ipv6 non-mptcp-able traffic goes out directly via interfaces

[rdmitry0911]

Expected Behavior

if omr-vps has ipv6 only public address then

• all ipv4 traffic should go out via omr-vps tunnel
• all ipv6 mptcp-able traffic should go out via omr-vps
• all ipv6 non-mptcp-able traffic should go out via omr-vps tunnel

Current Behavior

• all ipv4 traffic goes out via omr-vps tunnel (good)
• all ipv6 mptcp-able traffic goes out via omr-vps (good)
• all ipv6 non-mptcp-able traffic goes out directly via master interface (wrong)

root@OpenMPTCProuter:~# traceroute6 -n google.com
traceroute to google.com (2a00:1450:4001:828::200e), 30 hops max, 72 byte packets
 1  2a0d:XXXX:cf10::1  0.904 ms  0.787 ms  0.730 ms
 2  2a0d:XXXX:da8::1  58.468 ms  60.348 ms  61.558 ms
 3  2620:134:b0fe:252::100  55.900 ms  55.749 ms  60.920 ms
 4  *^C
root@OpenMPTCProuter:~# 

• Even though ping via interfaces works fine

root@OpenMPTCProuter:~# ping -I eth1 google.com
PING google.com(tzfraa-aa-in-x0e.1e100.net (2a00:1450:4001:81d::200e)) from 2a0d:xxxx::83c2 eth1: 56 data bytes
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=1 ttl=58 time=53.3 ms
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=2 ttl=58 time=49.0 ms
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=3 ttl=58 time=57.4 ms
^C
--- google.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 48.959/53.201/57.360/3.430 ms

root@OpenMPTCProuter:~# ping -4 -I eth1 google.com
PING google.com (216.58.206.78) from 192.168.1.24 eth1: 56(84) bytes of data.
64 bytes from tzfraa-aa-in-f14.1e100.net (216.58.206.78): icmp_seq=1 ttl=58 time=59.7 ms
64 bytes from lhr35s11-in-f14.1e100.net (216.58.206.78): icmp_seq=2 ttl=58 time=56.0 ms
64 bytes from lhr35s11-in-f14.1e100.net (216.58.206.78): icmp_seq=3 ttl=58 time=58.0 ms
^C
--- google.com ping statistics ---
6 packets transmitted, 6 received, 0% packet loss, time 5006ms
rtt min/avg/max/mdev = 52.856/56.854/59.678/2.238 ms

root@OpenMPTCProuter:~# ping -4 -I eth2 google.com
PING google.com (216.58.206.78) from 192.168.10.199 eth2: 56(84) bytes of data.
64 bytes from lhr35s11-in-f14.1e100.net (216.58.206.78): icmp_seq=1 ttl=57 time=53.9 ms
64 bytes from lhr35s11-in-f14.1e100.net (216.58.206.78): icmp_seq=2 ttl=57 time=49.2 ms
64 bytes from lhr35s11-in-f14.1e100.net (216.58.206.78): icmp_seq=3 ttl=57 time=58.0 ms
^C
--- google.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2000ms
rtt min/avg/max/mdev = 49.215/53.678/57.964/3.573 ms

root@OpenMPTCProuter:~# ping -I eth2 google.com
PING google.com(fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e)) from 2a02:xxxx::92ea eth2: 56 data bytes
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=1 ttl=56 time=56.3 ms
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=2 ttl=56 time=54.7 ms
64 bytes from fra15s18-in-x0e.1e100.net (2a00:1450:4001:81d::200e): icmp_seq=3 ttl=56 time=54.0 ms
^C
--- google.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 53.978/54.975/56.280/0.964 ms

openmptcprouter/status doesn't look good

Possible Solution

Steps to Reproduce the Problem

1. Install fresh omr build
2. configure wan1(eth1, Multipath TCP master) and wan2(eth2, Multipath TCP enabled) as dhcpv6
3. configure wan3(eth1, Multipath TCP disabled) and wan4(eth2, Multipath TCP disabled) as dhcp

Context (Environment)

Specifications

• OpenMPTCProuter version: v0.61-snapshot-6.1 r0+24843-acf40c022e
• OpenMPTCProuter VPS version: 0.1029-test 6.1.0.-18-amd64
• OpenMPTCProuter VPS provider: Hetzner
• OpenMPTCProuter platform: x86_64
• Country: Greece

[AndreaLeidi]

Same here. I have no IPv6 on WAN interfaces (just one address /64 on VPS). TCP/UDP ok and getting 10/10 on test-ipv6.com but ICMPv6 (ping, traceroute) doesn't go out, 6in4 tunnel dead, apparently no route for this kind of traffic (?).

See also #3425

GT/Shadowsocks-libev on x86_64 (no AES-NI), OMR v0.61-snapshot-5.4 r0+16862-170d9e447d (same with the stable build, both upgrade and fresh install). Firewall rules untouched, OMR and VPS.

from OMR

root@link:~# ping -6 google.com
PING google.com(mil07s17-in-x0e.1e100.net (2a00:1450:4002:414::200e)) 56 data bytes
From link.###.it (fd56:90f4:dd4c::1) icmp_seq=1 Time exceeded: Hop limit
From link.###.it (fd56:90f4:dd4c::1) icmp_seq=2 Time exceeded: Hop limit
From link.###.it (fd56:90f4:dd4c::1) icmp_seq=3 Time exceeded: Hop limit
^C
--- google.com ping statistics ---
3 packets transmitted, 0 received, +3 errors, 100% packet loss, time 3004ms

from LAN

$ ping -6 google.com
PING google.com (2a00:1450:4002:411::200e) 56 data bytes
^C
--- google.com ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 4113ms

traceroute -6
(device at #2 is not any gateway, is my LAN wifi access point!)

$ traceroute -6 google.com
traceroute to google.com (2a00:1450:4002:411::200e), 30 hops max, 80 byte packets
1 link.###.it (fd56:90f4:dd4c::1) 0.495 ms 0.477 ms 0.468 ms
2 * fd56:90f4:dd4c:0:f692:bfff:fe29:9573 (fd56:90f4:dd4c:0:f692:bfff:fe29:9573) 0.845 ms 0.737 ms
3 link.###.it (fd56:90f4:dd4c::1) 0.905 ms 1.032 ms 1.088 ms
4 * * *
5 * * *
6 * * *
7 * * *
8 * * *
9 * link.###.it (fd56:90f4:dd4c::1) 2.715 ms 2.868 ms
10 * * *
11 * link.###.it (fd56:90f4:dd4c::1) 3.016 ms *
12 * * *
13 link.###.it (fd56:90f4:dd4c::1) 2.639 ms 2.706 ms 2.698 ms

6in4 no traffic

[Ysurac]

I would need the result of ip -6 r

[Ysurac]

A new image is compiling that should fix the issue.

[AndreaLeidi]

Thanks a lot @Ysurac for your help!

[rdmitry0911]

A new image is compiling that should fix the issue.

With this patch the tunnel doesn't work. Even thou I see tun0 in ifconfig, I can't ping the other end of the tunnel:

root@OpenMPTCProuter:~# ping 10.255.255.1
PING 10.255.255.1 (10.255.255.1) 56(84) bytes of data.
^C
--- 10.255.255.1 ping statistics ---
6 packets transmitted, 0 received, 100% packet loss, time 5219ms

I see this in logread |tail -n 35

root@OpenMPTCProuter:~# logread |tail -n 35
Jun 26 14:19:56 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:00 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 14:20:00 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 14:20:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 26 14:20:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 14:20:06 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:16 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:17 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 14:20:19 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 14:20:19 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 14:20:26 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:36 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:46 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:20:56 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 26 14:21:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 14:21:05 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 14:21:05 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 14:21:06 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:16 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:17 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 14:21:26 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:28 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 14:21:28 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 14:21:36 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:46 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 14:21:46 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 14:21:46 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:21:56 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:22:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 26 14:22:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 14:22:06 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:22:16 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1
Jun 26 14:22:17 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 14:22:26 OpenMPTCProuter user.notice omr6in4: addr: 10.255.255.2 - peer: 10.255.255.1

root@OpenMPTCProuter:~# ifconfig tun0
tun0      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  
          inet addr:10.255.255.2  P-t-P:10.255.255.1  Mask:255.255.255.255
          inet6 addr: fe80::cb35:832f:a63f:bd8a/64 Scope:Link
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:34 errors:0 dropped:0 overruns:0 frame:0
          TX packets:772 errors:0 dropped:2121 overruns:0 carrier:0
          collisions:0 txqueuelen:500 
          RX bytes:2826 (2.7 KiB)  TX bytes:96473 (94.2 KiB)

[Ysurac]

I forgot to remove some debug log...
You are using Glorytun TCP VPN, if the 10.255.255.1 end doesn't answer, it should not be related to IPv6 and OMR6IN4.
Can you try OpenVPN TCP ? I had many issues with Glorytun TCP on 6.1 kernel...

[rdmitry0911]

OpenVPN TCP desn't work either. I think it is a problem with the patch as without this patch tunnel does work both with Glorytun TCP and with OpenVPN TCP

root@OpenMPTCProuter:~# logread |tail -n 30
Jun 26 15:33:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 15:33:01 OpenMPTCProuter user.notice omr-schedule-010-services: Can't find omr-bypass rules, restart omr-bypass...
Jun 26 15:33:01 OpenMPTCProuter user.notice omr-bypass: Starting OMR-ByPass...
Jun 26 15:33:02 OpenMPTCProuter user.notice firewall.omr-server: Firewall reload, set server part firewall reloading
Jun 26 15:33:02 OpenMPTCProuter user.notice omr-bypass: OMR-ByPass is running
Jun 26 15:33:09 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 15:33:12 OpenMPTCProuter user.notice OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
Jun 26 15:33:50 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 15:33:50 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 15:33:59 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 15:33:59 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 15:34:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 26 15:34:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 15:34:02 OpenMPTCProuter daemon.notice netifd: Interface 'wan2_4' is setting up now
Jun 26 15:34:02 OpenMPTCProuter daemon.notice netifd: Interface 'wan2_4' is now down
Jun 26 15:34:03 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 15:34:04 OpenMPTCProuter daemon.warn openvpn(omr)[31377]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 26 15:34:04 OpenMPTCProuter daemon.warn openvpn(omr)[31377]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 26 15:34:04 OpenMPTCProuter daemon.notice openvpn(omr)[31377]: TCP/UDP: Preserving recently used remote address: [AF_INET6]2a01:4f8:212:25cf:ff00::199:65301
Jun 26 15:34:04 OpenMPTCProuter daemon.notice openvpn(omr)[31377]: Attempting to establish TCP connection with [AF_INET6]2a01:4f8:212:25cf:ff00::199:65301
Jun 26 15:34:06 OpenMPTCProuter user.notice OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
Jun 26 15:34:06 OpenMPTCProuter daemon.err openvpn(omr)[31377]: TCP: connect to [AF_INET6]2a01:4f8:212:25cf:ff00::199:65301 failed: Host is unreachable
Jun 26 15:34:06 OpenMPTCProuter daemon.notice openvpn(omr)[31377]: SIGUSR1[connection failed(soft),connection-failed] received, process restarting
Jun 26 15:34:43 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 15:34:43 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 26 15:35:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 26 15:35:00 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 26 15:35:03 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 26 15:35:13 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 26 15:35:13 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down

[AndreaLeidi]

After installing the latest snapshot (June 27), the whole IPv6 traffic is now routed through the 6in4 tunnel, bringing it back to life. Apparently no proxy for TCP and UDP v6.
This fixes the ping / traceroute issues and I still have 10/10 on IPv6 support but OMR-bypass is not working anymore.

---

(r0+16862-170d9e447d)

---

PACKAGE: openmptcprouter
VERSION: v0.61-snapshot
TARGET: x86_64
ARCH: x86_64

BUILD REPO: https://github.com/ysurac/openmptcprouter
BUILD DATE: Thu Jun 27 01:24:55 UTC 2024

:~# ip -6 r
default from fd00::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fd00::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fd56:90f4:dd4c::/64 dev eth0 proto static metric 9999 pref medium
fd56:90f4:dd4c::/60 dev eth0 metric 69999 pref medium
unreachable fd56:90f4:dd4c::/48 dev lo proto static metric 2147483647 pref medium
fe80::a00:1 dev 6in4-omr6in4 metric 1024 pref medium
fe80::/64 dev 6in4-omr6in4 proto kernel metric 256 pref medium
fe80::/64 dev eth4 proto kernel metric 256 pref medium
fe80::/64 dev eth3 proto kernel metric 256 pref medium
fe80::/64 dev eth1 proto kernel metric 256 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev eth2 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth1 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth2 proto kernel metric 256 pref medium
fe80::/64 dev tun0 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth3 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth4 proto kernel metric 256 pref medium
default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium #### ADDED
default via fd56:90f4:dd4c:: dev eth0 metric 69999 pref medium

PREVIOUSLY WAS:

:~# ip -6 r
default from fd00::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fd00::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fd56:90f4:dd4c::/64 dev eth0 proto static metric 9999 pref medium
fd56:90f4:dd4c::/60 dev eth0 metric 69999 pref medium
unreachable fd56:90f4:dd4c::/48 dev lo proto static metric 2147483647 pref medium
fe80::/64 dev 6in4-omr6in4 proto kernel metric 256 pref medium
fe80::/64 dev eth3 proto kernel metric 256 pref medium
fe80::/64 dev eth1 proto kernel metric 256 pref medium
fe80::/64 dev eth2 proto kernel metric 256 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev eth4 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth1 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth2 proto kernel metric 256 pref medium
fe80::/64 dev tun0 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth3 proto kernel metric 256 pref medium
fe80::/64 dev ifb4eth4 proto kernel metric 256 pref medium
default via fd56:90f4:dd4c:: dev eth0 metric 69999 pref medium

+++ EDIT +++
With the above patched routing policy I'm prioritizing IPv4 over v6 where I need it. This solves my problem by keeping the thing simple.

[AndreaLeidi]

default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium

doesn't survive to router reboots...

[rdmitry0911]

After installing the latest snapshot (June 27), the whole IPv6 traffic is now routed through the 6in4 tunnel, bringing it back to life. Apparently no proxy for TCP and UDP v6.

That's the problem I think why my tunnel doesn't work. my omr-vps has only ipv6 public address. With routing of all ipv6 traffic through the 6in4 tunnel there is no way to access my omr-vps public IP

[Ysurac]

@rdmitry0911 A default route to the VPS IPv6 should be created so the 6in4 should not make any problem. I will test if it's working (I've more tested IPv4 behind IPv6 only connections for now, so without 6in4).

@AndreaLeidi The route default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium is created by /etc/init.d/omr-6in4 and seems to survive reboot on my tests since last changes.
For omr-bypass, what is not working ? domains bypass ?
What is the proxy you use ? TCP should always use the proxy, UDP by default use the 6in4 tunnel.

[rdmitry0911]

@rdmitry0911 A default route to the VPS IPv6 should be created so the 6in4 should not make any problem. I will test if it's working (I've more tested IPv4 behind IPv6 only connections for now, so without 6in4).

With the latest commit there is no default route to the VPS IPv6. here is my routing table with ip -6 ro sh

default from fe80::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
2a02:1388:2163:c95a::6da dev eth2 metric 66 pref medium
2a02:1388:2163:c95a::/64 dev eth2 proto static metric 256 pref medium
unreachable 2a02:1388:2163:c95a::/64 dev lo proto static metric 2147483647 pref medium
2a0d:3344:1a87:cf00::/56 from 2a0d:3344:1a87:cf10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from 2a0d:3344:1a87:cf10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from fd6f:7e1:2556:10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from fd6f:7e1:2556:10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf10::b44 dev eth1 metric 63 pref medium
2a0d:3344:1a87:cf10::/64 dev eth1 proto static metric 256 pref medium
unreachable 2a0d:3344:1a87:cf10::/64 dev lo proto static metric 2147483647 pref medium
fd24:16af:d717::/48 from 2a02:1388:2163:c95a::6da via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from 2a02:1388:2163:c95a::/64 via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from fd24:16af:d717::6da via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from fd24:16af:d717::/64 via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/64 dev eth2 metric 65 pref medium
fd24:16af:d717::/64 dev eth2 proto static metric 256 pref medium
unreachable fd24:16af:d717::/64 dev lo proto static metric 2147483647 pref medium
fd6d:d2f0:12d8::/64 dev eth0 proto static metric 1024 pref medium
fd6d:d2f0:12d8::/64 dev eth0 proto static metric 9999 pref medium
fd6d:d2f0:12d8::/60 dev eth0 proto kernel metric 256 expires 6769sec pref medium
fd6d:d2f0:12d8::/60 dev eth0 metric 69999 pref medium
unreachable fd6d:d2f0:12d8::/48 dev lo proto static metric 2147483647 pref medium
fd6f:7e1:2556::/48 from 2a0d:3344:1a87:cf10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from 2a0d:3344:1a87:cf10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from fd6f:7e1:2556:10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from fd6f:7e1:2556:10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556:10::/64 dev eth1 metric 64 pref medium
fd6f:7e1:2556:10::/64 dev eth1 proto static metric 256 pref medium
unreachable fd6f:7e1:2556:10::/64 dev lo proto static metric 2147483647 pref medium
fe80::a00:1 dev 6in4-omr6in4 metric 1024 pref medium
fe80::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev 6in4-omr6in4 proto kernel metric 256 pref medium
fe80::/64 dev eth1 proto kernel metric 256 pref medium
fe80::/64 dev eth2 proto kernel metric 256 pref medium
default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium
default via fe80::7624:9fff:feb7:80cb dev eth1 metric 63 pref medium
default via 2a02:1388:2163:c95a:: dev eth2 metric 65 pref medium
default via fe80::3c51:e0ff:fec4:4eb2 dev eth2 metric 66 pref medium
default via fd6d:d2f0:12d8:: dev eth0 metric 69999 pref medium

There is nothing related to 2a01:4f8:212:25cf:ff00::199 which is my vps public IP
May be I have to use another build?

[rdmitry0911]

As far as I understand the routing logic when aggregation is enables should be like this:

ipv4-tcp goes:

1. to vps if vps has ipv4 public ip
2. to the ipv6 vps tunnel if vps does not have ipv4 public ip

ipv4-noncp goes:

1. to the ipv4 vps tunnel if vps has ipv4 public ip
2. to the ipv6 vps tunnel if vps does not have ipv4 public ip

ipv6-tcp goes:

1. to vps if vps has ipv6 public ip
2. to the ipv4 vps tunnel if vps does not have ipv6 public ip

ipv6-noncp goes:

1. to the ipv6 vps tunnel if vps has ipv6 public ip
2. to the ipv4 vps tunnel if vps does not have ipv6 public ip

Otherwise all the traffic should go via master interface

Can someone tell me how this logic is implemented through the scripts? I can find 6in4 scripts, but there are no 4in6 ones.

[Ysurac]

It's not the logic.
TCP IPv4 and IPv6 use the proxy and everything else use the VPN.
6in4 is over the VPN and is used for anything that is not TCP and IPv6.

So the VPN, used for anything that is not TCP, is always in IPv4 and 6in4 over it, even when using VPS IPv6.
The Proxy, for TCP, is always used for TCP IPv4 and IPv6.

[AndreaLeidi]

The route default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium is created by /etc/init.d/omr-6in4 and seems to survive reboot on my tests since last changes.

@Ysurac you're right, I'm sorry. I found openmptcprouter.settings.disable_6in4='1' on my router. Set it = 0 makes your latest changes working as expected, reboot after reboot. It's strange, I only use LUCI to config and this key is not linked to any control.

For omr-bypass, what is not working ? domains bypass ? What is the proxy you use ? TCP should always use the proxy, UDP by default use the 6in4 tunnel.

Proxy - I'm with Shadowsocks-libev, my router CPU doesn't have AES-NI.
OMR-bypass is by domain since Cloudflare is blocking my VPS IPv6 address on many sites.

I'm gonna run an untouched OMR image on virtualbox to compare each uci key with those of my router, in search of possible inconsistencies.

[rdmitry0911]

is always in IPv4 and 6in4 over it, even when using VPS IPv6.

What is the reason to have 6in4 over ipv4 vpn when ipv6 vpn is an option?

[Ysurac]

@rdmitry0911 It's easier to manage only a 6in4 for now.
This may change in the future.

[rdmitry0911]

@rdmitry0911 It's easier to manage only a 6in4 for now. This may change in the future.

Ok, I tried the latest commit with and without openmptcprouter.settings.disable_6in4='1' With glorytun and with openvpn Tunnel doesn't work at all. It even doesn't exist in ifconfig. However before it worked and only ipv6 non-mptcp-able traffic went out wrong way via master interface. What did I miss in config?

[Ysurac]

The "openmptcprouter.settings.disable_6in4" disable 6in4 tunnel so if set to 1, it's normal that 6in4 tunnel is not set up.
If IPv6 is enabled in the wizard, you should have the tunnel.

[rdmitry0911]

The "openmptcprouter.settings.disable_6in4" disable 6in4 tunnel so if set to 1, it's normal that 6in4 tunnel is not set up. If IPv6 is enabled in the wizard, you should have the tunnel.

The problem is not with 6in4-omr6in4 tunnel, it exists, the problem is with the main tunnel for non-tcp traffic between omr and vps. This one doesn't exist.

I have this in /etc/config/openmptcprouter

config settings 'settings'
        option enabled '1'
        option sipalg '1'
        option vpn 'openvpn'
        option master 'balancing'
        option disable_ipv6 '0'
        option check_ipv4_website 'http://ip.openmptcprouter.com'
        option check_ipv6_website 'http://ipv6.openmptcprouter.com'
        option status_vps_timeout '3'
        option status_getip_timeout '1'
        option enable_nodelay '1'
        option scaling_governor 'performance'
        option menu 'OpenMPTCProuter'
        option disableintfrename '1'
        option tracebox '0'
        option version '0.61-snapshot-6.1'
        option allmptcpovervpn '0'
        option serial 'Not'
        option mptcpovervpn 'wireguard'
        option dns64 '0'
        option proxy 'shadowsocks-rust'
        option ha '0'
        option encryption 'aes-256-gcm'
        option disable_fastopen '0'
        option external_check '1'
        option restrict_to_lan '0'
        option debug '0'
        option disablegwping '0'
        option disableloopdetection '0'
        option disableserverhttptest '0'
        option defaultgw '1'
        option modemmanager '1'
        option disableserverping '0'
        option shadowsocksudp '0'
        option ndpi '1'
        option sfe_enabled '0'
        option sfe_bridge '0'
        option vnstat_backup '0'
        option apilc '1719588022'
        option firstboot '0'
        option sysupgrade_lc '1719518285'
        option disable_6in4 '0'

and here is ifconfig output:

6in4-omr6in4 Link encap:IPv6-in-IPv4  
          inet6 addr: fe80::a00:2/126 Scope:Link
          inet6 addr: fe80::aff:fc03/64 Scope:Link
          UP POINTOPOINT RUNNING NOARP  MTU:1280  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1 errors:10484 dropped:0 overruns:0 carrier:10484
          collisions:0 txqueuelen:1000 
          RX bytes:0 (0.0 B)  TX bytes:46 (46.0 B)

eth0      Link encap:Ethernet  HWaddr BC:24:11:9C:08:0B  
          inet addr:192.168.99.1  Bcast:192.168.99.255  Mask:255.255.255.0
          inet6 addr: fe80::be24:11ff:fe9c:80b/64 Scope:Link
          inet6 addr: fd6d:d2f0:12d8::1/60 Scope:Global
          UP BROADCAST RUNNING MULTICAST  MTU:9000  Metric:1
          RX packets:2002 errors:0 dropped:0 overruns:0 frame:0
          TX packets:2906 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:187882 (183.4 KiB)  TX bytes:697890 (681.5 KiB)

eth1      Link encap:Ethernet  HWaddr 1C:BF:CE:6C:83:C2  
          inet addr:192.168.1.25  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: 2a0d:3344:1a87:cf10:1ebf:ceff:fe6c:83c2/64 Scope:Global
          inet6 addr: fe80::1ebf:ceff:fe6c:83c2/64 Scope:Link
          inet6 addr: fd6f:7e1:2556:10:1ebf:ceff:fe6c:83c2/64 Scope:Global
          inet6 addr: fd6f:7e1:2556:10::b44/128 Scope:Global
          inet6 addr: 2a0d:3344:1a87:cf10::b44/128 Scope:Global
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:7105 errors:0 dropped:0 overruns:0 frame:0
          TX packets:6720 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:3337471 (3.1 MiB)  TX bytes:760194 (742.3 KiB)

eth2      Link encap:Ethernet  HWaddr 1C:BF:CE:6C:92:EA  
          inet addr:192.168.10.199  Bcast:192.168.10.255  Mask:255.255.255.0
          inet6 addr: 2a02:1388:2163:c95a::6da/128 Scope:Global
          inet6 addr: fd24:16af:d717:0:1ebf:ceff:fe6c:92ea/64 Scope:Global
          inet6 addr: fd24:16af:d717::6da/128 Scope:Global
          inet6 addr: fe80::1ebf:ceff:fe6c:92ea/64 Scope:Link
          inet6 addr: 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea/64 Scope:Global
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:277 errors:0 dropped:0 overruns:0 frame:0
          TX packets:271 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:36878 (36.0 KiB)  TX bytes:28195 (27.5 KiB)

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:39804 errors:0 dropped:0 overruns:0 frame:0
          TX packets:39804 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:4485519 (4.2 MiB)  TX bytes:4485519 (4.2 MiB)

logread |tail -n 30

Jun 28 18:58:30 OpenMPTCProuter daemon.warn openvpn(omr)[4135]: Use --help for more information.
Jun 28 18:58:31 OpenMPTCProuter user.notice OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
Jun 28 18:58:35 OpenMPTCProuter daemon.err openvpn(omr)[4338]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:58:35 OpenMPTCProuter daemon.warn openvpn(omr)[4338]: Use --help for more information.
Jun 28 18:58:40 OpenMPTCProuter daemon.err openvpn(omr)[4753]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:58:40 OpenMPTCProuter daemon.warn openvpn(omr)[4753]: Use --help for more information.
Jun 28 18:58:45 OpenMPTCProuter daemon.err openvpn(omr)[4957]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:58:45 OpenMPTCProuter daemon.warn openvpn(omr)[4957]: Use --help for more information.
Jun 28 18:58:51 OpenMPTCProuter daemon.err openvpn(omr)[5371]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:58:51 OpenMPTCProuter daemon.warn openvpn(omr)[5371]: Use --help for more information.
Jun 28 18:58:54 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is setting up now
Jun 28 18:58:54 OpenMPTCProuter daemon.notice netifd: Interface 'wan1_4' is now down
Jun 28 18:58:56 OpenMPTCProuter daemon.err openvpn(omr)[5805]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:58:56 OpenMPTCProuter daemon.warn openvpn(omr)[5805]: Use --help for more information.
Jun 28 18:58:58 OpenMPTCProuter user.notice OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
Jun 28 18:59:00 OpenMPTCProuter user.notice omr-schedule-010-services: Can't find OpenVPN, restart it
Jun 28 18:59:00 OpenMPTCProuter daemon.err openvpn(omr)[6222]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:59:00 OpenMPTCProuter daemon.warn openvpn(omr)[6222]: Use --help for more information.
Jun 28 18:59:05 OpenMPTCProuter daemon.err openvpn(omr)[6774]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:59:05 OpenMPTCProuter daemon.warn openvpn(omr)[6774]: Use --help for more information.
Jun 28 18:59:05 OpenMPTCProuter user.notice MPTCP: Set eth2 to off from eth2 is in default mode
Jun 28 18:59:05 OpenMPTCProuter user.notice MPTCP: Set eth2 to on from eth2 is deactivated
Jun 28 18:59:08 OpenMPTCProuter user.notice OMR-VPS: Can't get vps token, try later (can't ping server vps on omr-vps.ddns.net, no server API answer on omr-vps.ddns.net)
Jun 28 18:59:10 OpenMPTCProuter daemon.err openvpn(omr)[7927]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:59:10 OpenMPTCProuter daemon.warn openvpn(omr)[7927]: Use --help for more information.
Jun 28 18:59:11 OpenMPTCProuter user.notice OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
Jun 28 18:59:15 OpenMPTCProuter daemon.err openvpn(omr)[8161]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:59:15 OpenMPTCProuter daemon.warn openvpn(omr)[8161]: Use --help for more information.
Jun 28 18:59:20 OpenMPTCProuter daemon.err openvpn(omr)[8575]: Options error: --nobind doesn't make sense unless used with --remote
Jun 28 18:59:20 OpenMPTCProuter daemon.warn openvpn(omr)[8575]: Use --help for more information.

ip -6 ro sh

default from fe80::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
2a02:1388:2163:c95a::6da dev eth2 metric 66 pref medium
2a02:1388:2163:c95a::/64 dev eth2 proto static metric 256 pref medium
unreachable 2a02:1388:2163:c95a::/64 dev lo proto static metric 2147483647 pref medium
2a0d:3344:1a87:cf00::/56 from 2a0d:3344:1a87:cf10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from 2a0d:3344:1a87:cf10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from fd6f:7e1:2556:10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf00::/56 from fd6f:7e1:2556:10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
2a0d:3344:1a87:cf10::b44 dev eth1 metric 63 pref medium
2a0d:3344:1a87:cf10::/64 dev eth1 proto static metric 256 pref medium
unreachable 2a0d:3344:1a87:cf10::/64 dev lo proto static metric 2147483647 pref medium
fd24:16af:d717::/48 from 2a02:1388:2163:c95a::6da via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from 2a02:1388:2163:c95a::/64 via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from fd24:16af:d717::6da via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/48 from fd24:16af:d717::/64 via fe80::3c51:e0ff:fec4:4eb2 dev eth2 proto static metric 512 pref medium
fd24:16af:d717::/64 dev eth2 metric 65 pref medium
fd24:16af:d717::/64 dev eth2 proto static metric 256 pref medium
unreachable fd24:16af:d717::/64 dev lo proto static metric 2147483647 pref medium
fd6d:d2f0:12d8::/64 dev eth0 proto static metric 9999 pref medium
fd6d:d2f0:12d8::/60 dev eth0 metric 69999 pref medium
unreachable fd6d:d2f0:12d8::/48 dev lo proto static metric 2147483647 pref medium
fd6f:7e1:2556::/48 from 2a0d:3344:1a87:cf10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from 2a0d:3344:1a87:cf10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from fd6f:7e1:2556:10::b44 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556::/48 from fd6f:7e1:2556:10::/64 via fe80::7624:9fff:feb7:80cb dev eth1 proto static metric 512 pref medium
fd6f:7e1:2556:10::/64 dev eth1 metric 64 pref medium
fd6f:7e1:2556:10::/64 dev eth1 proto static metric 256 pref medium
unreachable fd6f:7e1:2556:10::/64 dev lo proto static metric 2147483647 pref medium
fe80::a00:1 dev 6in4-omr6in4 metric 1024 pref medium
fe80::a00:0/126 dev 6in4-omr6in4 proto static metric 1201 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev eth1 proto kernel metric 256 pref medium
fe80::/64 dev eth2 proto kernel metric 256 pref medium
fe80::/64 dev 6in4-omr6in4 proto kernel metric 256 pref medium
default via fe80::a00:1 dev 6in4-omr6in4 metric 1 pref medium
default via fe80::7624:9fff:feb7:80cb dev eth1 metric 63 pref medium
default via 2a02:1388:2163:c95a:: dev eth2 metric 65 pref medium
default via fe80::3c51:e0ff:fec4:4eb2 dev eth2 metric 66 pref medium
default via fd6d:d2f0:12d8:: dev eth0 metric 69999 pref medium

[Ysurac]

This is the problem: OMR-Tracker-Server: Master server vps down (2a01:4f8:212:25cf:ff00::199)
The VPS doesn't answer to ping in test.
Can you try a ping -B -I eth1 2a01:4f8:212:25cf:ff00::199 and same with eth2 ?
Both interface have many IPv6, do you know why ?

[rdmitry0911]

The VPS doesn't answer to ping in test.

This didn't happen with the old version.

Can you try a ping -B -I eth1 2a01:4f8:212:25cf:ff00::199 and same with eth2 ?

yes, 2a01:4f8:212:25cf:ff00::199 is reachable via both interfaces

Both interface have many IPv6, do you know why ?

I have no idea. This is how dhcpv6 works. This happens all the time with the new firmware and with the old one. The router sitting on omr eth2 interface is also running openwrt ans is under mine control. It also has several ipv6 addresses on its wan interface like this:

wwan0     Link encap:Ethernet  HWaddr E6:90:C9:AD:69:CA  
          inet addr:10.63.201.223  Bcast:10.63.201.255  Mask:255.255.255.192
          inet6 addr: 2a02:1388:2163:c95a:e490:c9ff:fead:69ca/64 Scope:Global
          inet6 addr: fe80::e490:c9ff:fead:69ca/64 Scope:Link
          UP BROADCAST RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:45271390 errors:0 dropped:2459 overruns:0 frame:0
          TX packets:32529836 errors:0 dropped:11 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:45589037975 (42.4 GiB)  TX bytes:5771839966 (5.3 GiB)

[rdmitry0911]

It seems, that for any reason the route to vps in new firmware is via 6in4-omr6in4 This is the problem why the omr <-> vps tunnel doesn't start. My vps doesn't have ipv4 public address.

tcpdump -n -i any host 2a01:4f8:212:25cf:ff00::199

tcpdump: data link type LINUX_SLL2
tcpdump: verbose output suppressed, use -v[v]... for full protocol decode
listening on any, link-type LINUX_SLL2 (Linux cooked v2), snapshot length 262144 bytes
06:45:22.102351 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.60203 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 267495658, win 42700, options [mss 1220,sackOK,TS val 1706537960 ecr 0,nop,wscale 9], length 0
06:45:22.920762 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.17991 > 2a01:4f8:212:25cf:ff00::199.65280: Flags [S], seq 4209595465, win 42700, options [mss 1220,sackOK,TS val 1706538778 ecr 0,nop,wscale 9,mptcp 4 capable v1], length 0
06:45:23.140833 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.60203 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 267495658, win 42700, options [mss 1220,sackOK,TS val 1706538999 ecr 0,nop,wscale 9], length 0
06:45:23.950827 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.17991 > 2a01:4f8:212:25cf:ff00::199.65280: Flags [S], seq 4209595465, win 42700, options [mss 1220,sackOK,TS val 1706539809 ecr 0,nop,wscale 9,mptcp 4 capable v1], length 0
06:45:24.142949 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30549 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 1398342312, win 42700, options [mss 1220,sackOK,TS val 1706540001 ecr 0,nop,wscale 9], length 0
06:45:25.230829 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30549 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 1398342312, win 42700, options [mss 1220,sackOK,TS val 1706541089 ecr 0,nop,wscale 9], length 0
06:45:26.233016 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30563 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 2621848121, win 42700, options [mss 1220,sackOK,TS val 1706542091 ecr 0,nop,wscale 9], length 0
06:45:27.310832 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30563 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 2621848121, win 42700, options [mss 1220,sackOK,TS val 1706543169 ecr 0,nop,wscale 9], length 0
06:45:28.312956 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30575 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 891390944, win 42700, options [mss 1220,sackOK,TS val 1706544171 ecr 0,nop,wscale 9], length 0
06:45:29.380821 6in4-omr6in4 Out IP6 2a02:1388:2163:c95a:1ebf:ceff:fe6c:92ea.30575 > 2a01:4f8:212:25cf:ff00::199.65500: Flags [S], seq 891390944, win 42700, options [mss 1220,sackOK,TS val 1706545239 ecr 0,nop,wscale 9], length 0
^C
10 packets captured
10 packets received by filter
0 packets dropped by kernel