[systemd-devel] Regression in ipv6 resolutions in systemd-resolved with AF_UNSPEC
Mantas Mikulėnas
grawity at gmail.com
Wed Feb 24 13:46:07 UTC 2016
On Wed, Feb 24, 2016 at 2:04 PM, Yuriy M. Kaminskiy <yumkam at gmail.com>
wrote:
> On 19.02.2016 18:26, Lennart Poettering wrote:
>
>> Note that resolved will not look up IPv6 addresses if this isn't
>> explicitly requested if there are no local routable IPv6 addresses
>> configured. And vice versa, it won't look for IPv4 addresses if this
>>
>
> Maybe I'm missing something, but That looks ...problematic. To extreme.
> So, I cannot
>
> getent ahosts www.freedesktop.org | while read a rest; do
> case $a in
> *:*) ip6tables -A OUTPUT -d $a -j REJECT;;
> *.*) iptables -A OUTPUT -d $a -j REJECT;;
> esac
> done
>
> *before* I've got my ipv6 connectivity up and running?
getent ahostsv4 www.freedesktop.org | while read a rest; do
iptables -A OUTPUT -d $a -j REJECT
done
getent ahostsv6 www.freedesktop.org | while read a rest; do
ip6tables -A OUTPUT -d $a -j REJECT
done
I'm not sure I like the feature myself – the last time I had to deal with
libc's equivalent, AI_ADDRCONF, it would even prevent programs from
resolving _localhost_ when the system wasn't online... But, I guess it can
improve things in certain situations.
--
Mantas Mikulėnas <grawity at gmail.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20160224/4c157900/attachment.html>
More information about the systemd-devel
mailing list