Package: keepalived
Version: 1:1.2.9-1
Jessie should be updated to keepalived v1.2.10 or newer to avoid
IPv6 realserver problems.
keepalived versions before commit 2c89ddb [1], included in v1.2.10,
fail to add/remove IPv6 realservers to the ipvs table if the
keepalived daemon does the ip_vs module loading on its own. The
TCP_CHECK returns correctly (getsockopt SO_ERROR = 0), but then
libipvs fails to insert/remove the realserver via netlink:
Keepalived_healthcheckers[2497]: Adding service [2001:1234::63]:80 to VS
[2001:1234::125]:80
Keepalived_healthcheckers[2497]: IPVS: Operation not supported with
specified address family
...
Keepalived_healthcheckers[2497]: Removing service [2001:1234::63]:80
from VS [2001:1234::125]:80
Keepalived_healthcheckers[2497]: IPVS: Operation not supported with
specified address family
The ipvs table thus ends up only with IPv4 entries.
This is prone to happening on system boot, and can be worked around
either with the commit in [1] (although it's not entirely clear to me
which exact part of it fixes the issue), or by loading the ip_vs
module early by including it in /etc/modules.
As keepalived doesn't support IPv6 when compiled without libnl
support, I made sure it was present. Both libnl1 and libnl-3 exhibited
the same problem on v1.2.9. Both worked fine on v1.2.10 and later
versions.
[1]: libipvs-2.6: sync with libipvs from ipvsadm 1.27
https://github.com/acassen/keepalived/commit/2c89ddbe8858a450aae96f44a4627cf1e5d2ad65
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
