Infrastructure/IPv6

= Project Sponsor = Name: Matt Domsch Fedora Account Name: mdomsch Group: Infrastructure Infrastructure Sponsor: mdomsch

Secondary Contact info
Name: Jeff Garzik Fedora Account Name: jgarzik Group: Kernel Developers

Project Info
Project Name: IPv6 Connectivity for Infrastructure Target Audience: IPv6-capable users Expiration/Delivery Date (required): 12/31/2009

Description/Summary: Fedora Infrastructure services are not reachable via IPv6. This plan allows FI to serve both IPv4 and IPv6 users.

Project plan (Detailed):


 * 1) Discover and use native IPv6 connectivity if offered in each of our data centers.
 * 2) Telia is reported to have it, but only for BGP customers (e.g. no us.)
 * 3) Options:  6to4 gateway server, or 6to4 on each public-facing (static IP) server.  Note: We have decided to only use native IPv6, not tunnels.
 * 4) Convert services one by one to serve IPv6 natively.
 * 5) Proxy Servers
 * 6) MirrorManager

Goals:

Specific resources needed

 * existing resources are sufficient. IPv6 will be enabled on existing hosts where it makes sense.

IPv6 Capabilities by Data Center

 * PHX - none available.
 * PHX2 - hardware capable, but native routing not configured, and no plans to enable.
 * telia - native IPv6 available, but only to BGP customers.
 * tummy - none available. Request filed with Kevin Fenzi.
 * serverbeach - none available.
 * ibiblio - native IPv6 available, dynamic addresses assigned on ibiblio1 and its guests already. Static IP range declared by us, using ::fed0:* for host address part.
 * BU - not available yet, but testing will begin Spring 2010 with plans for production use by Fall 2010.
 * osuosl - planned by "end of summer". Check back in a few months.

Potential IPv6 services given DC capabilities
As ibiblio already has IPv6 connectivity, these are the servers and their apps that could be easily enabled.


 * proxy4 (therefore web apps behind it)
 * Enabled 2009-08-31
 * ns2 (DNS)
 * Enabled 2009-08-31. Awaiting GLUE records from our domain registrar.
 * torrent1
 * our current tracker, bittorrent-4.4.0-5.el5 does not support IPv6
 * opentracker does. This is not packaged in Fedora yet, but the license is beerware so could be.
 * publictest[1234]

TODO

 * branch opentracker and build for EL-5. review request


 * add GLUE record to NS2 with Network Solutions (domain registrar) for each domain (as needed)

Known Problems
about:config network.dns.disableIPv6 = True
 * for some users, particularly those on PPP connections of some sort, using the default MTU of 1500 bytes winds up being too big, and packets are getting dropped for those users. A user can manually reduce their MTU down to say 1472, and report success.  (1 report)
 * for some users, particularly 6to4 users (2002::/16), various routers within the Internet are dropping their packets, either in getting to fedoraproject.org, or on return from fedoraproject.org. (5 reports)
 * If you are having trouble reading fedoraproject.org web pages while using Firefox, you can disable ipv6 lookups in Firefox.