Name: Matt Domsch
Fedora Account Name: mdomsch
Infrastructure Sponsor: mdomsch
Secondary Contact info
Name: Jeff Garzik
Fedora Account Name: jgarzik
Group: Kernel Developers
Project Name: IPv6 Connectivity for Infrastructure
Target Audience: IPv6-capable users
Expiration/Delivery Date (required): 12/31/2009
Description/Summary: Fedora Infrastructure services are not reachable via IPv6. This plan allows FI to serve both IPv4 and IPv6 users.
Project plan (Detailed):
- Discover and use native IPv6 connectivity if offered in each of our data centers.
- Telia is reported to have it, but only for BGP customers (e.g. no us.)
- Options: 6to4 gateway server, or 6to4 on each public-facing (static IP) server. Note: We have decided to only use native IPv6, not tunnels.
- Convert services one by one to serve IPv6 natively.
- Proxy Servers
Specific resources needed
- existing resources are sufficient. IPv6 will be enabled on existing hosts where it makes sense.
IPv6 Capabilities by Data Center
- PHX - unknown
- PHX2 - hardware capable, but native routing not configured, and no plans to enable.
- telia - native IPv6 available, but only to BGP customers. We don't rate. :-(
- tummy - none available. Request filed with Kevin Fenzi.
- serverbeach - none available.
- ibiblio - native IPv6 available, dynamic addresses assigned on ibiblio1 and its guests already. Static IP range declared by us, using ::fed0:* for host address part.
- BU - not available yet, but testing will begin Spring 2010 with plans for production use by Fall 2010.
- osuosl - planned by "end of summer". Check back in a few months.
Potential IPv6 services given DC capabilities
As ibiblio already has IPv6 connectivity, these are the servers and their apps that could be easily enabled.
- proxy4 (therefore web apps behind it)
- mostly set up in ~mdomsch/puppet ipv6 branch
- need another IPv6 address (not stateless autoconf) for proxy4-2, then fix manifests/servergroups/proxy.pp so the v4 and v6 addresses for all the proxy4-2 match.
- also modules/httpd/files/00-namevirtualhost.conf
- however, our current tracker, bittorrent-4.4.0-5.el5 does not support IPv6
- opentracker does. This is not packaged in Fedora yet, but the license is beerware so could be.
- ns2 (DNS)
- branch libowfat for EL-5 (done), build it, and build opentracker.
- add GLUE record to NS2 with Network Solutions (domain registrar) for each domain (as needed)
- add separate MaxMind IPv6 database to monthly download script, and to MM. Without this, MM can't do any geoip lookups. (done)
- for some users, particularly those on PPP connections of some sort, using the default MTU of 1500 bytes winds up being too big, and packets are getting dropped for those users. A user can manually reduce their MTU down to say 1472, and report success. (1 report)
- for some users, particularly 6to4 users (2002::/16), various routers within the Internet are dropping their packets, either in getting to fedoraproject.org, or on return from fedoraproject.org. (5 reports)
- If you are having trouble reading fedoraproject.org web pages while using Firefox, you can disable ipv6 lookups in Firefox.
about:config network.dns.disableIPv6 = True