Gitiles
Code Review Sign In
192.168.1.100 / T106_DC / df7f8babc2c13f7adf53ff8e17580ae47c0e07bf / . / ap / app / Script / scripts / psext_updown_ipv6.sh
blob: 06bee367eed9f807551f2456292e26f1a9bd793c [file] [log] [blame]
#!/bin/sh
path_sh=`nv get path_sh`
. $path_sh/global.sh
#echo "Info: psext_updown_ipv6.sh $1 $2 start" >> $test_log
c_id=$2
dhcp6s_conf=$path_conf/dhcp6s$c_id.conf
radvd_conf=$path_conf/radvd$c_id.conf
ndp_log=$path_conf/ndp$c_id.log
radvd_pidfile=$path_tmp/radvd$c_id.pid
ps_if=`nv get pswan`$c_id
eth_if=`nv get "ps_ext"$c_id`
ps_ext_mode=`nv get need_jilian`
br_if="br"$c_id
dnsconfig=0
prefix_len=64
echo "Info: psext_updown_ipv6.sh $ps_ext_mode $ps_if $eth_if $br_if start" >> $test_log
b_dhcpv6stateEnabled=`nv get dhcpv6stateEnabled`
b_dhcpv6statelessEnabled=`nv get dhcpv6statelessEnabled`
#采用PDP激活方式,没有dhcp6c进程
#############linkup dhcpserver set############
linkup_add_dns_to_dhcp6s_radvd_conf()
{
#直连模式没有手动DNS
ipv6_pridns_auto=`nv get $ps_if"_ipv6_pridns_auto"`
ipv6_secdns_auto=`nv get $ps_if"_ipv6_secdns_auto"`
if [ -n "$ipv6_pridns_auto" ] && [ "-$ipv6_pridns_auto" != "-::" ] && [ "-$ipv6_pridns_auto" != "-::0" ];then
ipv6_prefer_dns=$ipv6_pridns_auto
fi
if [ -n "$ipv6_secdns_auto" ] && [ "-$ipv6_secdns_auto" != "-::" ] && [ "-$ipv6_secdns_auto" != "-::0" ];then
ipv6_standby_dns=$ipv6_secdns_auto
fi
if [ "-$ipv6_prefer_dns" == "-" -a "-$ipv6_standby_dns" == "-" ]; then
return
else
if [ -n "$1" ] && [ "-$1" == "-dhcp6s" ] ;then
echo -e "\toption dns_servers $ipv6_prefer_dns $ipv6_standby_dns;" >> $dhcp6s_conf
elif [ -n "$1" ] && [ "-$1" == "-radvd" ] ;then
# del last line
sed -i '$d' $radvd_conf
echo -e "\tRDNSS $ipv6_prefer_dns $ipv6_standby_dns\n\t{" >> $radvd_conf
echo -e "\t\tAdvRDNSSPreference 15;" >> $radvd_conf
echo -e "\t\tAdvRDNSSOpen on;" >> $radvd_conf
echo -e "\t};\n};" >> $radvd_conf
fi
if [ "-$dnsconfig" == "-0" ]; then
echo "dnsconfig $1 $ipv6_prefer_dns, $ipv6_standby_dns" >> $test_log
if [ "-$ipv6_prefer_dns" != "-" ]; then
echo "nameserver $ipv6_prefer_dns" >> /etc/resolv.conf
fi
if [ "-$ipv6_standby_dns" != "-" ]; then
echo "nameserver $ipv6_standby_dns" >> /etc/resolv.conf
fi
dnsconfig=1
fi
fi
}
linkup_dhcpv6_set()
{
dhcpv6_start=$pdp_ip
dhcpv6_end=$pdp_ip
#nv值非空则表示用户设置了静态ip、gw
gw=`nv get $ps_if"_ipv6_gw"`
echo -e "interface $br_if {" > $dhcp6s_conf
if [ "-$b_dhcpv6stateEnabled" = "-1" ];then
echo -e "\tserver-preference 255;\n\trenew-time 6000;" >> $dhcp6s_conf
echo -e "\trebind-time 9000;\n\tprefer-life-time 1300;" >> $dhcp6s_conf
echo -e "\tvalid-life-time 2000;\n\tallow rapid-commit;" >> $dhcp6s_conf
echo -e "\tlink $br_if {\n\t\tallow unicast;\n\t\tsend unicast;" >> $dhcp6s_conf
echo -e "\t\tpool {\n\t\t\trange $dhcpv6_start to $dhcpv6_end/$prefix_len;" >> $dhcp6s_conf
echo -e "\t\t};\n\t};" >> $dhcp6s_conf
linkup_add_dns_to_dhcp6s_radvd_conf dhcp6s
echo -e "};" >> $dhcp6s_conf
dhcp6s -dDf -c $dhcp6s_conf $br_if &
else
#slaac with dhcp statelessset dns info
if [ "-$b_dhcpv6statelessEnabled" = "-1" ];then
echo -e "\tlink $br_if {\n\t};" >> $dhcp6s_conf
linkup_add_dns_to_dhcp6s_radvd_conf dhcp6s
echo -e "};" >> $dhcp6s_conf
dhcp6s -dDf -c $dhcp6s_conf $br_if &
if [ $? -ne 0 ];then
echo "Error: dhcp6s -dDf -c $dhcp6s_conf $br_if failed." >> $test_log
fi
fi
fi
}
#获取ip并配置ps、eth
linkup_get_addr()
{
#disable the forwarding to send RS and not set the addr when receive ra packet
echo 0 > /proc/sys/net/ipv6/conf/all/forwarding
echo 0 > /proc/sys/net/ipv6/conf/$ps_if/accept_ra
echo 0 > /proc/sys/net/ipv6/conf/$eth_if/accept_ra
echo 0 > /proc/sys/net/ipv6/conf/$br_if/accept_ra
#call the slaac program to get the prefix addr
ifconfig $ps_if up 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $ps_if up failed." >> $test_log
fi
prefix_info_temp=`nv get $ps_if"_ipv6_prefix_info"`
#如果当前没有前缀,则直接启动slaac,如果当前前缀已经设置,则说明已经获取到,直接配置IP地址即可
if [ -n "$prefix_info_temp" -a "-$prefix_info_temp" != "-::" ]; then
ret_code=0
else
sleep 1
interface_id_temp1=`nv get $ps_if"_ipv6_interface_id"`
local_ipv6_addr="fe80::"$interface_id_temp1
local_ipv6_addr_nv="$ps_if""_local_ipv6_addr"
nv set $local_ipv6_addr_nv=$local_ipv6_addr
ip -6 addr add $local_ipv6_addr/64 dev $ps_if 2>>$test_log
zte_ipv6_slaac -i "$ps_if"
ret_code=$?
fi
echo "Info: zte_ipv6_slaac return: $ret_code" >> $test_log
echo "the program zte_ipv6_slaac return = $ret_code"
if [ $ret_code -eq 0 ]; then
echo "the zte_ipv6_slaac success"
interface_id_temp=`nv get $ps_if"_ipv6_interface_id"`
prefix_info_temp=`nv get $ps_if"_ipv6_prefix_info"`
prefix_len=`nv get $ps_if"_ipv6_prefix_len"`
echo "##############1##########"
echo "$interface_id_temp"
echo "$prefix_info_temp $prefix_len"
echo "##############2##########"
#pdp 激活的ipv6地址
pdp_ip=$prefix_info_temp$interface_id_temp
#pdp激活地址,适配页面使用
nv set ipv6_wan_ipaddr="$pdp_ip"
ipv6_addr_conver $pdp_ip "$ps_if"
#给eth分配地址,使用ipv6_addr_conver在第15+1
br_ip=`nv get ipv6_br0_addr`
brctl addbr $br_if
brctl setfd $br_if 0.1
nv set $br_if"_ipv6_ip"=$br_ip
if [ "$eth_if" != "zvnet"$c_id ]; then
ifconfig $br_if up 2>>$test_log
else
ifconfig $br_if -arp up 2>>$test_log
fi
if [ $? -ne 0 ];then
echo "Error: ifconfig $br_if up failed." >> $test_log
fi
ip -6 addr add $br_ip/64 dev $br_if
#给外网口分配地址,使用ipv6_addr_conver在第15+2
ps_ip=`nv get $ps_if"_dhcpv6_start"`
nv set $ps_if"_ipv6_ip"=$ps_ip
#ifconfig $ps_if $ps_ip up
#if [ $? -ne 0 ];then
# echo "Error: ifconfig $ps_ip up failed." >> $test_log
#fi
ip -6 addr add $ps_ip/126 dev $ps_if 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ip -6 addr add $ps_ip/126 dev $ps_if failed." >> $test_log
fi
nv set $ps_if"_ipv6_state"="working"
echo "Info: zte_ipv6_slaac pdp_ip: $pdp_ip" >> $test_log
echo "Info: zte_ipv6_slaac ps_ip: $ps_ip" >> $test_log
echo "Info: zte_ipv6_slaac br_ip: $br_ip" >> $test_log
else
echo "the zte_ipv6_slaac fail"
nv set $ps_if"_ipv6_state"="dead"
exit 1
fi
}
#路由规则,ps与eth级联
linkup_route_set()
{
echo 0 > /proc/sys/net/ipv6/conf/all/forwarding
marknum=`expr $c_id + 60`
ip6tables -t mangle -A PREROUTING -i $ps_if -j MARK --set-mark $marknum
rt_num=`expr $c_id + 160`
ip -6 route add default dev $br_if table $rt_num
ip -6 rule add to $pdp_ip/64 fwmark $marknum table $rt_num
marknum=`expr $c_id + 50`
ip6tables -t mangle -A PREROUTING -i $br_if -j MARK --set-mark $marknum
rt_num=`expr $c_id + 150`
ip -6 route add default dev $ps_if table $rt_num
ip -6 rule add from $pdp_ip/64 fwmark $marknum table $rt_num
ip6tables -t filter -A FORWARD -p icmpv6 --icmpv6-type 135 -j DROP
ip -6 route flush cache
route_info=`ip -6 route|grep default`
if [ "$route_info" == "" ];then
#这句设完,里面可以ping通外网了
echo "Info: route_set ps_ip=$ps_ip" >> $test_log
#ip -6 route add default via $ps_ip dev $ps_if
ip -6 route add default dev $ps_if 2>>$test_log
else
echo "Debug: default route6 already exist." >> $test_log
fi
if [ $? -ne 0 ];then
echo "Error: ip -6 route add default dev $ps_if failed." >> $test_log
fi
#enable ipv6 packet forwarding
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
echo 1 > /proc/sys/net/ipv6/conf/$ps_if/accept_ra
echo 1 > /proc/sys/net/ipv6/conf/$eth_if/accept_ra
echo 1 > /proc/sys/net/ipv6/conf/$br_if/accept_ra
#enable ipv6 neigh discovery proxy
echo 1 > /proc/sys/net/ipv6/conf/all/proxy_ndp
ndp_kill
zte_ndp -a -s $br_if -d $ps_if -l $ndp_log -p &
}
#############linkup radvd set############
linkup_radvd_set()
{
echo "enter linkup_radvd_set "
rm -rf $radvd_conf
if [ "-$b_dhcpv6stateEnabled" = "-1" ];then
echo -e "interface $br_if\n{\n\tAdvSendAdvert on;" > $radvd_conf
echo -e "\tAdvManagedFlag on;\n};" >> $radvd_conf
radvd_kill
rm -rf $radvd_pidfile
radvd -d 3 -C $radvd_conf -p $radvd_pidfile&
echo "leave linkup_radvd_set "
return
fi
echo "Info: psext_updown_ipv6.sh br_if:$br_if, prefix_len:$prefix_len" >> $test_log
echo "ipv6_br0_addr_tmp:$ipv6_br0_addr_tmp"
echo "prefix_len:$prefix_len"
cp $path_ro/radvd_template.conf $radvd_conf
sed -i -e 's/#ipv6_wan_addr#\/64/#ipv6_wan_addr#\/#prefix_len#/g' $radvd_conf
sed -i -e s/br0/$br_if/g $radvd_conf
sed -i -e s/#ipv6_wan_addr#/$br_ip/g $radvd_conf
sed -i -e s/#prefix_len#/$prefix_len/g $radvd_conf
sed -i -e s/#adv_switch#/on/g $radvd_conf
# TODO: replace br0's ipv6 address
#sed -i -e s/#ipv6_wan_addr#/$wan_addr/g $radvd_conf
#sed -i -e s/#adv_switch#/on/g $radvd_conf
#slaac with dns info
if [ "-$b_dhcpv6statelessEnabled" = "-1" ];then
echo "use dhcpv6stateless for dns"
else
sed -i -e 's/AdvOtherConfigFlag on;/AdvOtherConfigFlag off;/g' $radvd_conf
linkup_add_dns_to_dhcp6s_radvd_conf radvd
fi
radvd_kill
sleep 1
rm -rf $radvd_pidfile
radvd -d 3 -C $radvd_conf -p $radvd_pidfile &
echo "leave linkup_radvd_set "
}
#构建网桥
br_up()
{
br="br"$c_id
brctl addbr $br 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl addbr $br failed." >> $test_log
fi
brctl setfd $br 0.1 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl setfd $br 0.1 failed." >> $test_log
fi
ifconfig $br up 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $br up failed." >> $test_log
fi
ifconfig $ps_if up 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $ps_if up failed." >> $test_log
fi
brctl addif $br $ps_if 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl addif $br $ps_if failed." >> $test_log
fi
brctl addif $br $eth_if 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl addif $br $eth_if failed." >> $test_log
fi
ifconfig $eth_if up 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $eth_if up failed." >> $test_log
fi
}
#删除网桥
br_down()
{
br="br"$c_id
brctl delif $br $eth_if 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl delif $br $eth_if failed." >> $test_log
fi
ifconfig $eth_if down 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $eth_if down failed." >> $test_log
fi
brctl delif $br $ps_if 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl delif $br $ps_if failed." >> $test_log
fi
ifconfig $ps_if down 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $ps_if down failed." >> $test_log
fi
ifconfig $br down 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $br down failed." >> $test_log
fi
brctl delbr $br 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: brctl delbr $br failed." >> $test_log
fi
}
#清除相应的radvd进程
linkdown_radvd_set()
{
#跟终端连接的网口直接会down,所以不用像ufi一样设置成1s有效期
radvd_kill
}
#清除相应的DHCPv6进程
linkdown_dhcpv6_server_set()
{
dhcp6s_kill
}
#删除相应的ipv6路由规则
linkdown_route_set()
{
br_ip=`nv get $br_if"_ipv6_ip"`
ps_ip=`nv get $ps_if"_ipv6_ip"`
pdp_ip=`nv get ipv6_wan_ipaddr`
ip6tables -t filter -D FORWARD -p icmpv6 --icmpv6-type 135 -j DROP
marknum=`expr $c_id + 50`
rt_num=`expr $c_id + 150`
ip -6 rule del from $pdp_ip/64 fwmark $marknum table $rt_num
ip6tables -t mangle -D PREROUTING -i $br_if -j MARK --set-mark $marknum
ip -6 route del default dev $ps_if table $rt_num
marknum=`expr $c_id + 60`
rt_num=`expr $c_id + 160`
ip -6 rule del to $pdp_ip/64 fwmark $marknum table $rt_num
ip6tables -t mangle -D PREROUTING -i $ps_if -j MARK --set-mark $marknum
ip -6 route del default dev $br_if table $rt_num
ip -6 addr del $br_ip/126 dev $br_if
#if [ $? -ne 0 ];then
# echo "Error: ip -6 addr del $eth_ip/126 dev $eth_if failed." >> $test_log
#fi
ip -6 addr del $ps_ip/126 dev $ps_if
#if [ $? -ne 0 ];then
# echo "Error: ip -6 addr del $ps_ip/126 dev $ps_if failed." >> $test_log
#fi
ip -6 route del default dev $ps_if
#if [ $? -ne 0 ];then
# echo "Error: ip -6 route del default failed." >> $test_log
#fi
ifconfig $br_if down 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $br_if down failed." >> $test_log
fi
ifconfig $ps_if down 2>>$test_log
if [ $? -ne 0 ];then
echo "Error: ifconfig $ps_if down failed." >> $test_log
fi
echo 0 > /proc/sys/net/ipv6/conf/$ps_if/accept_ra
#reset nv
nv set $br_if"_ipv6_ip"="::"
nv set $ps_if"_ipv6_ip"="::"
nv set $ps_if"_ipv6_pridns_auto"="::"
nv set $ps_if"_ipv6_secdns_auto"="::"
nv set $ps_if"_ipv6_gw"="::"
nv set $ps_if"_ipv6_interface_id"="::"
nv set $ps_if"_ipv6_prefix_info"="::"
nv set $ps_if"_dhcpv6_start"="::"
nv set $ps_if"_dhcpv6_end"="::"
#适配页面等其他地方使用老NV
nv set ipv6_wan_ipaddr="::"
nv set $ps_if"_ipv6_state"="dead"
local_ipv6_addr_nv="$ps_if""_local_ipv6_addr"
nv set $local_ipv6_addr_nv="::"
ndp_kill
}
if [ "$1" == "linkup" ]; then
ra_mtu_enable=`nv get ra_mtu_enable`
if [ "$ra_mtu_enable" != "1" ]; then
mtu=`nv get mtu`
ifconfig $ps_if mtu $mtu
fi
if [ "-$ps_ext_mode" == "-1" ]; then
linkup_get_addr
linkup_route_set
linkup_dhcpv6_set
linkup_radvd_set
brctl addif $br_if $eth_if
ifconfig $eth_if up
tc_tbf.sh up $c_id
elif [ "-$ps_ext_mode" == "-0" ]; then
br_up
fi
elif [ "$1" == "linkdown" ]; then
if [ "-$ps_ext_mode" == "-1" ]; then
tc_tbf.sh down $c_id
linkdown_radvd_set
linkdown_dhcpv6_server_set
linkdown_route_set
slaac_kill
brctl delif $br_if $eth_if
ifconfig $eth_if down
echo "" > /etc/resolv.conf
elif [ "-$ps_ext_mode" == "-0" ]; then
br_down
fi
fi
echo "Info: psext_updown_ipv6.sh leave" >> $test_log