| 22 |
22 |
|
| 23 |
23 |
}
|
| 24 |
24 |
|
| 25 |
|
function delete_neighbor_proxy {
|
| 26 |
|
|
| 27 |
|
get_uplink $LINK "-6"
|
| 28 |
|
get_eui64 $MAC $NETWORK_SUBNET6
|
| 29 |
|
if [ -n "$EUI64" -a -n "$UPLINK" ]; then
|
| 30 |
|
$SNF_NETWORK_LOG $0 "* ip -6 neigh del proxy $EUI64 dev $UPLINK"
|
| 31 |
|
ip -6 neigh del proxy $EUI64 dev $UPLINK
|
| 32 |
|
fi
|
| 33 |
|
|
| 34 |
|
}
|
| 35 |
|
|
| 36 |
25 |
function clear_routed_setup_firewall {
|
| 37 |
26 |
|
| 38 |
27 |
for oldchain in protected unprotected limited; do
|
| ... | ... | |
| 84 |
73 |
function send_garp {
|
| 85 |
74 |
|
| 86 |
75 |
# Send GARP from host to upstream router
|
| 87 |
|
get_uplink $TABLE
|
| 88 |
76 |
echo 1 > /proc/sys/net/ipv4/ip_nonlocal_bind
|
| 89 |
77 |
# $SNF_NETWORK_LOG $0 "arping -c3 -I $UPLINK -U $IP"
|
| 90 |
78 |
# arping -c3 -I $UPLINK -U $IP
|
| 91 |
|
$SNF_NETWORK_LOG $0 "arpsend -U -c 1 -i $IP $UPLINK"
|
|
79 |
$SNF_NETWORK_LOG $0 "* arpsend -U -c 1 -i $IP $UPLINK"
|
| 92 |
80 |
arpsend -U -c 1 -i $IP $UPLINK
|
| 93 |
81 |
echo 0 > /proc/sys/net/ipv4/ip_nonlocal_bind
|
| 94 |
82 |
|
| ... | ... | |
| 96 |
84 |
|
| 97 |
85 |
function routed_setup_ipv6 {
|
| 98 |
86 |
# Add a routing entry for the eui-64
|
| 99 |
|
get_uplink $TABLE "-6"
|
| 100 |
|
get_eui64 $MAC $NETWORK_SUBNET6
|
| 101 |
|
|
| 102 |
|
if [ -z "$EUI64" -o -z "$TABLE" -o -z "$INTERFACE" -o -z "$UPLINK" ]
|
|
87 |
if [ -z "$EUI64" -o -z "$TABLE" -o -z "$INTERFACE" -o -z "$UPLINK6" ]
|
| 103 |
88 |
then
|
| 104 |
89 |
return
|
| 105 |
90 |
fi
|
| 106 |
91 |
|
| 107 |
92 |
ip -6 rule add dev $INTERFACE table $TABLE
|
| 108 |
93 |
ip -6 ro replace $EUI64/128 dev $INTERFACE table $TABLE
|
| 109 |
|
ip -6 neigh add proxy $EUI64 dev $UPLINK
|
|
94 |
ip -6 neigh add proxy $EUI64 dev $UPLINK6
|
| 110 |
95 |
|
| 111 |
96 |
# disable proxy NDP since we're handling this on userspace
|
| 112 |
97 |
# this should be the default, but better safe than sorry
|
| 113 |
98 |
echo 0 > /proc/sys/net/ipv6/conf/$INTERFACE/proxy_ndp
|
| 114 |
99 |
|
| 115 |
100 |
# Send Unsolicited Neighbor Advertisement
|
| 116 |
|
$SNF_NETWORK_LOG $0 "ndsend $EUI64 $UPLINK"
|
| 117 |
|
ndsend $EUI64 $UPLINK
|
|
101 |
$SNF_NETWORK_LOG $0 "* ndsend $EUI64 $UPLINK6"
|
|
102 |
ndsend $EUI64 $UPLINK6
|
|
103 |
|
|
104 |
}
|
|
105 |
|
|
106 |
function delete_neighbor_proxy {
|
|
107 |
|
|
108 |
if [ -n "$EUI64" -a -n "$UPLINK6" ]; then
|
|
109 |
$SNF_NETWORK_LOG $0 "* ip -6 neigh del proxy $EUI64 dev $UPLINK6"
|
|
110 |
ip -6 neigh del proxy $EUI64 dev $UPLINK6
|
|
111 |
fi
|
| 118 |
112 |
|
| 119 |
113 |
}
|
| 120 |
114 |
|
| ... | ... | |
| 196 |
190 |
SUBNET=$NETWORK_SUBNET
|
| 197 |
191 |
GATEWAY6=$NETWORK_GATEWAY6
|
| 198 |
192 |
SUBNET6=$NETWORK_SUBNET6
|
| 199 |
|
EUI64=$($MAC2EUI64 $MAC $NETWORK_SUBNET6 2>/dev/null)
|
|
193 |
EUI64=$EUI64
|
| 200 |
194 |
EOF
|
| 201 |
195 |
|
| 202 |
196 |
}
|
| ... | ... | |
| 204 |
198 |
function get_uplink {
|
| 205 |
199 |
|
| 206 |
200 |
local table=$1
|
| 207 |
|
local version=$2
|
| 208 |
|
UPLINK=$(ip $version route list table "$table" | grep "default via" | awk '{print $5}')
|
| 209 |
|
$SNF_NETWORK_LOG $0 "* uplink for table $table is $UPLINK"
|
|
201 |
|
|
202 |
UPLINK=$(ip route list table "$table" | grep "default via" | awk '{print $5}')
|
|
203 |
UPLINK6=$(ip -6 route list table "$table" | grep "default via" | awk '{print $5}')
|
|
204 |
$SNF_NETWORK_LOG $0 "* Table $table: uplink -> $UPLINK, uplink6 -> $UPLINK6"
|
| 210 |
205 |
|
| 211 |
206 |
}
|
| 212 |
207 |
|
| ... | ... | |
| 214 |
209 |
# we caclulate it based on the NIC's MAC and the IPv6 subnet (if any)
|
| 215 |
210 |
# first argument MAC second IPv6 subnet
|
| 216 |
211 |
# Changes global value EUI64
|
| 217 |
|
get_eui64 () {
|
|
212 |
function get_eui64 {
|
| 218 |
213 |
|
| 219 |
214 |
local mac=$1
|
| 220 |
215 |
local prefix=$2
|
| ... | ... | |
| 223 |
218 |
EUI64=
|
| 224 |
219 |
else
|
| 225 |
220 |
EUI64=$($MAC2EUI64 $mac $prefix)
|
| 226 |
|
$SNF_NETWORK_LOG $0 "* eui64 for $mac inside $prefix is $EUI64"
|
|
221 |
$SNF_NETWORK_LOG $0 "* $mac + $prefix -> $EUI64"
|
| 227 |
222 |
fi
|
| 228 |
223 |
|
| 229 |
224 |
}
|
| ... | ... | |
| 233 |
228 |
|
| 234 |
229 |
# ommit zone statement
|
| 235 |
230 |
# nsupdate will attempt determine the correct zone to update based on the rest of the input
|
| 236 |
|
send_command () {
|
|
231 |
function send_command {
|
| 237 |
232 |
|
| 238 |
233 |
local command="$1"
|
| 239 |
234 |
$SNF_NETWORK_LOG $0 "* $command"
|
| ... | ... | |
| 246 |
241 |
}
|
| 247 |
242 |
|
| 248 |
243 |
|
| 249 |
|
update_arecord () {
|
|
244 |
function update_arecord {
|
| 250 |
245 |
|
| 251 |
246 |
local action=$1
|
| 252 |
247 |
local command=
|
| ... | ... | |
| 258 |
253 |
}
|
| 259 |
254 |
|
| 260 |
255 |
|
| 261 |
|
update_aaaarecord () {
|
|
256 |
function update_aaaarecord {
|
| 262 |
257 |
|
| 263 |
258 |
local action=$1
|
| 264 |
259 |
local command=
|
| ... | ... | |
| 270 |
265 |
}
|
| 271 |
266 |
|
| 272 |
267 |
|
| 273 |
|
update_ptrrecord () {
|
|
268 |
function update_ptrrecord {
|
| 274 |
269 |
|
| 275 |
270 |
local action=$1
|
| 276 |
271 |
local command=
|
| ... | ... | |
| 281 |
276 |
|
| 282 |
277 |
}
|
| 283 |
278 |
|
| 284 |
|
update_ptr6record () {
|
|
279 |
function update_ptr6record {
|
| 285 |
280 |
|
| 286 |
281 |
local action=$1
|
| 287 |
282 |
local command=
|
| ... | ... | |
| 292 |
287 |
|
| 293 |
288 |
}
|
| 294 |
289 |
|
| 295 |
|
update_all () {
|
|
290 |
function update_all {
|
| 296 |
291 |
|
| 297 |
292 |
local action=$1
|
|
293 |
$SNF_NETWORK_LOG $0 "Update dns for $GANETI_INSTANCE_NAME $IP $EUI64"
|
| 298 |
294 |
update_arecord $action
|
| 299 |
295 |
update_aaaarecord $action
|
| 300 |
296 |
update_ptrrecord $action
|
| ... | ... | |
| 310 |
306 |
# R6REC=1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.0.c.f.f.2.8.4.6.0.1.0.0.2.ip6.arpa
|
| 311 |
307 |
# R6ZONE=1.0.0.0.c.f.f.2.8.4.6.0.1.0.0.2.ip6.arpa
|
| 312 |
308 |
# R6LPART=1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.
|
| 313 |
|
get_rev6_info () {
|
|
309 |
function get_rev6_info {
|
| 314 |
310 |
|
| 315 |
311 |
local eui64=$1
|
| 316 |
312 |
if [ -z "$eui64" ]; then
|
| ... | ... | |
| 329 |
325 |
# lets assume IP=203.0.113.1
|
| 330 |
326 |
# RZONE="113.0.203.in-add.arpa"
|
| 331 |
327 |
# RLPART="1"
|
| 332 |
|
get_rev4_info () {
|
|
328 |
function get_rev4_info {
|
| 333 |
329 |
|
| 334 |
330 |
local ip=$1
|
| 335 |
331 |
if [ -z "$ip" ]; then
|
| ... | ... | |
| 355 |
351 |
# www.google.com has address 173.194.113.112
|
| 356 |
352 |
# www.google.com has address 173.194.113.113
|
| 357 |
353 |
# www.google.com has IPv6 address 2a00:1450:4001:80b::1012
|
| 358 |
|
query_dns () {
|
|
354 |
function query_dns {
|
| 359 |
355 |
|
| 360 |
356 |
HOSTQ="host -s -R 3 -W 3"
|
| 361 |
357 |
HOST_IP_ALL=$($HOSTQ $GANETI_INSTANCE_NAME.$FZONE $SERVER | sed -n 's/.*has address //p')
|
| 362 |
358 |
HOST_IP6_ALL=$($HOSTQ $GANETI_INSTANCE_NAME.$FZONE $SERVER | sed -n 's/.*has IPv6 address //p')
|
| 363 |
359 |
|
| 364 |
360 |
}
|
|
361 |
|
|
362 |
# Use environment variables to calculate desired info
|
|
363 |
# IP, MAC, LINK, TABLE, BRIDGE,
|
|
364 |
# NETWORK_SUBNET, NETWORK_GATEWAY, NETWORK_SUBNET6, NETWORK_GATEWAY6
|
|
365 |
function get_info {
|
|
366 |
|
|
367 |
$SNF_NETWORK_LOG $0 "Getting info for $INTERFACE of $GANETI_INSTANCE_NAME"
|
|
368 |
get_rev4_info $IP
|
|
369 |
get_eui64 $MAC $NETWORK_SUBNET6
|
|
370 |
get_rev6_info $EUI64
|
|
371 |
get_uplink $TABLE
|
|
372 |
|
|
373 |
}
|