[Bug 286322] IPv6 doesn't work across different FIBs (epair)

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=286322

--- Comment #18 from Paige Thompson <paige@paige.bio> ---
2 things I almost forgot: 

- the NDP entries are listed as permanent so I'm not sure if that implies that
they are configured from discovery or if they were made static 

- On linux I'm not sure what the equivalent would be to:

net.inet6.ip6.source_address_validation unless it is
net.ipv6.conf.all.accept_source_route because I was thinking "rp_filter" was
it, but that's not even an option for IPv6 on Linux. 

https://www.tenable.com/audits/items/CIS_Ubuntu_18.04_LTS_Server_v2.0.1_L1.audit:e9984a0cc2171684ec9f44206b4b52b6

https://lists.freebsd.org/archives/dev-commits-src-all/2021-November/001801.html
<--- from this description, it actually sounds more like Linux equivalent to: 

net.ipv6.conf.all.accept_redirects = 0
net.ipv6.conf.default.accept_redirects = 0 (I checked and made sure they were
all set to 0 and one is still reachable from the other.) 

It's weird to me that I can't find any rp_filter stuff for IPv6 on here though. 

But yeah I mean take the fact that "it works on other things" with a grain of
salt here. Also I might be missing the point of epair entirely, I don't really
know what I would even use epair for except for maybe creating a patch between
two layer 2 bridges. I feel like I saw an example of how to use epair this way,
but I don't remember where and I don't think even veth was intended to be used
this way but you can at least (there are problems, just different problems.)

-- 
You are receiving this mail because:
You are the assignee for the bug.