f:4efd:1968:4248
   Link-local IPv6 Address . . . . . : fe80::294f:4e02:8ab4:be8f%11
   IPv4 Address. . . . . . . . . . . : 10.50.0.97
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::222:75ff:fe34:b619%11
                                       10.50.0.1

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{5DA80E31-DF3A-4E83-8BF0-AD47C18B3913}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.orchid-management.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.champignac.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : champignac.com

Tunnel adapter Local Area Connection* 20:

   Connection-specific DNS Suffix  . :
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:349e:ec94:aa25:9614
   Link-local IPv6 Address . . . . . : fe80::349e:ec94:aa25:9614%23
   Default Gateway . . . . . . . . . :

Tunnel adapter isatap.{FF11042A-D4D8-4976-9761-76890A9FA995}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
« Reply #3 on: February 23, 2011, 14:56:43 »
ccaron *
Posts: 6

The same when connected to an other network

PPP adapter Home:

   Connection-specific DNS Suffix  . :
   IPv4 Address. . . . . . . . . . . : 10.50.0.224
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . :

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : orchid-management.com
   Link-local IPv6 Address . . . . . : fe80::f9db:d765:4f43:92e0%11
   IPv4 Address. . . . . . . . . . . : 10.10.0.29
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.10.0.9

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{5DA80E31-DF3A-4E83-8BF0-AD47C18B3913}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{33966C2F-53C3-4B34-91C1-C3B9D1F88AD4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{FF11042A-D4D8-4976-9761-76890A9FA995}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{730D013C-B8BA-4353-B51F-E7F49CB29C92}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter Local Area Connection* 20:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.orchid-management.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : orchid-management.com
« Reply #4 on: February 24, 2011, 09:30:21 »
Manuel Kasper
Administrator
*****
Posts: 364

Maybe some remnants in the configuration are causing router advertisements to be sent by m0n0wall even though you have disabled IPv6... could you post your (anonymized) config.xml? Perhaps we're missing a check on whether IPv6 is enabled somewhere in the code. Thanks!
« Reply #5 on: February 24, 2011, 17:18:30 »
ccaron *
Posts: 6

<?xml version="1.0"?>
<m0n0wall>
   <version>1.8</version>
   <lastchange>1297890202</lastchange>
   <system>
      <hostname>mono</hostname>
      <domain>mydomain.com</domain>
      <dnsallowoverride/>
      <username>admin</username>
      <password>$1$2xGLA75j$W/jiJc00HYBZX7kFjxjQv0</password>
      <timezone>Europe/Zurich</timezone>
      <time-update-interval>300</time-update-interval>
      <timeservers>0.m0n0wall.pool.ntp.org</timeservers>
      <webgui>
         <protocol>https</protocol>
         <port/>
         <expanddiags/>
         <mbmon>
            <enable/>
            <type>C</type>
         </mbmon>
      </webgui>
   </system>
   <interfaces>
      <lan>
         <if>sis0</if>
         <ipaddr>10.99.0.1</ipaddr>
         <subnet>24</subnet>
         <media/>
         <mediaopt/>
         <ipaddr6>6to4</ipaddr6>
         <ipv6ra/>
         <ipv6ram/>
         <ipv6rao/>
      </lan>
      <wan>
         <if>sis1</if>
         <mtu/>
         <media/>
         <mediaopt/>
         <spoofmac/>
         <ipaddr>dhcp</ipaddr>
         <dhcphostname/>
         <ipaddr6>6to4</ipaddr6>
      </wan>
   </interfaces>
   <staticroutes/>
   <pppoe/>
   <pptp/>
   <bigpond>
      <username/>
      <password/>
      <authserver/>
      <authdomain/>
      <minheartbeatinterval/>
   </bigpond>
   <dyndns>
      <type>dyndns</type>
      <username>XXXXXX</username>
      <password>XXXXXX</password>
      <host>XXXXXX.dyndns.org</host>
      <mx/>
      <server/>
      <port/>
      <enable/>
   </dyndns>
   <dnsupdate>
      <host/>
      <ttl>60</ttl>
      <keyname/>
      <keydata/>
   </dnsupdate>
   <dhcpd>
      <lan>
         <enable/>
         <range>
            <from>10.99.0.10</from>
            <to>10.99.0.100</to>
         </range>
         <defaultleasetime/>
         <maxleasetime/>
         <staticmap>
            <mac>00:00:00:00:51:ce</mac>
            <ipaddr>10.99.0.2</ipaddr>
            <descr>zantafio</descr>
         </staticmap>
         <staticmap>
            <mac>00:00:00:00:ea:7c</mac>
            <ipaddr>10.99.0.3</ipaddr>
            <descr>wlan1.mydomain.com</descr>
            <next-server/>
            <filename/>
         </staticmap>
         <staticmap>
            <mac>00:00:00:00:7a:8b</mac>
            <ipaddr>10.99.0.4</ipaddr>
            <descr>mythtv.mydomain.com</descr>
            <next-server/>
            <filename/>
         </staticmap>
         <staticmap>
            <mac>00:00:00:00:eb:d2</mac>
            <ipaddr>10.99.0.5</ipaddr>
            <descr>Photosmart 8450</descr>
         </staticmap>
         <staticmap>
            <mac>00:00:00:00:33:70</mac>
            <ipaddr>10.99.0.6</ipaddr>
            <descr>switch1.mydomain.com</descr>
         </staticmap>
         <staticmap>
            <mac>00:00:00:00:04:90</mac>
            <ipaddr>10.99.0.7</ipaddr>
            <descr>switch2.mydomain.com</descr>
            <next-server/>
            <filename/>
         </staticmap>
         <next-server/>
         <filename/>
      </lan>
      <opt1>
         <range>
            <from>10.99.1.10</from>
            <to>10.99.1.255</to>
         </range>
         <defaultleasetime/>
         <maxleasetime/>
         <enable/>
         <next-server/>
         <filename/>
      </opt1>
   </dhcpd>
   <pptpd>
      <mode>server</mode>
      <redir/>
      <localip>10.99.0.240</localip>
      <remoteip>10.99.0.224</remoteip>
      <user>
         <name>XXXXX</name>
         <ip/>
         <password>XXXXXXX</password>
      </user>
      <radius>
         <server/>
         <secret/>
      </radius>
   </pptpd>
   <dnsmasq>
      <regdhcp/>
      <hosts>
         <host>mono</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.1</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>mythtv</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.4</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>switch1</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.6</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>switch2</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.7</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>wiki</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.4</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>wlan1</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.3</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>zantafio</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.2</ip>
         <descr/>
      </hosts>
      <hosts>
         <host>zina</host>
         <domain>mydomain.com</domain>
         <ip>10.99.0.4</ip>
         <descr/>
      </hosts>
      <enable/>
   </dnsmasq>
   <snmpd>
      <syslocation>XXXXXX</syslocation>
      <syscontact>XXXXX</syscontact>
      <rocommunity>public</rocommunity>
      <enable/>
   </snmpd>
   <diag>
      <ipv6nat>
         <ipaddr/>
      </ipv6nat>
   </diag>
   <bridge/>
   <syslog>
      <reverse/>
      <nentries>50</nentries>
      <remoteserver/>
      <resolve/>
   </syslog>
   <nat>
      <rule>
         <protocol>tcp</protocol>
         <external-port>80</external-port>
         <target>10.99.0.4</target>
         <local-port>8088</local-port>
         <interface>wan</interface>
         <descr>zina.mydomain.com</descr>
      </rule>
      <rule>
         <protocol>tcp</protocol>
         <external-port>8080</external-port>
         <target>10.99.0.4</target>
         <local-port>8080</local-port>
         <interface>wan</interface>
         <descr/>
      </rule>
      <portrange-low/>
      <portrange-high/>
   </nat>
   <filter>
      <rule>
         <type>pass</type>
         <interface>wan</interface>
         <protocol>tcp</protocol>
         <source>
            <any/>
         </source>
         <destination>
            <address>10.99.0.4</address>
            <port>8080</port>
         </destination>
         <descr/>
      </rule>
      <rule>
         <interface>wan</interface>
         <protocol>tcp</protocol>
         <source>
            <any/>
         </source>
         <destination>
            <address>10.99.0.4</address>
            <port>8088</port>
         </destination>
         <descr>NAT zina.mydomain.com</descr>
      </rule>
      <rule>
         <type>pass</type>
         <interface>pptp</interface>
         <source>
            <network>pptp</network>
         </source>
         <destination>
            <any/>
         </destination>
         <descr/>
      </rule>
      <rule>
         <type>pass</type>
         <descr>Default LAN -&gt; any</descr>
         <interface>lan</interface>
         <source>
            <network>lan</network>
         </source>
         <destination>
            <any/>
         </destination>
      </rule>
      <rule>
         <type>pass</type>
         <descr>Default IPsec VPN</descr>
         <interface>ipsec</interface>
         <source>
            <any/>
         </source>
         <destination>
            <any/>
         </destination>
      </rule>
      <tcpidletimeout/>
   </filter>
   <ipsec>
      <dns-interval/>
      <mobileclients>
         <natt/>
         <dpddelay/>
         <p1>
            <mode>aggressive</mode>
            <myident>
               <fqdn/>
            </myident>
            <encryption-algorithm>aes</encryption-algorithm>
            <hash-algorithm>sha1</hash-algorithm>
            <dhgroup>2</dhgroup>
            <lifetime/>
            <private-key/>
            <cert/>
            <authentication_method>pre_shared_key</authentication_method>
         </p1>
         <p2>
            <protocol>esp</protocol>
            <encryption-algorithm-option>3des</encryption-algorithm-option>
            <encryption-algorithm-option>blowfish</encryption-algorithm-option>
            <encryption-algorithm-option>cast128</encryption-algorithm-option>
            <encryption-algorithm-option>rijndael</encryption-algorithm-option>
            <hash-algorithm-option>hmac_sha1</hash-algorithm-option>
            <hash-algorithm-option>hmac_md5</hash-algorithm-option>
            <pfsgroup>0</pfsgroup>
            <lifetime/>
         </p2>
      </mobileclients>
      <mobilekey>
         <ident>XXXXXX</ident>
         <pre-shared-key>XXXXXXX</pre-shared-key>
      </mobilekey>
   </ipsec>
   <aliases/>
   <proxyarp/>
   <wol>
   </wol>
   <shaper>
      <magic>
         <p2plow/>
         <maskq/>
         <maxup>1000</maxup>
         <maxdown>10000</maxdown>
      </magic>
   </shaper>
   <vlans/>
</m0n0wall>
« Reply #6 on: February 24, 2011, 22:56:28 »
brushedmoss ****
Posts: 446

ipv6 is disabled in m0n0wall.

your first post shows ipv6 configured on wireless, but the v4 subnet on the interface isn't in your m0n0wall configuration, so I assume it was attached to some other network ?

your second output of ipconfig shows the normal windows 7 ipv6 configuration, it hasn't picked up any ipv6 from a network.

if you want to disable ipv6 in windows 7 read http://support.microsoft.com/kb/929852
« Reply #7 on: February 25, 2011, 00:52:12 »
ccaron *
Posts: 6

your first post shows ipv6 configured on wireless, but the v4 subnet on the interface isn't in your m0n0wall configuration, so I assume it was attached to some other network ?

I "anonymized" my config. The real IP range is 10.50.0.x like in the ipconfig dump not 10.99.0.x
« Reply #8 on: February 25, 2011, 20:48:08 »
Manuel Kasper
Administrator
*****
Posts: 364

Hmm, a quick check of the source code shows that the RA daemon shouldn't start if the global IPv6 enable setting is off. Haven't actually tested it though.

However, what strikes me as odd is that your m0n0wall config specifies 6to4 addressing, yet your PC has a 2001:db8:... address, which is the IPv6 documentation subnet. Or did you anonymize that and it actually had some 2002:... address?

Otherwise, is there any chance that another device on your network could be sending out RAs for 2001:db8?
« Reply #9 on: February 25, 2011, 21:31:45 »
ccaron *
Posts: 6

You are right. the route is advertised by a Belkin wifi router configured as an access point and not suposed to support IPV6 at all.

Sory for reporting a bug of an other device Wink

And thanks for your help.
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines