C.J. Collier cjac
cjac
/ gist:3c07c872e866f3c45b8d9b44f90e1f04
Created
April 27, 2020 17:30
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ sudo ipsec up edge | |
| initiating IKE_SA edge[5998] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.19.0.71[500] to 74.120.12.135[500] (1124 bytes) | |
| received packet: from 74.120.12.135[500] to 73.19.0.71[500] (36 bytes) | |
| parsed IKE_SA_INIT response 0 [ N(NO_PROP) ] | |
| received NO_PROPOSAL_CHOSEN notify error | |
| establishing connection 'edge' failed |
cjac
/ gist:1812f3addebf4d5f5960079bad64438f
Created
April 24, 2020 20:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ sudo ipsec up edge | |
| initiating IKE_SA edge[3] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.53.45.61[500] to 74.120.12.135[500] (1124 bytes) | |
| received packet: from 74.120.12.135[500] to 73.53.45.61[500] (38 bytes) | |
| parsed IKE_SA_INIT response 0 [ N(INVAL_KE) ] | |
| peer didn't accept DH group MODP_3072, it requested ECP_256 | |
| initiating IKE_SA edge[3] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.53.45.61[500] to 74.120.12.135[500] (804 bytes) |
cjac
/ gist:d9bd5c8782b7b6aa6c493b0c8d3369bb
Created
April 21, 2020 06:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@mini:~# tcpdump -v -s0 -n -i loc ip6 | |
| tcpdump: listening on loc, link-type EN10MB (Ethernet), capture size 262144 bytes | |
| 23:44:27.559299 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 32) fe80::216:3eff:fe02:ec4e > fe80::5054:ff:fee6:2458: [icmp6 sum ok] ICMP6, neighbor solicitation, length 32, who has fe80::5054:ff:fee6:2458 | |
| source link-address option (1), length 8 (1): 00:16:3e:02:ec:4e | |
| 23:44:27.559467 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 24) fe80::5054:ff:fee6:2458 > fe80::216:3eff:fe02:ec4e: [icmp6 sum ok] ICMP6, neighbor advertisement, length 24, tgt is fe80::5054:ff:fee6:2458, Flags [router, solicited] | |
| 23:44:27.668605 IP6 (flowlabel 0x0b590, hlim 255, next-header ICMPv6 (58) payload length: 8) fe80::216:3eff:fe02:ec4e > ff02::2: [icmp6 sum ok] ICMP6, router solicitation, length 8 | |
| 23:44:27.669392 IP6 (flowlabel 0xe5129, hlim 255, next-header ICMPv6 (58) payload length: 56) fe80::5054:ff:fee6:2458 > ff02::1: [icmp6 sum ok] ICMP6, router advertisement, length 56 | |
| hop limit 6 |
cjac
/ gist:5eec99868814c60a4e851edeeb71397f
Created
April 21, 2020 06:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@ns1:~$ sudo rdisc6 eth1 | |
| Soliciting ff02::2 (ff02::2) on eth1... | |
| Hop limit : 64 ( 0x40) | |
| Stateful address conf. : No | |
| Stateful other conf. : No | |
| Router preference : low | |
| Router lifetime : 30 (0x0000001e) seconds | |
| Reachable time : unspecified (0x00000000) | |
| Retransmit time : unspecified (0x00000000) |
cjac
/ gist:c32ee682bb1c85ef330cad8ea77c4410
Created
April 21, 2020 05:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ cat /etc/wide-dhcpv6/dhcp6c.conf | |
| profile default | |
| { | |
| information-only; | |
| request domain-name-servers; | |
| request domain-name; | |
| script "/etc/wide-dhcpv6/dhcp6c-script"; | |
| }; |
cjac
/ gist:4407230a98df3053b3c1b224161921c8
Created
April 21, 2020 05:48
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# dhcp6c -d -D -f ens11 | |
| Apr/20/2020 22:48:17: get_duid: extracted an existing DUID from /var/lib/dhcpv6/dhcp6c_duid: 00:01:00:01:26:31:38:f3:52:54:00:42:9e:e1 | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# Default dhpc6c configuration: it assumes the address is autoconfigured using] (78) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# router advertisements.] (24) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>[profile] (7) | |
| Apr/20/2020 22:48:17: cfdebug_print: <7>[default] (7) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>begin of closure [{] (1) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# send domain-name-servers;] (28) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>[information-only] (16) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>end of sentence [;] (1) |
cjac
/ gist:0e4702b633e318400be3ee273b0986a9
Created
April 21, 2020 05:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# cat /etc/wide-dhcpv6/dhcp6c.conf | |
| # Default dhpc6c configuration: it assumes the address is autoconfigured using | |
| # router advertisements. | |
| profile default | |
| { | |
| information-only; | |
| request domain-name-servers; | |
| request domain-name; |
cjac
/ gist:48727ed6137ad53329119740b59baf0c
Created
April 21, 2020 05:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# dhcp6c -d -D -f ens11 | |
| Apr/20/2020 22:22:39: get_duid: extracted an existing DUID from /var/lib/dhcpv6/dhcp6c_duid: 00:01:00:01:26:31:38:f3:52:54:00:42:9e:e1 | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>comment [# Default dhpc6c configuration: it assumes the address is autoconfigured using] (78) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>comment [# router advertisements.] (24) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[profile] (7) | |
| Apr/20/2020 22:22:39: cfdebug_print: <7>[default] (7) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>begin of closure [{] (1) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[information-only] (16) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>end of sentence [;] (1) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[request] (7) |
cjac
/ gist:125406a6522cfdd0367d7e8624278fdf
Created
April 21, 2020 05:24
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| tcpdump: listening on ens11, link-type EN10MB (Ethernet), capture size 262144 bytes | |
| 22:22:37.642902 IP6 (class 0xe0, hlim 1, next-header Options (0) payload length: 136) fe80::e11:67ff:fe02:4822 > ff02::16: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener report v2, 6 group record(s) [gaddr ff02::2 is_ex { }] [gaddr ff02::d is_ex { }] [gaddr ff02::16 is_ex { }] [gaddr ff02::1:2 is_ex { }] [gaddr ff02::1:ff00:1 is_ex { }] [gaddr ff02::1:ff02:4822 is_ex { }] | |
| 22:22:38.392622 IP6 (class 0xe0, hlim 1, next-header Options (0) payload length: 136) fe80::e11:67ff:fe02:4822 > ff02::16: HBH (rtalert: 0x0000) (padn) [icmp6 sum ok] ICMP6, multicast listener report v2, 6 group record(s) [gaddr ff02::2 is_ex { }] [gaddr ff02::d is_ex { }] [gaddr ff02::16 is_ex { }] [gaddr ff02::1:2 is_ex { }] [gaddr ff02::1:ff00:1 is_ex { }] [gaddr ff02::1:ff02:4822 is_ex { }] | |
| 22:22:38.741628 IP6 (class 0xe0, hlim 255, next-header ICMPv6 (58) payload length: 160) fe80::e11:67ff:fe02:4822 > ff02::1: [icmp6 sum ok] ICMP6 |
cjac
/ gist:94b92de581c04c55864062fd4047ef0e
Created
April 21, 2020 05:13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ sudo tcpdump -vvv -s0 -n -i ens11 ip6 | |
| [sudo] password for cjac: | |
| tcpdump: listening on ens11, link-type EN10MB (Ethernet), capture size 262144 bytes | |
| 22:12:50.478573 IP6 (class 0xe0, hlim 255, next-header ICMPv6 (58) payload length: 160) fe80::e11:67ff:fe02:4822 > ff02::1: [icmp6 sum ok] ICMP6, router advertisement, length 160 | |
| hop limit 64, Flags [managed, other stateful], pref medium, router lifetime 1800s, reachable time 3600000s, retrans time 0s | |
| source link-address option (1), length 8 (1): 0c:11:67:02:48:22 | |
| 0x0000: 0c11 6702 4822 | |
| mtu option (5), length 8 (1): 1500 | |
| 0x0000: 0000 0000 05dc | |
| prefix info option (3), length 32 (4): 2001:558:4082:8c::/64, Flags [none], valid time 604800s, pref. time 302400s |