[yadifa-users] listening on non-local interfaces

Peter Hudec phudec at cnc.sk
Mon Oct 19 09:00:04 CEST 2015 

Hi,

so do I.
But the BGP is configured to work with the addresses on the interfaces.
If the interface is up, the bgp annouces the IPv4/6 prefix, if down don't.

So if I do some maintenance, I put the dummyX interfaces down. This
works well, but if I restart the DNS process it will not start due
missing ip addresses to listen.

I can't use 0.0.0.0 or ::0 while the Yadifa/the same the others dns
servers/ is using send/receive function,This will choose the primary IP
of outgoing interface for udp/dns response messages.

There are few other solutions when listening on 0.0.0.0, ::0

Use  sendmsg/ recvfrom as for example here
http://www.opensource.apple.com/source/freeradius/freeradius-32/freeradius/src/lib/udpfromto.c.


Enumerate interfaces as BIND do and bind to specific interface. Debain
scripts do 'reload' on ifup/ifdown and the BIND will bind/unbind the
address.

But I think adding listen to non-local interfaces is much more simpler.

    best regards
        Peter

On 19/10/15 08:10, Jürgen Geinitz wrote:
> Hello,
> to speak for .DE, we are using dummy network devices to solve this
>
> example:
> [root at xxxxxx ~]# ifconfig -a
> dummy0    Link encap:Ethernet  HWaddr XX
>           inet addr:194.0.0.53  Bcast:194.0.0.53  Mask:255.255.255.255
>           inet6 addr: XXXXX/64 Scope:Link
>           inet6 addr: 2a02:568:0:2::53/64 Scope:Global
>           inet6 addr: XXXXXXXXX/128 Scope:Global
>           UP BROADCAST RUNNING NOARP  MTU:1500  Metric:1
>           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:0 
>           RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)
>
> dummy0:1  Link encap:Ethernet  HWaddr XXX
>           inet addr:194.246.96.1  Bcast:194.246.96.1  Mask:255.255.255.255
>           UP BROADCAST RUNNING NOARP  MTU:1500  Metric:1
>
> eth0      Link encap:Ethernet  HWaddr XXXX
>       (irrelevant)
>
> eth1      Link encap:Ethernet  HWaddr XX 
>           inet addr:192.168.255.xx  Bcast:192.168.255.255 
> Mask:255.255.255.0
>           inet6 addr: xxx/64 Scope:Link
>           inet6 addr: 2001:678:2:ffff::xx/64 Scope:Global
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:145436420885 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:132964649796 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000 
>           RX bytes:11455520307663 (10.4 TiB)  TX bytes:21461066840528 
> (19.5 TiB)
>
> lo        Link encap:Local Loopback 
>           inet addr:127.0.0.1  Mask:255.0.0.0
>           inet6 addr: ::1/128 Scope:Host
>           UP LOOPBACK RUNNING  MTU:16436  Metric:1
>           RX packets:522 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:522 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:0 
>           RX bytes:40337 (39.3 KiB)  TX bytes:40337 (39.3 KiB)
>
> [root at xxxxxxx ~]# 
>
> In the good old days when we were still using SunOS, similar setups were 
> done using aliases on the lo interface
>
> All the other nasty things are done inside the cisco boxes (using static 
> arp tables as far as I remember).
>
> Regards 
> Juergen
>
> yadifa-users-bounces at mailinglists.yadifa.eu schrieb am 07.10.2015 
> 14:36:17:
>
>> Von: Gery Van Emelen <Gery.VanEmelen at eurid.eu>
>> An: "yadifa-users at mailinglists.yadifa.eu" 
> <yadifa-users at mailinglists.yadifa.eu>
>> Datum: 07.10.2015 14:36
>> Betreff: Re: [yadifa-users] listening on non-local interfaces
>> Gesendet von: yadifa-users-bounces at mailinglists.yadifa.eu
>>
>> Hi,
>>
>>
>> You did not missed any configuration option.
>>
>> This feature will be implemented in the near future.
>>
>>
>> Gery
>>
>>
>>
>> -----Original Message-----
>> From: yadifa-users-bounces at mailinglists.yadifa.eu [
> mailto:yadifa-users-bounces at mailinglists.yadifa.eu] On Behalf Of Peter 
> Hudec
>> Sent: Wednesday, October 7, 2015 1:46 PM
>> To: yadifa-users at mailinglists.yadifa.eu
>> Subject: [yadifa-users] listening on non-local interfaces
>>
>> Hi,
>>
>> our dns anycast setup requires to listen on non-local IPv4/IPv6 
> addresses.
>> I tested the latest version 2.1.3, but if the dns daemon tried to bind 
> on non/existent address /listed in listen directive/.
>> I did this test also on the other dns server with this result
>> - Knot DNS 1.X KO
>> - Knot DNS 2.X OK
>> - NSD3 KO
>> - NSD4 OK, with ip-transparent options
>> - BIND 9.9.5 OK
>>
>> Is there any configuration option I missed to activate this feature?
>> If not, there is +1 vote for this feature to implement.
>>
>>    best regards
>>       Peter
>>
>> --
>> *Peter Hudec*
>> Infraštruktúrny architekt
>> phudec at cnc.sk <mailto:phduec at cnc.sk>
>>
>> *CNC, a.s.*
>> Borská 6, 841 04 Bratislava
>> Recepcia: +421 2  35 000 100
>>
>> Mobil:+421 905 997 203
>> *www.cnc.sk* <http:///www.cnc.sk>
>>
>> _______________________________________________
>> yadifa-users mailing list
>> yadifa-users at mailinglists.yadifa.eu
>> http://www.yadifa.eu/mailman/listinfo/yadifa-users
>> _______________________________________________
>> yadifa-users mailing list
>> yadifa-users at mailinglists.yadifa.eu
>> http://www.yadifa.eu/mailman/listinfo/yadifa-users
>>
>>
>> _______________________________________________
>> yadifa-users mailing list
>> yadifa-users at mailinglists.yadifa.eu
>> http://www.yadifa.eu/mailman/listinfo/yadifa-users


-- 
*Peter Hudec*
Infraštruktúrny architekt
phudec at cnc.sk <mailto:phduec at cnc.sk>

*CNC, a.s.*
Borská 6, 841 04 Bratislava
Recepcia: +421 2  35 000 100

Mobil:+421 905 997 203
*www.cnc.sk* <http:///www.cnc.sk>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.yadifa.eu/archives/yadifa-users/attachments/20151019/399312bc/attachment-0001.html

More information about the yadifa-users mailing list