6to4 nat question
Tom
tom at f-i-ts.net
Thu Apr 30 16:42:21 CEST 2009
On Thu, Apr 30, 2009 at 09:01:25AM -0400, Steve Bertrand wrote:
> Run a:
>
> # tcpdump -n -i ethX ip6
>
> ...on the Linux box that you are expecting to see the return packet on.
> Perhaps it does receive the response, but drops it before passing it up
> to the ping application for some reason.
Yes I did that, there are no responses coming in:
16:32:09.167005 IP6 2a02:c00:ffff::6 > 2a02:c00:0:ffff:ffff:0:d422:41ba: ICMP6, echo request, seq 1, length 64
16:32:10.170351 IP6 2a02:c00:ffff::6 > 2a02:c00:0:ffff:ffff:0:d422:41ba: ICMP6, echo request, seq 2, length 64
16:32:11.170328 IP6 2a02:c00:ffff::6 > 2a02:c00:0:ffff:ffff:0:d422:41ba: ICMP6, echo request, seq 3, length 64
> What software version are you using?
12.4(15)T1
> Also even with 12.4(15)T, I occasionally had to reload the
> system after changing NAT-PT settings before it started working.
um, I might try that (maybe tonite)
> I'm referencing a non-existing IPv6 access-list after v4-mapped, I'm not
> exactly sure why but since it is called "NOTCONFIGURED" in my config I
> assume I had a reason for it :-)
I also read this somewhere on the web and already tried it
with no success.
By the way, the debug output in my last post was incomplete,
here it is again, now complete:
Apr 30 14:30:07: IPv6 NAT: icmp src (2A02:C00:FFFF::6) -> (212.34.78.9),
dst (2A02:C00:0:FFFF:FFFF:0:D422:41BA) -> (212.34.65.186)
Apr 30 14:30:08: IPv6 NAT: ipv6nat_find_entry_v4tov6:
ref_count = 1,
usecount = 0, flags = 2, rt_flags = 0,
more_flags = 0
Apr 30 14:30:07: IPv6 NAT:v4tov6 entry not found
Apr 30 14:30:08: IPv6 NAT: Dropping v6tov4 packet
So, the router drops it, for whatever reason.
regards,
Tom
More information about the ipv6-ops
mailing list