Hi misc@, Running 7.7 on amd64.
This might be kind of related to this tech@ thread (Allow rad(8) to advertise shorter lifetimes): https://marc.info/?l=openbsd-tech&m=175141292930845&w=2 I'll describe my setup. em0 gets a IPv4 and dhcpv6-PD. I think em0 picks up the route from slaac. dhcp6leased throws the prefix on em1. rad advertizes the dynamic prefix, also a fd::/8 (er, /64) style static prefix that I serve DNS on, and other things. This all works until I lock down too much stuff with pf. What seems to happen, mysteriously, is rad starts sending out the dynamic prefix with lifetime set to 0. If I make pf more permissive, it works fine. So clients end up dropping the dynamic, real IP route, and then start sending packets from the fd::/8 range out to the real internet. This doesn't work so well, as you might imagine. Not really sure what's happening to have the right route, but such a low lifetime. My "fix"/workaround was to tell rad to set a non-zero lifetime on the auto prefix, which it did not honor. It appeared to ignore those settings altogether. Curious if anyone else has run into this. Thanks! -Henrich
