Deploy IPv6 for mail.nasqueron.org
Open, HighPublic
Actions

Assigned To

None

Authored By

	dereckson
	Jun 6 2015, 20:34

Description

Currently, mail.nasqueron.org SMTP server connects to other servers in IPv4 only:
Feb 15 15:02:52 hervil postfix/smtp[63552]: connect to gmail-smtp-in.l.google.com[2a00:1450:4009:c0f::1a]:25: No route to host

IPv6 is supported on the hypervisor where the mail server Hervil is, directly from a OVH /64 range.

Plan:

Add IPv6 to NetBox
Add IPv6 to pillar - https://devcentral.nasqueron.org/source/operations/browse/main/pillar/nodes/nodes.sls$189
Add to the DNS zone a AAAA record for mail.nasqueron.org
Check with nc -zv 2a00:1450:4009:c0f::1a 25 if we can reach a SMTP server through IPv6
Check we listen to IPv6 for Postfix server
Check we listen to IPv6 for Dovecot server
Check we listen to IPv6 for nginx

Related Objects
Search...

Status	Assigned	Task
Resolved	ieli	T402 Redirect @bioty.co mail to another mail address
Wontfix	dereckson	T4 Setup fauve services
Resolved	Sandlayth	T404 Install a mail server on Dwellers
Resolved	dereckson	T407 DNS configuration for mail.nasqueron.org
Open	None	T420 Deploy IPv6 for mail.nasqueron.org

Event Timeline

dereckson created this task.Jun 6 2015, 20:34

dereckson claimed this task.

dereckson raised the priority of this task from to High.

dereckson updated the task description. (Show Details)

dereckson added projects: Mail, Nasqueron Docker deployment squad.

dereckson added subscribers: Sandlayth, ieli, dereckson.

dereckson removed a subscriber: ieli.

Added to the new project-as-tag IPv6 to help to identify and organize tasks requiring IPv6 love.

Not currently working on this.

dereckson moved this task from Backlog - On hold pending T1475 to Checks after T1475 on the Mail board.Jul 2 2023, 19:46

dereckson moved this task from Backlog to Servers on the IPv6 board.Oct 13 2024, 12:04

web-001 on the same hypervisor has correct IPv6 support, we can do the same for Hervil with the /56 trick and the hello trick:

The gateway and our /64 IP block belong to a same /56 block
OVH route advertisements doesn't reach the server often enough, but if we send a packet to try to reach a IPv6 host, we can receive a configuration
Not to use IPv6 for some time and we aren't reachable from outside anymore

All those tricks are already available in roles/core/network unit, so it just need to change pillar/nodes/nodes.sls and NetBox.

dereckson updated the task description. (Show Details)Sun, Feb 15, 15:39

dereckson added a project: Servers.

dereckson updated the task description. (Show Details)

dereckson added subscribers: DorianWinty, yousra, Duranzed.

Deploy IPv6 for mail.nasqueron.orgOpen, HighPublicActions

Description

Related ObjectsSearch...

Event Timeline

Deploy IPv6 for mail.nasqueron.org
Open, HighPublic
Actions

Related Objects
Search...