[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Reply: bugzilla-noreply_a_freebsd.org: "[Bug 284857] wg(4): IPv4 packet with IPv6 nexthop not forwarded"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 17 Feb 2025 06:20:08 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=284857

            Bug ID: 284857
           Summary: wg(4): IPv4 packet with IPv6 nexthop not forwarded
           Product: Base System
           Version: 15.0-CURRENT
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: net@FreeBSD.org
          Reporter: lexi@hemlock.eden.le-fay.org

using src ~f5aff1871d3273b3cd3621ea5d3e37cdd807e66f on amd64.

example Ethernet route:

# ifconfig igc3
igc3: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0
mtu 1500
        description: fuchsia
       
options=4e420bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,WOL_MAGIC,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,HWSTATS,MEXTPG>
        ether 207c.14f3.d8f5
        inet6 fe80::1%igc3/64 scopeid 0x4
        media: Ethernet autoselect (1000baseT <full-duplex>)
        status: active
        nd6 options=1<PERFORMNUD>
# route -n get 81.187.47.195
   route to: 81.187.47.195
destination: 81.187.47.195
    gateway: fe80::2%igc3
        fib: 0
  interface: igc3
      flags: <UP,GATEWAY,HOST,DONE>
 recvpipe  sendpipe  ssthresh  rtt,msec    mtu        weight    expire
       0         0         0         0      1500         1         0 

ping works:

# ping -S 81.187.47.196 81.187.47.195
PING 81.187.47.195 (81.187.47.195) from 81.187.47.196: 56 data bytes
64 bytes from 81.187.47.195: icmp_seq=0 ttl=64 time=0.318 ms

example Wireguard route:

# ifconfig wg1
wg1: flags=10080c1<UP,RUNNING,NOARP,MULTICAST,LOWER_UP> metric 0 mtu 1420
        description: yarrow
        options=80000<LINKSTATE>
        inet6 fe80::1%wg1/64 scopeid 0xf
        groups: wg
        tunnelfib: 1
        nd6 options=101<PERFORMNUD,NO_DAD>
# route -n get 46.235.229.111
   route to: 46.235.229.111
destination: 46.235.229.111
    gateway: fe80::2%wg1
        fib: 0
  interface: wg1
      flags: <UP,GATEWAY,HOST,DONE>
 recvpipe  sendpipe  ssthresh  rtt,msec    mtu        weight    expire
       0         0         0         0      1420         1         0 

ping doesn't work:

# ping -S 81.187.47.196 46.235.229.111
PING 46.235.229.111 (46.235.229.111) from 81.187.47.196: 56 data bytes
ping: sendto: Address family not supported by protocol family
ping: sendto: Address family not supported by protocol family
ping: sendto: Address family not supported by protocol family

the wg interface is configured with "allowed ips: ::/0, 0.0.0.0/0" and is
running over an IPv6 transport.

traffic forwarded via this system is also affected: any traffic via this route
is silently dropped.

-- 
You are receiving this mail because:
You are the assignee for the bug.