Paul (efe0eff9) at 24 Dec 19:40
Paul (29a687bd) at 24 Dec 19:40
Paul (7507bcc2) at 24 Dec 19:40
Paul (5f91d085) at 24 Dec 19:36
add restart playbook
Paul (0be7f081) at 24 Dec 19:36
switch to caddy
Paul (924e1de9) at 20 Nov 01:03
update srv02 ip
Paul (eddf7817) at 08 Oct 12:55
wip
Paul (c7bcf334) at 30 Aug 03:27
add new underlay_vpn role. Wireguard based inter-gateway vpn
Paul (fc31a79c) at 28 Aug 00:17
ignore another helper script
Paul (f551890c) at 28 Aug 00:16
increase parallel ansible connections
Paul (d3f7b682) at 28 Aug 00:16
update vars
Paul (adf08925) at 28 Aug 00:15
update roles
Paul (2bad2954) at 28 Aug 00:14
update bird config
Paul (a154069b) at 28 Aug 00:13
update roles
The following (redundant) route was added in systemd-networkd:
[Route]
Destination=2001:67c:2d50::/64
Source=2001:67c:2d50::/64
And resulted in the weird behaviour that traffic to the ffhl subnet (2001:67c:2d50::/64) was routed over the wrong interface:
tux@srv02:~$ sudo ip -6 route show table cache
2001:67c:2d50:0:6a72:51ff:fe3a:ba63 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 382sec mtu 1480 pref medium
2001:67c:2d50:0:1ad6:c7ff:fe51:7cf6 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 320sec mtu 1480 pref medium
2001:67c:2d50:0:eade:27ff:feb3:184 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 36sec mtu 1480 pref medium
2001:67c:2d50:0:6a72:51ff:fe32:27d9 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 27sec mtu 1480 pref medium
2001:67c:2d50:0:f6f2:6dff:fe52:80f2 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 261sec mtu 1480 pref medium
2001:67c:2d50:0:e0ae:aaff:fee6:5c3 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 439sec mtu 1480 pref medium
2001:67c:2d50:0:f6f2:6dff:fe52:7ec8 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 140sec mtu 1480 pref medium
2001:67c:2d50:0:26a4:3cff:fe69:aba0 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 382sec mtu 1480 pref medium
2001:67c:2d50:0:c66e:1fff:fe2c:9424 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 261sec mtu 1480 pref medium
2001:67c:2d50:0:f6f2:6dff:fe40:46f6 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 566sec mtu 1480 pref medium
2001:67c:2d50:0:c66e:1fff:fec9:c5dc via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 445sec mtu 1480 pref medium
2001:67c:2d50:0:26a4:3cff:fea0:e919 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 593sec mtu 1480 pref medium
2001:67c:2d50:0:f2b0:14ff:fe51:2787 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 85sec mtu 1480 pref medium
2001:67c:2d50:0:26a4:3cff:fe7d:d01b via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 322sec mtu 1480 pref medium
2001:67c:2d50:0:eade:27ff:fe65:9c52 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 20sec mtu 1480 pref medium
2001:67c:2d50:0:6670:2ff:fe91:5314 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 264sec mtu 1480 pref medium
2001:67c:2d50:0:618:d6ff:fecb:6206 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 505sec mtu 1480 pref medium
2001:67c:2d50:0:6670:2ff:fed1:8c9c via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 380sec mtu 1480 pref medium
2001:67c:2d50:0:32b5:c2ff:fe22:ae0c via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 141sec mtu 1480 pref medium
2001:67c:2d50:0:e263:daff:fe06:4bb5 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 20sec mtu 1480 pref medium
2001:67c:2d50:0:d66e:eff:fef5:cbae via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 105sec mtu 1480 pref medium
2001:67c:2d50:0:618:d6ff:fe91:f6b0 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 82sec mtu 1480 pref medium
2001:67c:2d50:0:74cd:ffff:fe3d:e38f via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 352sec mtu 1480 pref medium
2001:67c:2d50:0:fa1a:67ff:fed0:a120 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 440sec mtu 1480 pref medium
2001:67c:2d50:0:26a4:3cff:fe9a:57d5 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 507sec mtu 1480 pref medium
2001:67c:2d50:0:7cb7:27ff:fe32:7154 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 139sec mtu 1480 pref medium
2001:67c:2d50:0:fa1a:67ff:fed8:e226 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 269sec mtu 1480 pref medium
2001:67c:2d50:0:46d1:faff:fe5a:ca4 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 332sec mtu 1480 pref medium
2001:67c:2d50:0:6670:2ff:feae:72e4 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 563sec mtu 1480 pref medium
2001:67c:2d50:0:9683:c4ff:fe01:762d via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 267sec mtu 1480 pref medium
2001:67c:2d50:0:216:3eff:fe02:3560 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 562sec mtu 1480 pref medium
2001:67c:2d50:0:62e3:27ff:fef5:3390 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 265sec mtu 1480 pref medium
2001:67c:2d50:0:26a4:3cff:fea0:e8d2 via 2a01:4f8:262:48c2:1::1 dev enp1s0 metric 1024 expires 326sec mtu 1480 pref medium
tux@srv02:~$ ^C
tux@srv02:~$ ip -6 r s
::1 dev lo proto kernel metric 256 pref medium
2001:67c:2d50::/64 from 2001:67c:2d50::/64 dev ffhl proto static metric 1024 pref medium
2001:67c:2d50::/64 dev ffhl proto kernel metric 256 pref medium
2a01:4f8:262:48c2::/64 dev enp1s0 proto kernel metric 256 pref medium
fdef:ffc0:3dd7::/48 dev ffhl proto kernel metric 256 pref medium
fe80::/64 dev ffhl proto kernel metric 256 pref medium
default via 2a01:4f8:262:48c2:1::1 dev enp1s0 proto static metric 1024 pref medium
tux@srv02:~$ ip -6 a s dev ffhl
4: ffhl: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
inet6 2001:67c:2d50::10/64 scope global
valid_lft forever preferred_lft forever
inet6 fdef:ffc0:3dd7::10/48 scope global
valid_lft forever preferred_lft forever
inet6 fe80::6866:fff:fecb:43cd/64 scope link
valid_lft forever preferred_lft forever
tux@srv02:~$ ^C
tux@srv02:~$ ^C
tux@srv02:~$ ip -6 route get 2001:67c:2d50::bcd7:94ff:fefd:2ddd
2001:67c:2d50:0:bcd7:94ff:fefd:2ddd from :: via 2a01:4f8:262:48c2:1::1 dev enp1s0 proto static src 2a01:4f8:262:48c2:1::3 metric 1024 pref medium
Simply removing this setting from systemd-networkd fixes this issue:
tux@srv02:~$ ip -6 route get 2001:67c:2d50::bcd7:94ff:fefd:2ddd
2001:67c:2d50:0:bcd7:94ff:fefd:2ddd from :: dev ffhl proto kernel src 2001:67c:2d50::10 metric 256 pref medium
tux@srv02:~$
Linux:
tux@srv02:~$ uname -a
Linux srv02 5.10.0-13-amd64 #1 SMP Debian 5.10.106-1 (2022-03-17) x86_64 GNU/Linux
Paul (35c41712) at 24 Aug 18:32
rename gateways and introduce gatewayID
Paul (93e87b26) at 24 Aug 18:31
serial as variable
Paul (465a1887) at 24 Aug 18:31
refactor roles and sync configs
Paul (0847b85d) at 30 May 21:05
ignore changes
Paul (6ef5505b) at 30 May 21:04
handle unset variable