From nobody Sat Sep 20 07:06:56 2025
X-Original-To: net@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4cTL626v0hz68NY4
	for <net@mlmmj.nyi.freebsd.org>; Sat, 20 Sep 2025 07:07:06 +0000 (UTC)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Received: from mx-01.divo.sbone.de (mx-01.divo.sbone.de [IPv6:2003:a:140a:2200:6:594:fffe:19])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature ECDSA (prime256v1) client-digest SHA256)
	(Client CN "mx-01.divo.sbone.de", Issuer "E6" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4cTL623rMQz3frX;
	Sat, 20 Sep 2025 07:07:06 +0000 (UTC)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Authentication-Results: mx1.freebsd.org;
	none
Received: from mail.sbone.de (mail.sbone.de [IPv6:fde9:577b:c1a9:4902:0:7404:2:1025])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (prime256v1) server-digest SHA256)
	(No client certificate requested)
	by mx-01.divo.sbone.de (Postfix) with ESMTPS id 8996EA64806;
	Sat, 20 Sep 2025 07:06:49 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=zabbadoz.net;
	s=20240622; t=1758352009;
	bh=qF6Crl5Oyl1lnOle3RXOaMLnhzxWa1l7u3TUvZ1Dxi8=;
	h=Date:From:To:cc:Subject:In-Reply-To:References;
	b=Z5luCBhchHoMCB5nnjXB/s+aTS7ue7ncYYdu3dZ40VaSqxBVZxc5DvCBcnIerGgTh
	 ctkNkKP9J85hpfc8M4jqYsXjgI35H0xRZ+z2DL31nibNwkXw636R9J2VslZc2DEytF
	 ki5+svWItNyGaY3Q5jPHKaF7tGERUyPy3zAzIM2JkrvRbEJ+66rK6aTHaT0TfZa71o
	 KnxyLHi+3cPxMuJThIWbDwpyZbJhKPnFujokHisits6uOzEZN0TyChvHbuthdnu/g9
	 x4B2dDxUbOUkxG+5oZQ0EUUmTNPbpEiH13sQ9vtGoKJ94SsYhGV16Nu9h7kloezsbg
	 k7To+EhIcJ9C3PQaoCMFud4ATeYk8/58Pfhyc6OLUVV1h9ef//vBc7pmh7KaD3chwp
	 Qkh2zk6wqB25J1CcoiGMWmPY8uWoC9sjW/Xq4marmxGZ2/bUcuH7xLGER8yw2oDbDb
	 c7SrDhXOQTrzn+BrpcSRXnPI2ubyS0qp9qzlCGRV9EloTR0i876e79voDIZsYuxjQO
	 oIxQXkdBmzXOkt1aih+gwSnPZpoWGDGpekb1GBaoZKEMCoB2uuvj3/yddVlNwXjjcQ
	 Ty7r2NZj2GL60FHIxHNjl655e9nZRZ0QFROXwq6hxXhZVCMkbz1v65VOqnQ8QdBR4H
	 Oc5E7fDFlTJ9E9nTu8CQTGcA=
Received: from content-filter.t4-02.sbone.de (content-filter.t4-02.sbone.de [IPv6:fde9:577b:c1a9:4902:0:7404:2:2742])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	by mail.sbone.de (Postfix) with ESMTPS id 5F4CE2D029E6;
	Sat, 20 Sep 2025 07:06:58 +0000 (UTC)
X-Virus-Scanned: amavisd-new at sbone.de
Received: from mail.sbone.de ([IPv6:fde9:577b:c1a9:4902:0:7404:2:1025])
	by content-filter.t4-02.sbone.de (content-filter.t4-02.sbone.de [IPv6:fde9:577b:c1a9:4902:0:7404:2:2742]) (amavisd-new, port 10024)
	with ESMTP id mPvMcbGFMCCB; Sat, 20 Sep 2025 07:06:57 +0000 (UTC)
Received: from strong-iwl0.sbone.de (strong-iwl0.sbone.de [IPv6:fde9:577b:c1a9:4902:a66b:b6ff:fe40:39a9])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	by mail.sbone.de (Postfix) with ESMTPSA id 1EE002D029D8;
	Sat, 20 Sep 2025 07:06:57 +0000 (UTC)
Date: Sat, 20 Sep 2025 07:06:56 +0000 (UTC)
From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
To: Andriy Gapon <avg@FreeBSD.org>
cc: "net@FreeBSD.org" <net@FreeBSD.org>
Subject: Re: DHCP on multi-homed host, some thoughts
In-Reply-To: <6abe9da1-9818-438b-ad8f-5424e50a39ce@FreeBSD.org>
Message-ID: <sr41p98p-q26p-28rs-33r0-528s05p481q3@yvfgf.mnoonqbm.arg>
References: <6abe9da1-9818-438b-ad8f-5424e50a39ce@FreeBSD.org>
X-OpenPGP-Key-Id: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-net
List-Help: <mailto:freebsd-net+help@freebsd.org>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Subscribe: <mailto:freebsd-net+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-net+unsubscribe@freebsd.org>
Sender: owner-freebsd-net@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
X-Spamd-Bar: ----
X-Spamd-Result: default: False [-4.00 / 15.00];
	REPLY(-4.00)[];
	ASN(0.00)[asn:3320, ipnet:2003::/19, country:DE]
X-Rspamd-Pre-Result: action=no action;
	module=replies;
	Message is reply to one we originated
X-Rspamd-Queue-Id: 4cTL623rMQz3frX

On Fri, 19 Sep 2025, Andriy Gapon wrote:

[multihome steup]

What you are describing is in no way special to DHCP.
Even a manual configuration would have the same issue, wouldn't it?

For IPv6 there exist a set of RFCs which have ideas on how to deal with
multi-homing.

The one main issue (routing and source address selection sorted),
is and remains DNS as we have no default way to pick up resolvers on a
per-interface or per-domain setting.  You'll find that per-interface
doesn't really work as you'd have to know which path you go before
you do the DNS lookup.

But chosing an upstream DNS with the wrong source address often won't
work.  At least here ISPs won't allow you to use their resolver if you
are not coming from their IP range.
The answer then really is to run a local resolver independent on
upstream for as long as that is feasible and working (*).

In that way the DHCP approach (which I think should have worked with
multiple IF just fine to merge a resolv.conf) isn't that bad.  Use the
DNS where your default route goes.

My 0.0005 cts
/bz


(*) and before anyone suggests any of the open resolvers which collect
your data, please leave this thread alone.

-- 
Bjoern A. Zeeb                                                     r15:7