[Openvpn-users] IPv6 client-to-client communication

Sat, 16 Nov 2013 20:48:43 -0800 

I have a (tap) server setup with `topology subnet` and an IPv6 pool
configured `server-ipv6 fdda:ba64:dcdc:1::1/64'

Clients can connect, get IPv6 addresses and ping the server on the address
it assigns its tap interface (fdda:ba64:dcdc:1::2).  The clients can not
communicate with one another- functionality that is required for my
application.  Running two instances of openvpn on the server DOES allow the
clients to communicate (with a single client connected to each instance) so
I know the server is configured to route IPv6 traffic correctly.  I can't
use the client-to-client functionality in openvpn because I will need to do
traffic filtering in the server.

With 2 clients connected with the addresses fdda:ba64:dcdc:1::1002 and
fdda:ba64:dcdc:1::1001, when trying to ping from one to the other, I can
see the NDP traffic on the server's tap interface-

03:55:01.978033 IP6 fdda:ba64:dcdc:1::1002 > ff02::1:ff00:1001: ICMP6,
neighbor solicitation, who has fdda:ba64:dcdc:1::1001, length 32
03:55:02.977670 IP6 fdda:ba64:dcdc:1::1002 > ff02::1:ff00:1001: ICMP6,
neighbor solicitation, who has fdda:ba64:dcdc:1::1001, length 32
03:55:03.977732 IP6 fdda:ba64:dcdc:1::1002 > ff02::1:ff00:1001: ICMP6,
neighbor solicitation, who has fdda:ba64:dcdc:1::1001, length 32
03:55:04.978194 IP6 fdda:ba64:dcdc:1::1002 > ff02::1:ff00:1001: ICMP6,
neighbor solicitation, who has fdda:ba64:dcdc:1::1001, length 32
03:55:05.977656 IP6 fdda:ba64:dcdc:1::1002 > ff02::1:ff00:1001: ICMP6,
neighbor solicitation, who has fdda:ba64:dcdc:1::1001, length 32

Is this an issue with the IPv6 multicast implementation in openvpn?  Is
there some extra server configuration necessary for Linux to route IPv6
multicast traffic in-and-out the same interface?

I'm not quite sure where to look from here- thanks for any pointers!

ryan

------------------------------------------------------------------------------
DreamFactory - Open Source REST & JSON Services for HTML5 & Native Apps
OAuth, Users, Roles, SQL, NoSQL, BLOB Storage and External API Access
Free app hosting. Or install the open source package on any LAMP server.
Sign up and see examples for AngularJS, jQuery, Sencha Touch and Native!
http://pubads.g.doubleclick.net/gampad/clk?id=63469471&iu=/4140/ostg.clktrk
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to