Versions Compared

Old Version 64

changes.mady.by.user Dick Visser

Saved on

compared with

New Version 65

changes.mady.by.user Dick Visser

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Advanced Tables - Table Plus

Date

 

 

2011-02-28

Host ldap.terena.org IPv6 only (smile)

Removed IPv4 address and A record

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="79b8c4bb5df0b025-9f8c9c9e-4545474a-8e2e81ec-85d52d66f8d0015835670019"><ac:plain-text-body><![CDATA[

2011-02-07

Nagios runs only on IPv6

Configure Listen [2001:610:158:98d::42]:80 in /etc/apache/ports.conf

]]></ac:plain-text-body></ac:structured-macro>

2011-02-07

Host svn.terena.org IPv6 only (smile)

Removed IPv4 address and A record

2011-02-01

All linux servers run Postfix on IPv6 only (except listed MXs)

Remove IPv4 addresses from $mynetworks, and set "inet_protocols = ipv6"

2011-01-31

All linux managed by SSH via IPv6 only

Configure "ListenAddress ::" in sshd_config

2011-01-30

All linux servers use only IPv6 resolvers

Only IPv6 addresses in /etc/resolv.conf

2010-10-26

VPN supports IPv6

A new VPN setup: Cisco AnyConnect. Clients get an IPv4 and an IPv6 address from the office pools, so they can access all services via IPv6

...

Some tests indicate the Ecdysis works well.
Also, they presented at our own conference last year (wink)
Take into consideration!

Linux issues

(error) (warning)

PECL radius

IPv6 doesn't work. Needed for TERENA web site. Considering rewriting code (tick) Update 2011-03-01: by upgrading Pear_Auth, Pear Live_User was able to use LDAP (via IPv6), without the Radius overhead.

(tick)

apt-get

security.ubuntu.com does not work, so no security updates. Workaround: use local mirror nl.archive.ubuntu.com for security updates.

(tick)

Pear Net_Socket

Does not like IPv6 addresses, wrote patch.

(tick)

ntp

ntp.ubuntu.com does not work. Use our own NTP server graham.terena.org, or one of the many SURFnet chimes.

(tick)

ntp

dumps core without IPv4 loopback address. Keep legacy 127.0.0.1 address

(tick)

Confluence and JIRA LDAP auth via IPv6 = b0rked

Workaround: use IPv6 only hostname: ldap.ipv6.terena.org

(tick)

Radiator

Cannot use IPv6 LDAP server. Filed support ticket at Open.com.au. Fixed as of 2011-02-12. Also make sure to add flags to any custom perl hooks:
my $ldap = Net::LDAP->new('ldap://ldap.terena.org',inet6=>1);

(tick)

Listmanager

Custom email list manager, running on Erasmus. 2 lists were doing queries to ldap.terena.org. Unfortunately the Net::LDAP in Ubuntu Hardy (libnet-ldap-perl) is too old and does not recognise the inet6 paramater. Hacked Fixed by copying /usr/share/perl5/Net/LDAP.pm from a Lucid box.

(warning)

Nmap

Nmap only recognizes IPv6 resolvers by specifying "--system-dns"

...