Il me semblait bien que j'avais un soucis : depuis que j'ai mis en place le bridge sur mon rasp, l'IPv6 disparaît de l'interface principale au bout un moment (on dirait que c'est au bout de 2 jours environ) il faut que je relance et c'est reparti pour un tour. Comme s'il se mettait à refuser les RA et vivait sur la validité des adresses.
Ce qui est bizarre c'est que tout disparaît, même la link local.
Y'aurait un bug connu chez debian ? J'ai rien trouvé.
Mon sysctl :
net.ipv4.ip_forward=1
net.ipv4.conf.all.proxy_arp = 1
net.ipv6.conf.all.forwarding=1
net.ipv6.conf.eth0.accept_ra=2
net.ipv6.conf.all.use_tempaddr=2
net.ipv6.conf.default.use_tempaddr=2
net.ipv6.conf.eth0.use_tempaddr=2
net.ipv6.conf.eth0.temp_valid_lft=90000
net.ipv6.conf.default.temp_valid_lft=90000
net.ipv6.conf.all.temp_valid_lft=90000
J'active les RA malgré le forwarding pour bénéficier des privacy extension et avec un token pour avoir une IP fixe.
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet static
address 192.168.1.10
netmask 255.255.255.0
gateway 192.168.1.1
dns-nameservers 127.0.0.1 80.10.246.2
iface eth0 inet6 auto
pre-up /sbin/ip token set ::192:168:1:10 dev eth0
auto eth0.10
iface eth0.10 inet static
address 192.168.3.1
netmask 255.255.255.0
vlan-raw-device eth0
auto eth0.832
iface eth0.832 inet static
address 192.168.32.10
netmask 255.255.255.0
vlan-raw-device eth0
iface eth0.832 inet6 static
address 2a01:cb14:xx:xx::10
netmask 64
vlan-raw-device eth0
auto eth0.40
iface eth0.40 inet manual
vlan-raw-device eth0
#address 192.168.3.1
#netmask 255.255.255.0
auto eth0.835
iface eth0.835 inet manual
up ip link set dev $IFACE up
up pppoe-server -I $IFACE -m 1452 -C isp -L 192.168.35.1 -p /etc/ppp/ips -O /etc/ppp/pppoe-server-options
post-up iptables -t nat -A POSTROUTING -s 192.168.35.0/24 -o eth0 -j MASQUERADE
down killall pppoe-server
down ip link set dev $IFACE up
post-down iptables -t nat -D POSTROUTING -s 192.168.35.0/24 -o eth0 -j MASQUERADE
vlan-raw-device eth0
auto wg0
iface wg0 inet static
pre-up /sbin/ip link add dev wg0 mtu 1440 type wireguard
post-up /usr/bin/wg setconf wg0 /etc/wireguard/wg0.conf
post-up /sbin/ip route add 192.168.2.0/24 dev wg0
post-up /sbin/ip -6 route add fd07:adec:7:0::/64 dev wg0
#post-up /sbin/ip route add 192.168.42.0/24 dev wg0
#post-up iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
post-down /sbin/ip link del wg0
address 172.16.2.2
netmask 255.255.255.0
iface wg0 inet6 static
address fd07:adec:7:1::2
netmask 64
auto vxlan10
iface vxlan10 inet manual
pre-up ip link add vxlan10 type vxlan id 10 dev eth0 remote 192.168.1.164 dstport 4789 || true
up ip link set vxlan10 up
down ip link set vxlan10 down
post-down ip link del vxlan10 || true
# address 192.168.4.253
# netmask 255.255.255.0
auto br0
iface br0 inet static
bridge_ports eth0.40 vxlan10
address 192.168.10.253
netmask 255.255.255.0
un ip a quand ça déconne :
ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.10/24 brd 192.168.1.255 scope global eth0
valid_lft forever preferred_lft forever
3: eth0.10@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff
inet 192.168.3.1/24 brd 192.168.3.255 scope global eth0.10
valid_lft forever preferred_lft forever
inet6 fe80::ba27:ebff:feea:13a9/64 scope link
valid_lft forever preferred_lft forever
4: eth0.832@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff
inet 192.168.32.10/24 brd 192.168.32.255 scope global eth0.832
valid_lft forever preferred_lft forever
inet6 2a01:cb14:xx:xx::10/64 scope global
valid_lft forever preferred_lft forever
inet6 fe80::ba27:ebff:feea:13a9/64 scope link
valid_lft forever preferred_lft forever
7: wg0: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1440 qdisc noqueue state UNKNOWN group default qlen 1000
link/none
inet 172.16.2.2/24 brd 172.16.2.255 scope global wg0
valid_lft forever preferred_lft forever
inet6 fd07:adec:7:1::2/64 scope global
valid_lft forever preferred_lft forever
27: eth0.835@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff
28: vxlan10: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue master br0 state UNKNOWN group default qlen 1000
link/ether da:94:ae:01:43:04 brd ff:ff:ff:ff:ff:ff
29: br0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc noqueue state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff
inet 192.168.10.253/24 brd 192.168.10.255 scope global br0
valid_lft forever preferred_lft forever
inet6 fe80::ba27:ebff:feea:13a9/64 scope link
valid_lft forever preferred_lft forever
30: eth0.40@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br0 state UP group default qlen 1000
link/ether b8:27:eb:ea:13:a9 brd ff:ff:ff:ff:ff:ff