This page was exported from phaq
[ http://phaq.phunsites.net ] Export date: Fri Sep 13 9:18:07 2024 / +0000 GMT |
Right before "mv'ing /dev/myself to /var/home" I came along another odd thing on my border router. An IPv6 peer was unreachable, i.e. did not respond to ICMP ping, as such the BGP session was down as well. I gave it another indepth look as it happened to be one of our IPv6 upstream peers and had some sort of importance as such. After talking to the NOC guy of the carrier, which assured that their interface was up, I was a bit confused. He could neither PING my end, nor could I PING his end.
I had however various IPv6 BGP sessions established within the same prefix, so it all seemed ok for the others. For network guys not unusual is however to not only check L3 addressing but also inspect L2 addressing. IPv4 techs use ARP (Address Resolution Protocol), which maps MAC (Media Access Control) to L3 IPv4 addresses. However this doesn't work, as ARP will only display MAC-IPv4 mappings (addresses obfuscated).
So, in the IPv6 world this is a little bit different, as ARP not strictly exists. However, IPv6 uses something similar called "IPv6 neighbor discovery protocol (NDP)". The NDP status can be inspected using the "show ipv6 neighbors" command, which will give you a list of all IPv6 addresses and their MAC address counterparts:
You may also query a specific entry for a given IPv6 address:
As seen in this case, the address in question is in STALE state. It is beyond the scope of this article to inspect all possiblbe reasons to why this happened. A good starting place to inspect this is using the "debug ipv6 nd" command, which I may cover in another article. The most obvious case is as simple as what seldomly happens with IPv4 ARP as well: the L3 and L2 addresses do not match up (maybe due to hardware exchange). So, in the IPv4-world, you would do something like "clear arp" - but this won't help with IPv6 NDP mismatches. The simple solution is to clear the IPv6 ND cache:
So, if this is really the root of the problem, you may notice a different L2 address afterwars:
In my case, the IPv6 peer was reachable by ICMP PING again and as such the BGP session recovered as well. And now, finally, "mv /dev/myself /var/home/" ;-) |
Powered by [ Universal Post Manager ] plugin. HTML saving format developed by gVectors Team www.gVectors.com |