Network issues - How to troubleshoot?

michacassola · May 10, 2020, 4:09pm

As you know I have resource limits on my containers and have real IPv6 assigned to the containers and the host forwards packages through the lxdbr0 to the containers. I run PHP webapps in them and everything usually works just fine. However, when I do some editing inside the container in the webapp sometimes there is a network outage. It seems that the bridge might be down for some time. Or weird behavior when the container reaches their cpu limit maybe. I do not know why there is a 5 minute outage of the network every once in a while. SSHing into the host still works and lxc list shows them as running.

How do I best troubleshoot this?

stgraber · May 10, 2020, 4:18pm

5min is a bit odd. I guess look at dmesg for anything weird.

You may also want to lock the MAC address of your bridge with bridge.hwaddr to avoid it potentially changing as containers go up or down.

michacassola · May 10, 2020, 4:31pm

I ran sudo lxc network set lxdbr0 bridge.hwaddr=hw.ad.dr.br.id.ge to fix the current hardware address.

dmesg just shows some UFW blocks, nothing else.

tomp · May 11, 2020, 8:21am

When this occurs can you run ip a and ip -6 r on the host and in the container, as it could be that IPv6 route announcements are being filtered perhaps and causing IPs to expire.

Also when this happens can you ping the containers from the host on their public IPv6 addresses? Or are they just not reachable from external hosts?

michacassola · May 11, 2020, 3:42pm

Thanks @stgraber and @tomp!

What would be the bad app filtering my route announcements? How would this happen?

When it happens the next time I will ping a container from inside the host and externally. Usually I just exec bash into the containers and I guess that is not the equivalent to sshing or pinging?

tomp · May 13, 2020, 8:33am

I’m not sure, perhaps a firewall, anyway its just a hunch.

You’re best bet, as well as extra ping tests, is to look at using tcpdump or similar to check where the traffic is dropping.

tomp · May 19, 2020, 10:45am

When this occurs can you run ip a and ip -6 r on the host and in the container, I’d like to see if the default route has gone.

Sounds like it could be similar to Ipv6 route gets invalidated but not renewed and both are running ufw (not sure if related though).

I’d like to confirm you’re losing the default route inside the container.

michacassola · May 20, 2020, 2:54pm

Pinging the container from the host and the other way around works. Also external pinging of the container IPv6 works.

Does this state anything it shouldn’t?

Host ip -6 r:

2a02:c207:1234:1234::1 dev eth0 proto kernel metric 256 pref medium
2a02:c207:1234:1234::/64 dev lxdbr0 proto kernel metric 256 expires 3077sec pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev lxdbr0 proto kernel metric 256 pref medium
default via fe80::1 dev eth0 proto static metric 1024 pref medium

Container ip -6 r:

2a02:c207:1234:1234::/64 dev eth0 proto ra metric 100 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
default via fe80::4047:b0ff:fe37:1e86 dev eth0 proto ra metric 100 mtu 1500 pref medium

I guess it’s that host lxdbr0 line with the expires 3077sec. How can one make it persistent?
Also shouldn’t the container have the single ipv6 that I see when using lxc list instead of the /64?
(Side question, where does the weird utility ipv6 in the last line of the container ip -6 r come from?)

And sudo tcpdump -l -nn -i lxdbr0 icmp6 and 'ip6[40] = 134' on the host:

user@server:~$ sudo tcpdump -l -nn -i lxdbr0 icmp6 and 'ip6[40] = 134'
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on lxdbr0, link-type EN10MB (Ethernet), capture size 262144 bytes
17:04:25.587085 IP6 fe80::4047:b0ff:fe37:1e86 > ff02::1: ICMP6, router advertisement, length 88

Running only sudo tcpdump -l -nn -i lxdbr0 icmp6 shows some destination unreachable problems:
(2a02:c207:1234:1234:216:3eff:fe80:38e2 is one of five container ipv6)

 user@server:~$ sudo tcpdump -l -nn -i lxdbr0 icmp6 
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on lxdbr0, link-type EN10MB (Ethernet), capture size 262144 bytes
17:14:33.142934 IP6 2a02:c207:1234:1234:216:3eff:fe80:38e2 > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fe80:38e2, length 24
17:14:58.994779 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fe88:5fce: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fe88:5fce, length 32
17:14:58.994742 IP6 fe80::216:3eff:fe88:5fce > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor solicitation, who has fe80::4047:b0ff:fe37:1e86, length 32
17:14:58.994991 IP6 fe80::4047:b0ff:fe37:1e86 > fe80::216:3eff:fe88:5fce: ICMP6, neighbor advertisement, tgt is fe80::4047:b0ff:fe37:1e86, length 24
17:14:58.995042 IP6 2a02:c207:1234:1234:216:3eff:fe88:5fce > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fe88:5fce, length 24
17:15:04.114833 IP6 fe80::4047:b0ff:fe37:1e86 > fe80::216:3eff:fe88:5fce: ICMP6, neighbor solicitation, who has fe80::216:3eff:fe88:5fce, length 32
17:15:04.118804 IP6 fe80::216:3eff:fe88:5fce > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is fe80::216:3eff:fe88:5fce, length 24
17:15:15.122715 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fed2:5a0e: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fed2:5a0e, length 32
17:15:15.122911 IP6 2a02:c207:1234:1234:216:3eff:fed2:5a0e > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fed2:5a0e, length 24
17:15:19.218692 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fe93:e8b1: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fe93:e8b1, length 32
17:15:19.218852 IP6 2a02:c207:1234:1234:216:3eff:fe93:e8b1 > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fe93:e8b1, length 24
17:15:20.754705 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fe80:38e2, length 32
17:15:20.754919 IP6 2a02:c207:1234:1234:216:3eff:fe80:38e2 > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fe80:38e2, length 24
17:15:23.726837 IP6 2001:7f8::3417:0:1 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, destination unreachable, unreachable address 2400:cb00:71:1024::a29e:5d92, length 80
17:15:24.728178 IP6 2001:7f8::3417:0:1 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, destination unreachable, unreachable address 2400:cb00:71:1024::a29e:5d92, length 80
17:15:25.767583 IP6 2001:7f8::3417:0:1 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, destination unreachable, unreachable address 2400:cb00:71:1024::a29e:5d92, length 80
17:15:26.453283 IP6 2001:7f8::3417:0:1 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, destination unreachable, unreachable address 2400:cb00:71:1024::a29e:5d92, length 68
17:15:26.773007 IP6 2001:7f8::3417:0:1 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, destination unreachable, unreachable address 2400:cb00:71:1024::a29e:5d92, length 80
17:16:07.602719 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fe80:38e2: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fe80:38e2, length 32
17:16:07.603002 IP6 2a02:c207:1234:1234:216:3eff:fe80:38e2 > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fe80:38e2, length 24
17:16:13.490703 IP6 fe80::4047:b0ff:fe37:1e86 > 2a02:c207:1234:1234:216:3eff:fed2:5a0e: ICMP6, neighbor solicitation, who has 2a02:c207:1234:1234:216:3eff:fed2:5a0e, length 32
17:16:13.490852 IP6 2a02:c207:1234:1234:216:3eff:fed2:5a0e > fe80::4047:b0ff:fe37:1e86: ICMP6, neighbor advertisement, tgt is 2a02:c207:1234:1234:216:3eff:fed2:5a0e, length 24

Here’s ps aux | grep dnsmasq on the host:

user@server:~$ ps aux | grep dnsmasq
user       21645  0.0  0.0  11464   964 pts/1    S+   17:00   0:00 grep --color=auto dnsmasq
lxd      28143  0.0  0.0  49964  3592 ?        Ss   May14   0:15 dnsmasq --keep-in-foreground --strict-order --bind-interfaces --except-interface=lo --no-ping --interface=lxdbr0 --quiet-dhcp --quiet-dhcp6 --quiet-ra --listen-address=10.10.100.1 --dhcp-no-override --dhcp-authoritative --dhcp-leasefile=/var/snap/lxd/common/lxd/networks/lxdbr0/dnsmasq.leases --dhcp-hostsfile=/var/snap/lxd/common/lxd/networks/lxdbr0/dnsmasq.hosts --dhcp-range 10.10.100.2,10.10.100.254,1h --listen-address=2a02:c207:1234:1234::1 --enable-ra --dhcp-range ::,constructor:lxdbr0,ra-only -s lxd -S /lxd/ --conf-file=/var/snap/lxd/common/lxd/networks/lxdbr0/dnsmasq.raw -u lxd

tomp · May 21, 2020, 8:38am

So firstly, don’t confuse “routes” (shown by ip -6 r) with local “addresses” (shown with ip -6 a).

The former are instructions on how to reach other hosts/networks, and are not the addresses that the host/container have.

To answer your question about the routes in the container, when you add an IP address to an interface, the kernel automatically adds a route for the rest of that local subnet down the same interface.

So if you add an IP of 2a02:c207:1234:1234::1/64 to an interface, you would expect to see a route added for 2a02:c207:1234:1234::/64 to that interface as well. Its saying that you don’t need to use an intermediate router to get to that subnet.

The default route starting fe80 is a link-local address (and so is the related fe80::/64 route that was added) which has been learnt by router advertisements as the next-hop address for the router.

The route you have on the host with an expiry seems suspicious, as that suggests it has been “learned” through a router advertisement, rather than being statically defined (which should happen when you add a static IP address to an interface with a /64 subnet, you would expect an automatic route that is added to reach the rest of the subnet down that interface without an expiry).

2a02:c207:1234:1234::/64 dev lxdbr0 proto kernel metric 256 expires 3077sec pref medium

Indeed on my system my lxdbr0 route looks like this:

fd42:d37c:f0f2:a5f::/64 dev lxdbr0 proto kernel metric 256 linkdown pref medium
fe80::/64 dev lxdbr0 proto kernel metric 256 linkdown pref medium

Please can you show the output these commands on the host:

ip a
lxc network show lxdbr0

tomp · May 21, 2020, 10:54am

Also, take a look at Ipv6 route gets invalidated but not renewed

IIRC your ISP has a similar setup with a static link-local address as default gateway. As such you might be able to also use the same approach as we did there, by setting the eth0 on the host to a /128 subnet size.

michacassola · May 21, 2020, 12:01pm

Pure dummieness on my part, I already had an /128 on my hosts netplan config, but the same /128 on the lxdbr0, so I will leave ::1 on the host and put ::2 on the lxdbr0 which was also ::1 now which I guess is the conflict area?

tomp · May 21, 2020, 12:05pm

Cool. And make sure that the lxdbr0 interface shows the ::2 address with a /64 subnet (i.e make sure your LXD network config specifies a /64 subnet for bridge address) and not a /128, that will ensure that a static /64 route is added to lxdbr0 and that router advertisements from dnsmasq work correctly.

michacassola · May 21, 2020, 1:36pm

Now my host lxdbr0 route looks exactly like yours (I don’t have linkdown in the line like you though). Thanks for pointing me in the right direction @tomp!

The most helpful Network Engineer award goes to you!

I’d like to get edit rights please to our tutorial so I can correct the mistakes in there: Getting universally routable IPv6 Addresses for your Linux Containers on Ubuntu 18.04 with LXD 4.0 on a VPS

tomp · May 21, 2020, 1:48pm

Ah thats likely just because I didnt have any containers running on the bridge at the time.

@stgraber is there a role we can add for @michacassola on his own post in tutorials?

stgraber · May 21, 2020, 2:35pm

Should be sorted now.

michacassola · May 21, 2020, 2:46pm

Still can’t edit it.

stgraber · May 21, 2020, 2:49pm

Very weird, I’ve created a group which has write access to the tutorials category and I’ve put you in it, so not sure why it still won’t let you do it.

Try login/logout and see if you’re allowed to post in Tutorials?
If you are, then see if your post is still not editable.

stgraber · May 21, 2020, 2:52pm

Ah, there was a 30 days edit limit on non-admin too, I removed that.

michacassola · May 21, 2020, 3:00pm

Thanks! It’s working now!

michacassola · May 30, 2020, 2:45pm

Sorry guys, but that didn’t seem to fix it. Still getting a 522 Error on Cloudflare every once in a while.
I will post the tcpdump from inside the container in the private thread again.

What else can it be?

There is again an expires on the lxdbr0:

user@server:~$ ip -6 r
2a02:c207:1234:1234::1 dev eth0 proto kernel metric 256 pref medium
2a02:c207:1234:1234::/64 dev lxdbr0 proto kernel metric 256 expires 3344sec pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev lxdbr0 proto kernel metric 256 pref medium
default via fe80::1 dev eth0 proto static metric 1024 pref medium

Although ip a and lxc network show lxdbr0 show that ::2 and not ::1 is set. And ::1 is on eth0.
What could it still be?

What about DHCP as stated in that post, will that solve my problem? What else could conflict with my routes? Do I still have to set the IPv6 in the container or somewhere else?

Or could this be the issue?

user@server:/etc/sysctl.d$ cat 10-ipv6-privacy.conf 
# IPv6 Privacy Extensions (RFC 4941)
# ---
# IPv6 typically uses a device's MAC address when choosing an IPv6 address
# to use in autoconfiguration. Privacy extensions allow using a randomly
# generated IPv6 address, which increases privacy.
#
# Acceptable values:
#    0 - don’t use privacy extensions.
#    1 - generate privacy addresses
#    2 - prefer privacy addresses and use them over the normal addresses.
net.ipv6.conf.all.use_tempaddr = 2
net.ipv6.conf.default.use_tempaddr = 2

Or anyhwere here the problem? I see that NDP proxy is not set although I did put the values in sysctl.conf to 1.

user@server:$ sudo sysctl -a | grep ipv6
sysctl: reading key "net.ipv6.conf.all.stable_secret"
sysctl: reading key "net.ipv6.conf.default.stable_secret"
sysctl: reading key "net.ipv6.conf.eth0.stable_secret"
sysctl: reading key "net.ipv6.conf.lo.stable_secret"
sysctl: reading key "net.ipv6.conf.lxdbr0.stable_secret"
net.ipv6.conf.eth0.accept_dad = 1
net.ipv6.conf.eth0.accept_ra = 0
net.ipv6.conf.eth0.accept_ra_defrtr = 1
net.ipv6.conf.eth0.accept_ra_from_local = 0
net.ipv6.conf.eth0.accept_ra_min_hop_limit = 1
net.ipv6.conf.eth0.accept_ra_mtu = 1
net.ipv6.conf.eth0.accept_ra_pinfo = 1
net.ipv6.conf.eth0.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.eth0.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.eth0.accept_ra_rtr_pref = 1
net.ipv6.conf.eth0.accept_redirects = 1
net.ipv6.conf.eth0.accept_source_route = 0
net.ipv6.conf.eth0.addr_gen_mode = 0
net.ipv6.conf.eth0.autoconf = 1
net.ipv6.conf.eth0.dad_transmits = 1
net.ipv6.conf.eth0.disable_ipv6 = 0
net.ipv6.conf.eth0.disable_policy = 0
net.ipv6.conf.eth0.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.eth0.drop_unsolicited_na = 0
net.ipv6.conf.eth0.enhanced_dad = 1
net.ipv6.conf.eth0.force_mld_version = 0
net.ipv6.conf.eth0.force_tllao = 0
net.ipv6.conf.eth0.forwarding = 1
net.ipv6.conf.eth0.hop_limit = 64
net.ipv6.conf.eth0.ignore_routes_with_linkdown = 0
net.ipv6.conf.eth0.keep_addr_on_down = 0
net.ipv6.conf.eth0.max_addresses = 16
net.ipv6.conf.eth0.max_desync_factor = 600
net.ipv6.conf.eth0.mc_forwarding = 0
net.ipv6.conf.eth0.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.eth0.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.eth0.mtu = 1500
net.ipv6.conf.eth0.ndisc_notify = 0
net.ipv6.conf.eth0.ndisc_tclass = 0
net.ipv6.conf.eth0.proxy_ndp = 0
net.ipv6.conf.eth0.regen_max_retry = 3
net.ipv6.conf.eth0.router_probe_interval = 60
net.ipv6.conf.eth0.router_solicitation_delay = 1
net.ipv6.conf.eth0.router_solicitation_interval = 4
net.ipv6.conf.eth0.router_solicitation_max_interval = 3600
net.ipv6.conf.eth0.router_solicitations = -1
net.ipv6.conf.eth0.seg6_enabled = 0
net.ipv6.conf.eth0.seg6_require_hmac = 0
net.ipv6.conf.eth0.suppress_frag_ndisc = 1
net.ipv6.conf.eth0.temp_prefered_lft = 86400
net.ipv6.conf.eth0.temp_valid_lft = 604800
net.ipv6.conf.eth0.use_oif_addrs_only = 0
net.ipv6.conf.eth0.use_tempaddr = 0
sysctl: reading key "net.ipv6.conf.veth2eb16a43.stable_secret"
sysctl: reading key "net.ipv6.conf.veth52067d1b.stable_secret"
sysctl: reading key "net.ipv6.conf.vethb65e4188.stable_secret"
sysctl: reading key "net.ipv6.conf.vethbbe434e1.stable_secret"
sysctl: reading key "net.ipv6.conf.vethc6f1c36a.stable_secret"
net.ipv6.neigh.eth0.anycast_delay = 100
net.ipv6.neigh.eth0.app_solicit = 0
net.ipv6.neigh.eth0.base_reachable_time_ms = 30000
net.ipv6.neigh.eth0.delay_first_probe_time = 5
net.ipv6.neigh.eth0.gc_stale_time = 60
net.ipv6.neigh.eth0.locktime = 0
net.ipv6.neigh.eth0.mcast_resolicit = 0
net.ipv6.neigh.eth0.mcast_solicit = 3
net.ipv6.neigh.eth0.proxy_delay = 80
net.ipv6.neigh.eth0.proxy_qlen = 64
net.ipv6.neigh.eth0.retrans_time_ms = 1000
net.ipv6.neigh.eth0.ucast_solicit = 3
net.ipv6.neigh.eth0.unres_qlen = 101
net.ipv6.neigh.eth0.unres_qlen_bytes = 212992
mc@s1:/etc/sysctl.d$ sudo sysctl -a | grep ipv6            
sysctl: reading key "net.ipv6.conf.all.stable_secret"
net.ipv6.anycast_src_echo_reply = 0
net.ipv6.auto_flowlabels = 1
net.ipv6.bindv6only = 0
net.ipv6.calipso_cache_bucket_size = 10
net.ipv6.calipso_cache_enable = 1
net.ipv6.conf.all.accept_dad = 0
net.ipv6.conf.all.accept_ra = 2
net.ipv6.conf.all.accept_ra_defrtr = 1
net.ipv6.conf.all.accept_ra_from_local = 0
net.ipv6.conf.all.accept_ra_min_hop_limit = 1
net.ipv6.conf.all.accept_ra_mtu = 1
net.ipv6.conf.all.accept_ra_pinfo = 1
net.ipv6.conf.all.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.all.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.all.accept_ra_rtr_pref = 1
net.ipv6.conf.all.accept_redirects = 0
net.ipv6.conf.all.accept_source_route = 0
net.ipv6.conf.all.addr_gen_mode = 0
net.ipv6.conf.all.autoconf = 1
net.ipv6.conf.all.dad_transmits = 1
net.ipv6.conf.all.disable_ipv6 = 0
net.ipv6.conf.all.disable_policy = 0
net.ipv6.conf.all.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.all.drop_unsolicited_na = 0
net.ipv6.conf.all.enhanced_dad = 1
net.ipv6.conf.all.force_mld_version = 0
net.ipv6.conf.all.force_tllao = 0
net.ipv6.conf.all.forwarding = 1
net.ipv6.conf.all.hop_limit = 64
net.ipv6.conf.all.ignore_routes_with_linkdown = 0
net.ipv6.conf.all.keep_addr_on_down = 0
net.ipv6.conf.all.max_addresses = 16
net.ipv6.conf.all.max_desync_factor = 600
net.ipv6.conf.all.mc_forwarding = 0
net.ipv6.conf.all.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.all.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.all.mtu = 1280
net.ipv6.conf.all.ndisc_notify = 0
net.ipv6.conf.all.ndisc_tclass = 0
net.ipv6.conf.all.proxy_ndp = 1
net.ipv6.conf.all.regen_max_retry = 3
net.ipv6.conf.all.router_probe_interval = 60
net.ipv6.conf.all.router_solicitation_delay = 1
net.ipv6.conf.all.router_solicitation_interval = 4
net.ipv6.conf.all.router_solicitation_max_interval = 3600
net.ipv6.conf.all.router_solicitations = -1
net.ipv6.conf.all.seg6_enabled = 0
net.ipv6.conf.all.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.default.stable_secret"
net.ipv6.conf.all.suppress_frag_ndisc = 1
net.ipv6.conf.all.temp_prefered_lft = 86400
net.ipv6.conf.all.temp_valid_lft = 604800
net.ipv6.conf.all.use_oif_addrs_only = 0
net.ipv6.conf.all.use_tempaddr = 2
net.ipv6.conf.default.accept_dad = 1
net.ipv6.conf.default.accept_ra = 2
net.ipv6.conf.default.accept_ra_defrtr = 1
net.ipv6.conf.default.accept_ra_from_local = 0
net.ipv6.conf.default.accept_ra_min_hop_limit = 1
net.ipv6.conf.default.accept_ra_mtu = 1
net.ipv6.conf.default.accept_ra_pinfo = 1
net.ipv6.conf.default.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.default.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.default.accept_ra_rtr_pref = 1
net.ipv6.conf.default.accept_redirects = 0
net.ipv6.conf.default.accept_source_route = 0
net.ipv6.conf.default.addr_gen_mode = 0
net.ipv6.conf.default.autoconf = 1
net.ipv6.conf.default.dad_transmits = 1
net.ipv6.conf.default.disable_ipv6 = 0
net.ipv6.conf.default.disable_policy = 0
net.ipv6.conf.default.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.default.drop_unsolicited_na = 0
net.ipv6.conf.default.enhanced_dad = 1
net.ipv6.conf.default.force_mld_version = 0
net.ipv6.conf.default.force_tllao = 0
net.ipv6.conf.default.forwarding = 1
net.ipv6.conf.default.hop_limit = 64
net.ipv6.conf.default.ignore_routes_with_linkdown = 0
net.ipv6.conf.default.keep_addr_on_down = 0
net.ipv6.conf.default.max_addresses = 16
net.ipv6.conf.default.max_desync_factor = 600
net.ipv6.conf.default.mc_forwarding = 0
net.ipv6.conf.default.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.default.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.default.mtu = 1280
net.ipv6.conf.default.ndisc_notify = 0
net.ipv6.conf.default.ndisc_tclass = 0
net.ipv6.conf.default.proxy_ndp = 0
net.ipv6.conf.default.regen_max_retry = 3
net.ipv6.conf.default.router_probe_interval = 60
net.ipv6.conf.default.router_solicitation_delay = 1
net.ipv6.conf.default.router_solicitation_interval = 4
net.ipv6.conf.default.router_solicitation_max_interval = 3600
net.ipv6.conf.default.router_solicitations = -1
net.ipv6.conf.default.seg6_enabled = 0
net.ipv6.conf.default.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.eth0.stable_secret"
net.ipv6.conf.default.suppress_frag_ndisc = 1
net.ipv6.conf.default.temp_prefered_lft = 86400
net.ipv6.conf.default.temp_valid_lft = 604800
net.ipv6.conf.default.use_oif_addrs_only = 0
net.ipv6.conf.default.use_tempaddr = 2
net.ipv6.conf.eth0.accept_dad = 1
net.ipv6.conf.eth0.accept_ra = 0
net.ipv6.conf.eth0.accept_ra_defrtr = 1
net.ipv6.conf.eth0.accept_ra_from_local = 0
net.ipv6.conf.eth0.accept_ra_min_hop_limit = 1
net.ipv6.conf.eth0.accept_ra_mtu = 1
net.ipv6.conf.eth0.accept_ra_pinfo = 1
net.ipv6.conf.eth0.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.eth0.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.eth0.accept_ra_rtr_pref = 1
net.ipv6.conf.eth0.accept_redirects = 1
net.ipv6.conf.eth0.accept_source_route = 0
net.ipv6.conf.eth0.addr_gen_mode = 0
net.ipv6.conf.eth0.autoconf = 1
net.ipv6.conf.eth0.dad_transmits = 1
net.ipv6.conf.eth0.disable_ipv6 = 0
net.ipv6.conf.eth0.disable_policy = 0
net.ipv6.conf.eth0.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.eth0.drop_unsolicited_na = 0
net.ipv6.conf.eth0.enhanced_dad = 1
net.ipv6.conf.eth0.force_mld_version = 0
net.ipv6.conf.eth0.force_tllao = 0
net.ipv6.conf.eth0.forwarding = 1
net.ipv6.conf.eth0.hop_limit = 64
net.ipv6.conf.eth0.ignore_routes_with_linkdown = 0
net.ipv6.conf.eth0.keep_addr_on_down = 0
net.ipv6.conf.eth0.max_addresses = 16
net.ipv6.conf.eth0.max_desync_factor = 600
net.ipv6.conf.eth0.mc_forwarding = 0
net.ipv6.conf.eth0.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.eth0.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.eth0.mtu = 1500
net.ipv6.conf.eth0.ndisc_notify = 0
net.ipv6.conf.eth0.ndisc_tclass = 0
net.ipv6.conf.eth0.proxy_ndp = 0
net.ipv6.conf.eth0.regen_max_retry = 3
net.ipv6.conf.eth0.router_probe_interval = 60
net.ipv6.conf.eth0.router_solicitation_delay = 1
net.ipv6.conf.eth0.router_solicitation_interval = 4
net.ipv6.conf.eth0.router_solicitation_max_interval = 3600
net.ipv6.conf.eth0.router_solicitations = -1
net.ipv6.conf.eth0.seg6_enabled = 0
net.ipv6.conf.eth0.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.lo.stable_secret"
net.ipv6.conf.eth0.suppress_frag_ndisc = 1
net.ipv6.conf.eth0.temp_prefered_lft = 86400
net.ipv6.conf.eth0.temp_valid_lft = 604800
net.ipv6.conf.eth0.use_oif_addrs_only = 0
net.ipv6.conf.eth0.use_tempaddr = 0
net.ipv6.conf.lo.accept_dad = -1
net.ipv6.conf.lo.accept_ra = 2
net.ipv6.conf.lo.accept_ra_defrtr = 1
net.ipv6.conf.lo.accept_ra_from_local = 0
net.ipv6.conf.lo.accept_ra_min_hop_limit = 1
net.ipv6.conf.lo.accept_ra_mtu = 1
net.ipv6.conf.lo.accept_ra_pinfo = 1
net.ipv6.conf.lo.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.lo.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.lo.accept_ra_rtr_pref = 1
net.ipv6.conf.lo.accept_redirects = 1
net.ipv6.conf.lo.accept_source_route = 0
net.ipv6.conf.lo.addr_gen_mode = 0
net.ipv6.conf.lo.autoconf = 1
net.ipv6.conf.lo.dad_transmits = 1
net.ipv6.conf.lo.disable_ipv6 = 0
net.ipv6.conf.lo.disable_policy = 0
net.ipv6.conf.lo.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.lo.drop_unsolicited_na = 0
net.ipv6.conf.lo.enhanced_dad = 1
net.ipv6.conf.lo.force_mld_version = 0
net.ipv6.conf.lo.force_tllao = 0
net.ipv6.conf.lo.forwarding = 1
net.ipv6.conf.lo.hop_limit = 64
net.ipv6.conf.lo.ignore_routes_with_linkdown = 0
net.ipv6.conf.lo.keep_addr_on_down = 0
net.ipv6.conf.lo.max_addresses = 16
net.ipv6.conf.lo.max_desync_factor = 600
net.ipv6.conf.lo.mc_forwarding = 0
net.ipv6.conf.lo.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.lo.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.lo.mtu = 65536
net.ipv6.conf.lo.ndisc_notify = 0
net.ipv6.conf.lo.ndisc_tclass = 0
net.ipv6.conf.lo.proxy_ndp = 0
net.ipv6.conf.lo.regen_max_retry = 3
net.ipv6.conf.lo.router_probe_interval = 60
net.ipv6.conf.lo.router_solicitation_delay = 1
net.ipv6.conf.lo.router_solicitation_interval = 4
net.ipv6.conf.lo.router_solicitation_max_interval = 3600
net.ipv6.conf.lo.router_solicitations = -1
net.ipv6.conf.lo.seg6_enabled = 0
net.ipv6.conf.lo.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.lxdbr0.stable_secret"
net.ipv6.conf.lo.suppress_frag_ndisc = 1
net.ipv6.conf.lo.temp_prefered_lft = 86400
net.ipv6.conf.lo.temp_valid_lft = 604800
net.ipv6.conf.lo.use_oif_addrs_only = 0
net.ipv6.conf.lo.use_tempaddr = -1
net.ipv6.conf.lxdbr0.accept_dad = 0
net.ipv6.conf.lxdbr0.accept_ra = 2
net.ipv6.conf.lxdbr0.accept_ra_defrtr = 1
net.ipv6.conf.lxdbr0.accept_ra_from_local = 0
net.ipv6.conf.lxdbr0.accept_ra_min_hop_limit = 1
net.ipv6.conf.lxdbr0.accept_ra_mtu = 1
net.ipv6.conf.lxdbr0.accept_ra_pinfo = 1
net.ipv6.conf.lxdbr0.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.lxdbr0.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.lxdbr0.accept_ra_rtr_pref = 1
net.ipv6.conf.lxdbr0.accept_redirects = 0
net.ipv6.conf.lxdbr0.accept_source_route = 0
net.ipv6.conf.lxdbr0.addr_gen_mode = 0
net.ipv6.conf.lxdbr0.autoconf = 0
net.ipv6.conf.lxdbr0.dad_transmits = 1
net.ipv6.conf.lxdbr0.disable_ipv6 = 0
net.ipv6.conf.lxdbr0.disable_policy = 0
net.ipv6.conf.lxdbr0.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.lxdbr0.drop_unsolicited_na = 0
net.ipv6.conf.lxdbr0.enhanced_dad = 1
net.ipv6.conf.lxdbr0.force_mld_version = 0
net.ipv6.conf.lxdbr0.force_tllao = 0
net.ipv6.conf.lxdbr0.forwarding = 1
net.ipv6.conf.lxdbr0.hop_limit = 64
net.ipv6.conf.lxdbr0.ignore_routes_with_linkdown = 0
net.ipv6.conf.lxdbr0.keep_addr_on_down = 0
net.ipv6.conf.lxdbr0.max_addresses = 16
net.ipv6.conf.lxdbr0.max_desync_factor = 600
net.ipv6.conf.lxdbr0.mc_forwarding = 0
net.ipv6.conf.lxdbr0.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.lxdbr0.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.lxdbr0.mtu = 1500
net.ipv6.conf.lxdbr0.ndisc_notify = 0
net.ipv6.conf.lxdbr0.ndisc_tclass = 0
net.ipv6.conf.lxdbr0.proxy_ndp = 0
net.ipv6.conf.lxdbr0.regen_max_retry = 3
net.ipv6.conf.lxdbr0.router_probe_interval = 60
net.ipv6.conf.lxdbr0.router_solicitation_delay = 1
net.ipv6.conf.lxdbr0.router_solicitation_interval = 4
net.ipv6.conf.lxdbr0.router_solicitation_max_interval = 3600
net.ipv6.conf.lxdbr0.router_solicitations = -1
net.ipv6.conf.lxdbr0.seg6_enabled = 0
net.ipv6.conf.lxdbr0.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.veth2eb16a43.stable_secret"
net.ipv6.conf.lxdbr0.suppress_frag_ndisc = 1
net.ipv6.conf.lxdbr0.temp_prefered_lft = 86400
net.ipv6.conf.lxdbr0.temp_valid_lft = 604800
net.ipv6.conf.lxdbr0.use_oif_addrs_only = 0
net.ipv6.conf.lxdbr0.use_tempaddr = 2
net.ipv6.conf.veth2eb16a43.accept_dad = 1
net.ipv6.conf.veth2eb16a43.accept_ra = 0
net.ipv6.conf.veth2eb16a43.accept_ra_defrtr = 1
net.ipv6.conf.veth2eb16a43.accept_ra_from_local = 0
net.ipv6.conf.veth2eb16a43.accept_ra_min_hop_limit = 1
net.ipv6.conf.veth2eb16a43.accept_ra_mtu = 1
net.ipv6.conf.veth2eb16a43.accept_ra_pinfo = 1
net.ipv6.conf.veth2eb16a43.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.veth2eb16a43.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.veth2eb16a43.accept_ra_rtr_pref = 1
net.ipv6.conf.veth2eb16a43.accept_redirects = 0
net.ipv6.conf.veth2eb16a43.accept_source_route = 0
net.ipv6.conf.veth2eb16a43.addr_gen_mode = 0
net.ipv6.conf.veth2eb16a43.autoconf = 1
net.ipv6.conf.veth2eb16a43.dad_transmits = 1
net.ipv6.conf.veth2eb16a43.disable_ipv6 = 1
net.ipv6.conf.veth2eb16a43.disable_policy = 0
net.ipv6.conf.veth2eb16a43.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.veth2eb16a43.drop_unsolicited_na = 0
net.ipv6.conf.veth2eb16a43.enhanced_dad = 1
net.ipv6.conf.veth2eb16a43.force_mld_version = 0
net.ipv6.conf.veth2eb16a43.force_tllao = 0
net.ipv6.conf.veth2eb16a43.forwarding = 1
net.ipv6.conf.veth2eb16a43.hop_limit = 64
net.ipv6.conf.veth2eb16a43.ignore_routes_with_linkdown = 0
net.ipv6.conf.veth2eb16a43.keep_addr_on_down = 0
net.ipv6.conf.veth2eb16a43.max_addresses = 16
net.ipv6.conf.veth2eb16a43.max_desync_factor = 600
net.ipv6.conf.veth2eb16a43.mc_forwarding = 0
net.ipv6.conf.veth2eb16a43.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.veth2eb16a43.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.veth2eb16a43.mtu = 1500
net.ipv6.conf.veth2eb16a43.ndisc_notify = 0
net.ipv6.conf.veth2eb16a43.ndisc_tclass = 0
net.ipv6.conf.veth2eb16a43.proxy_ndp = 0
net.ipv6.conf.veth2eb16a43.regen_max_retry = 3
net.ipv6.conf.veth2eb16a43.router_probe_interval = 60
net.ipv6.conf.veth2eb16a43.router_solicitation_delay = 1
net.ipv6.conf.veth2eb16a43.router_solicitation_interval = 4
net.ipv6.conf.veth2eb16a43.router_solicitation_max_interval = 3600
net.ipv6.conf.veth2eb16a43.router_solicitations = -1
net.ipv6.conf.veth2eb16a43.seg6_enabled = 0
net.ipv6.conf.veth2eb16a43.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.veth52067d1b.stable_secret"
net.ipv6.conf.veth2eb16a43.suppress_frag_ndisc = 1
net.ipv6.conf.veth2eb16a43.temp_prefered_lft = 86400
net.ipv6.conf.veth2eb16a43.temp_valid_lft = 604800
net.ipv6.conf.veth2eb16a43.use_oif_addrs_only = 0
net.ipv6.conf.veth2eb16a43.use_tempaddr = 2
net.ipv6.conf.veth52067d1b.accept_dad = 1
net.ipv6.conf.veth52067d1b.accept_ra = 0
net.ipv6.conf.veth52067d1b.accept_ra_defrtr = 1
net.ipv6.conf.veth52067d1b.accept_ra_from_local = 0
net.ipv6.conf.veth52067d1b.accept_ra_min_hop_limit = 1
net.ipv6.conf.veth52067d1b.accept_ra_mtu = 1
net.ipv6.conf.veth52067d1b.accept_ra_pinfo = 1
net.ipv6.conf.veth52067d1b.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.veth52067d1b.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.veth52067d1b.accept_ra_rtr_pref = 1
net.ipv6.conf.veth52067d1b.accept_redirects = 0
net.ipv6.conf.veth52067d1b.accept_source_route = 0
net.ipv6.conf.veth52067d1b.addr_gen_mode = 0
net.ipv6.conf.veth52067d1b.autoconf = 1
net.ipv6.conf.veth52067d1b.dad_transmits = 1
net.ipv6.conf.veth52067d1b.disable_ipv6 = 1
net.ipv6.conf.veth52067d1b.disable_policy = 0
net.ipv6.conf.veth52067d1b.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.veth52067d1b.drop_unsolicited_na = 0
net.ipv6.conf.veth52067d1b.enhanced_dad = 1
net.ipv6.conf.veth52067d1b.force_mld_version = 0
net.ipv6.conf.veth52067d1b.force_tllao = 0
net.ipv6.conf.veth52067d1b.forwarding = 1
net.ipv6.conf.veth52067d1b.hop_limit = 64
net.ipv6.conf.veth52067d1b.ignore_routes_with_linkdown = 0
net.ipv6.conf.veth52067d1b.keep_addr_on_down = 0
net.ipv6.conf.veth52067d1b.max_addresses = 16
net.ipv6.conf.veth52067d1b.max_desync_factor = 600
net.ipv6.conf.veth52067d1b.mc_forwarding = 0
net.ipv6.conf.veth52067d1b.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.veth52067d1b.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.veth52067d1b.mtu = 1500
net.ipv6.conf.veth52067d1b.ndisc_notify = 0
net.ipv6.conf.veth52067d1b.ndisc_tclass = 0
net.ipv6.conf.veth52067d1b.proxy_ndp = 0
net.ipv6.conf.veth52067d1b.regen_max_retry = 3
net.ipv6.conf.veth52067d1b.router_probe_interval = 60
net.ipv6.conf.veth52067d1b.router_solicitation_delay = 1
net.ipv6.conf.veth52067d1b.router_solicitation_interval = 4
net.ipv6.conf.veth52067d1b.router_solicitation_max_interval = 3600
net.ipv6.conf.veth52067d1b.router_solicitations = -1
net.ipv6.conf.veth52067d1b.seg6_enabled = 0
net.ipv6.conf.veth52067d1b.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.vethb65e4188.stable_secret"
net.ipv6.conf.veth52067d1b.suppress_frag_ndisc = 1
net.ipv6.conf.veth52067d1b.temp_prefered_lft = 86400
net.ipv6.conf.veth52067d1b.temp_valid_lft = 604800
net.ipv6.conf.veth52067d1b.use_oif_addrs_only = 0
net.ipv6.conf.veth52067d1b.use_tempaddr = 2
net.ipv6.conf.vethb65e4188.accept_dad = 1
net.ipv6.conf.vethb65e4188.accept_ra = 0
net.ipv6.conf.vethb65e4188.accept_ra_defrtr = 1
net.ipv6.conf.vethb65e4188.accept_ra_from_local = 0
net.ipv6.conf.vethb65e4188.accept_ra_min_hop_limit = 1
net.ipv6.conf.vethb65e4188.accept_ra_mtu = 1
net.ipv6.conf.vethb65e4188.accept_ra_pinfo = 1
net.ipv6.conf.vethb65e4188.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.vethb65e4188.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.vethb65e4188.accept_ra_rtr_pref = 1
net.ipv6.conf.vethb65e4188.accept_redirects = 0
net.ipv6.conf.vethb65e4188.accept_source_route = 0
net.ipv6.conf.vethb65e4188.addr_gen_mode = 0
net.ipv6.conf.vethb65e4188.autoconf = 1
net.ipv6.conf.vethb65e4188.dad_transmits = 1
net.ipv6.conf.vethb65e4188.disable_ipv6 = 1
net.ipv6.conf.vethb65e4188.disable_policy = 0
net.ipv6.conf.vethb65e4188.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.vethb65e4188.drop_unsolicited_na = 0
net.ipv6.conf.vethb65e4188.enhanced_dad = 1
net.ipv6.conf.vethb65e4188.force_mld_version = 0
net.ipv6.conf.vethb65e4188.force_tllao = 0
net.ipv6.conf.vethb65e4188.forwarding = 1
net.ipv6.conf.vethb65e4188.hop_limit = 64
net.ipv6.conf.vethb65e4188.ignore_routes_with_linkdown = 0
net.ipv6.conf.vethb65e4188.keep_addr_on_down = 0
net.ipv6.conf.vethb65e4188.max_addresses = 16
net.ipv6.conf.vethb65e4188.max_desync_factor = 600
net.ipv6.conf.vethb65e4188.mc_forwarding = 0
net.ipv6.conf.vethb65e4188.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.vethb65e4188.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.vethb65e4188.mtu = 1500
net.ipv6.conf.vethb65e4188.ndisc_notify = 0
net.ipv6.conf.vethb65e4188.ndisc_tclass = 0
net.ipv6.conf.vethb65e4188.proxy_ndp = 0
net.ipv6.conf.vethb65e4188.regen_max_retry = 3
net.ipv6.conf.vethb65e4188.router_probe_interval = 60
net.ipv6.conf.vethb65e4188.router_solicitation_delay = 1
net.ipv6.conf.vethb65e4188.router_solicitation_interval = 4
net.ipv6.conf.vethb65e4188.router_solicitation_max_interval = 3600
net.ipv6.conf.vethb65e4188.router_solicitations = -1
net.ipv6.conf.vethb65e4188.seg6_enabled = 0
net.ipv6.conf.vethb65e4188.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.vethbbe434e1.stable_secret"
net.ipv6.conf.vethb65e4188.suppress_frag_ndisc = 1
net.ipv6.conf.vethb65e4188.temp_prefered_lft = 86400
net.ipv6.conf.vethb65e4188.temp_valid_lft = 604800
net.ipv6.conf.vethb65e4188.use_oif_addrs_only = 0
net.ipv6.conf.vethb65e4188.use_tempaddr = 2
net.ipv6.conf.vethbbe434e1.accept_dad = 1
net.ipv6.conf.vethbbe434e1.accept_ra = 0
net.ipv6.conf.vethbbe434e1.accept_ra_defrtr = 1
net.ipv6.conf.vethbbe434e1.accept_ra_from_local = 0
net.ipv6.conf.vethbbe434e1.accept_ra_min_hop_limit = 1
net.ipv6.conf.vethbbe434e1.accept_ra_mtu = 1
net.ipv6.conf.vethbbe434e1.accept_ra_pinfo = 1
net.ipv6.conf.vethbbe434e1.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.vethbbe434e1.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.vethbbe434e1.accept_ra_rtr_pref = 1
net.ipv6.conf.vethbbe434e1.accept_redirects = 0
net.ipv6.conf.vethbbe434e1.accept_source_route = 0
net.ipv6.conf.vethbbe434e1.addr_gen_mode = 0
net.ipv6.conf.vethbbe434e1.autoconf = 1
net.ipv6.conf.vethbbe434e1.dad_transmits = 1
net.ipv6.conf.vethbbe434e1.disable_ipv6 = 1
net.ipv6.conf.vethbbe434e1.disable_policy = 0
net.ipv6.conf.vethbbe434e1.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.vethbbe434e1.drop_unsolicited_na = 0
net.ipv6.conf.vethbbe434e1.enhanced_dad = 1
net.ipv6.conf.vethbbe434e1.force_mld_version = 0
net.ipv6.conf.vethbbe434e1.force_tllao = 0
net.ipv6.conf.vethbbe434e1.forwarding = 1
net.ipv6.conf.vethbbe434e1.hop_limit = 64
net.ipv6.conf.vethbbe434e1.ignore_routes_with_linkdown = 0
net.ipv6.conf.vethbbe434e1.keep_addr_on_down = 0
net.ipv6.conf.vethbbe434e1.max_addresses = 16
net.ipv6.conf.vethbbe434e1.max_desync_factor = 600
net.ipv6.conf.vethbbe434e1.mc_forwarding = 0
net.ipv6.conf.vethbbe434e1.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.vethbbe434e1.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.vethbbe434e1.mtu = 1500
net.ipv6.conf.vethbbe434e1.ndisc_notify = 0
net.ipv6.conf.vethbbe434e1.ndisc_tclass = 0
net.ipv6.conf.vethbbe434e1.proxy_ndp = 0
net.ipv6.conf.vethbbe434e1.regen_max_retry = 3
net.ipv6.conf.vethbbe434e1.router_probe_interval = 60
net.ipv6.conf.vethbbe434e1.router_solicitation_delay = 1
net.ipv6.conf.vethbbe434e1.router_solicitation_interval = 4
net.ipv6.conf.vethbbe434e1.router_solicitation_max_interval = 3600
net.ipv6.conf.vethbbe434e1.router_solicitations = -1
net.ipv6.conf.vethbbe434e1.seg6_enabled = 0
net.ipv6.conf.vethbbe434e1.seg6_require_hmac = 0
sysctl: reading key "net.ipv6.conf.vethc6f1c36a.stable_secret"
net.ipv6.conf.vethbbe434e1.suppress_frag_ndisc = 1
net.ipv6.conf.vethbbe434e1.temp_prefered_lft = 86400
net.ipv6.conf.vethbbe434e1.temp_valid_lft = 604800
net.ipv6.conf.vethbbe434e1.use_oif_addrs_only = 0
net.ipv6.conf.vethbbe434e1.use_tempaddr = 2
net.ipv6.conf.vethc6f1c36a.accept_dad = 1
net.ipv6.conf.vethc6f1c36a.accept_ra = 0
net.ipv6.conf.vethc6f1c36a.accept_ra_defrtr = 1
net.ipv6.conf.vethc6f1c36a.accept_ra_from_local = 0
net.ipv6.conf.vethc6f1c36a.accept_ra_min_hop_limit = 1
net.ipv6.conf.vethc6f1c36a.accept_ra_mtu = 1
net.ipv6.conf.vethc6f1c36a.accept_ra_pinfo = 1
net.ipv6.conf.vethc6f1c36a.accept_ra_rt_info_max_plen = 0
net.ipv6.conf.vethc6f1c36a.accept_ra_rt_info_min_plen = 0
net.ipv6.conf.vethc6f1c36a.accept_ra_rtr_pref = 1
net.ipv6.conf.vethc6f1c36a.accept_redirects = 0
net.ipv6.conf.vethc6f1c36a.accept_source_route = 0
net.ipv6.conf.vethc6f1c36a.addr_gen_mode = 0
net.ipv6.conf.vethc6f1c36a.autoconf = 1
net.ipv6.conf.vethc6f1c36a.dad_transmits = 1
net.ipv6.conf.vethc6f1c36a.disable_ipv6 = 1
net.ipv6.conf.vethc6f1c36a.disable_policy = 0
net.ipv6.conf.vethc6f1c36a.drop_unicast_in_l2_multicast = 0
net.ipv6.conf.vethc6f1c36a.drop_unsolicited_na = 0
net.ipv6.conf.vethc6f1c36a.enhanced_dad = 1
net.ipv6.conf.vethc6f1c36a.force_mld_version = 0
net.ipv6.conf.vethc6f1c36a.force_tllao = 0
net.ipv6.conf.vethc6f1c36a.forwarding = 1
net.ipv6.conf.vethc6f1c36a.hop_limit = 64
net.ipv6.conf.vethc6f1c36a.ignore_routes_with_linkdown = 0
net.ipv6.conf.vethc6f1c36a.keep_addr_on_down = 0
net.ipv6.conf.vethc6f1c36a.max_addresses = 16
net.ipv6.conf.vethc6f1c36a.max_desync_factor = 600
net.ipv6.conf.vethc6f1c36a.mc_forwarding = 0
net.ipv6.conf.vethc6f1c36a.mldv1_unsolicited_report_interval = 10000
net.ipv6.conf.vethc6f1c36a.mldv2_unsolicited_report_interval = 1000
net.ipv6.conf.vethc6f1c36a.mtu = 1500
net.ipv6.conf.vethc6f1c36a.ndisc_notify = 0
net.ipv6.conf.vethc6f1c36a.ndisc_tclass = 0
net.ipv6.conf.vethc6f1c36a.proxy_ndp = 0
net.ipv6.conf.vethc6f1c36a.regen_max_retry = 3
net.ipv6.conf.vethc6f1c36a.router_probe_interval = 60
net.ipv6.conf.vethc6f1c36a.router_solicitation_delay = 1
net.ipv6.conf.vethc6f1c36a.router_solicitation_interval = 4
net.ipv6.conf.vethc6f1c36a.router_solicitation_max_interval = 3600
net.ipv6.conf.vethc6f1c36a.router_solicitations = -1
net.ipv6.conf.vethc6f1c36a.seg6_enabled = 0
net.ipv6.conf.vethc6f1c36a.seg6_require_hmac = 0
net.ipv6.conf.vethc6f1c36a.suppress_frag_ndisc = 1
net.ipv6.conf.vethc6f1c36a.temp_prefered_lft = 86400
net.ipv6.conf.vethc6f1c36a.temp_valid_lft = 604800
net.ipv6.conf.vethc6f1c36a.use_oif_addrs_only = 0
net.ipv6.conf.vethc6f1c36a.use_tempaddr = 2
net.ipv6.flowlabel_consistency = 1
net.ipv6.flowlabel_reflect = 0
net.ipv6.flowlabel_state_ranges = 0
net.ipv6.fwmark_reflect = 0
net.ipv6.icmp.ratelimit = 1000
net.ipv6.idgen_delay = 1
net.ipv6.idgen_retries = 3
net.ipv6.ip6frag_high_thresh = 262144
net.ipv6.ip6frag_low_thresh = 196608
net.ipv6.ip6frag_secret_interval = 0
net.ipv6.ip6frag_time = 60
net.ipv6.ip_nonlocal_bind = 0
net.ipv6.max_dst_opts_length = 2147483647
net.ipv6.max_dst_opts_number = 8
net.ipv6.max_hbh_length = 2147483647
net.ipv6.max_hbh_opts_number = 8
net.ipv6.mld_max_msf = 64
net.ipv6.mld_qrv = 2
net.ipv6.neigh.default.anycast_delay = 100
net.ipv6.neigh.default.app_solicit = 0
net.ipv6.neigh.default.base_reachable_time_ms = 30000
net.ipv6.neigh.default.delay_first_probe_time = 5
net.ipv6.neigh.default.gc_interval = 30
net.ipv6.neigh.default.gc_stale_time = 60
net.ipv6.neigh.default.gc_thresh1 = 128
net.ipv6.neigh.default.gc_thresh2 = 512
net.ipv6.neigh.default.gc_thresh3 = 1024
net.ipv6.neigh.default.locktime = 0
net.ipv6.neigh.default.mcast_resolicit = 0
net.ipv6.neigh.default.mcast_solicit = 3
net.ipv6.neigh.default.proxy_delay = 80
net.ipv6.neigh.default.proxy_qlen = 64
net.ipv6.neigh.default.retrans_time_ms = 1000
net.ipv6.neigh.default.ucast_solicit = 3
net.ipv6.neigh.default.unres_qlen = 101
net.ipv6.neigh.default.unres_qlen_bytes = 212992
net.ipv6.neigh.eth0.anycast_delay = 100
net.ipv6.neigh.eth0.app_solicit = 0
net.ipv6.neigh.eth0.base_reachable_time_ms = 30000
net.ipv6.neigh.eth0.delay_first_probe_time = 5
net.ipv6.neigh.eth0.gc_stale_time = 60
net.ipv6.neigh.eth0.locktime = 0
net.ipv6.neigh.eth0.mcast_resolicit = 0
net.ipv6.neigh.eth0.mcast_solicit = 3
net.ipv6.neigh.eth0.proxy_delay = 80
net.ipv6.neigh.eth0.proxy_qlen = 64
net.ipv6.neigh.eth0.retrans_time_ms = 1000
net.ipv6.neigh.eth0.ucast_solicit = 3
net.ipv6.neigh.eth0.unres_qlen = 101
net.ipv6.neigh.eth0.unres_qlen_bytes = 212992
net.ipv6.neigh.lo.anycast_delay = 100
net.ipv6.neigh.lo.app_solicit = 0
net.ipv6.neigh.lo.base_reachable_time_ms = 30000
net.ipv6.neigh.lo.delay_first_probe_time = 5
net.ipv6.neigh.lo.gc_stale_time = 60
net.ipv6.neigh.lo.locktime = 0
net.ipv6.neigh.lo.mcast_resolicit = 0
net.ipv6.neigh.lo.mcast_solicit = 3
net.ipv6.neigh.lo.proxy_delay = 80
net.ipv6.neigh.lo.proxy_qlen = 64
net.ipv6.neigh.lo.retrans_time_ms = 1000
net.ipv6.neigh.lo.ucast_solicit = 3
net.ipv6.neigh.lo.unres_qlen = 101
net.ipv6.neigh.lo.unres_qlen_bytes = 212992
net.ipv6.neigh.lxdbr0.anycast_delay = 100
net.ipv6.neigh.lxdbr0.app_solicit = 0
net.ipv6.neigh.lxdbr0.base_reachable_time_ms = 30000
net.ipv6.neigh.lxdbr0.delay_first_probe_time = 5
net.ipv6.neigh.lxdbr0.gc_stale_time = 60
net.ipv6.neigh.lxdbr0.locktime = 0
net.ipv6.neigh.lxdbr0.mcast_resolicit = 0
net.ipv6.neigh.lxdbr0.mcast_solicit = 3
net.ipv6.neigh.lxdbr0.proxy_delay = 80
net.ipv6.neigh.lxdbr0.proxy_qlen = 64
net.ipv6.neigh.lxdbr0.retrans_time_ms = 1000
net.ipv6.neigh.lxdbr0.ucast_solicit = 3
net.ipv6.neigh.lxdbr0.unres_qlen = 101
net.ipv6.neigh.lxdbr0.unres_qlen_bytes = 212992
net.ipv6.neigh.veth2eb16a43.anycast_delay = 100
net.ipv6.neigh.veth2eb16a43.app_solicit = 0
net.ipv6.neigh.veth2eb16a43.base_reachable_time_ms = 30000
net.ipv6.neigh.veth2eb16a43.delay_first_probe_time = 5
net.ipv6.neigh.veth2eb16a43.gc_stale_time = 60
net.ipv6.neigh.veth2eb16a43.locktime = 0
net.ipv6.neigh.veth2eb16a43.mcast_resolicit = 0
net.ipv6.neigh.veth2eb16a43.mcast_solicit = 3
net.ipv6.neigh.veth2eb16a43.proxy_delay = 80
net.ipv6.neigh.veth2eb16a43.proxy_qlen = 64
net.ipv6.neigh.veth2eb16a43.retrans_time_ms = 1000
net.ipv6.neigh.veth2eb16a43.ucast_solicit = 3
net.ipv6.neigh.veth2eb16a43.unres_qlen = 101
net.ipv6.neigh.veth2eb16a43.unres_qlen_bytes = 212992
net.ipv6.neigh.veth52067d1b.anycast_delay = 100
net.ipv6.neigh.veth52067d1b.app_solicit = 0
net.ipv6.neigh.veth52067d1b.base_reachable_time_ms = 30000
net.ipv6.neigh.veth52067d1b.delay_first_probe_time = 5
net.ipv6.neigh.veth52067d1b.gc_stale_time = 60
net.ipv6.neigh.veth52067d1b.locktime = 0
net.ipv6.neigh.veth52067d1b.mcast_resolicit = 0
net.ipv6.neigh.veth52067d1b.mcast_solicit = 3
net.ipv6.neigh.veth52067d1b.proxy_delay = 80
net.ipv6.neigh.veth52067d1b.proxy_qlen = 64
net.ipv6.neigh.veth52067d1b.retrans_time_ms = 1000
net.ipv6.neigh.veth52067d1b.ucast_solicit = 3
net.ipv6.neigh.veth52067d1b.unres_qlen = 101
net.ipv6.neigh.veth52067d1b.unres_qlen_bytes = 212992
net.ipv6.neigh.vethb65e4188.anycast_delay = 100
net.ipv6.neigh.vethb65e4188.app_solicit = 0
net.ipv6.neigh.vethb65e4188.base_reachable_time_ms = 30000
net.ipv6.neigh.vethb65e4188.delay_first_probe_time = 5
net.ipv6.neigh.vethb65e4188.gc_stale_time = 60
net.ipv6.neigh.vethb65e4188.locktime = 0
net.ipv6.neigh.vethb65e4188.mcast_resolicit = 0
net.ipv6.neigh.vethb65e4188.mcast_solicit = 3
net.ipv6.neigh.vethb65e4188.proxy_delay = 80
net.ipv6.neigh.vethb65e4188.proxy_qlen = 64
net.ipv6.neigh.vethb65e4188.retrans_time_ms = 1000
net.ipv6.neigh.vethb65e4188.ucast_solicit = 3
net.ipv6.neigh.vethb65e4188.unres_qlen = 101
net.ipv6.neigh.vethb65e4188.unres_qlen_bytes = 212992
net.ipv6.neigh.vethbbe434e1.anycast_delay = 100
net.ipv6.neigh.vethbbe434e1.app_solicit = 0
net.ipv6.neigh.vethbbe434e1.base_reachable_time_ms = 30000
net.ipv6.neigh.vethbbe434e1.delay_first_probe_time = 5
net.ipv6.neigh.vethbbe434e1.gc_stale_time = 60
net.ipv6.neigh.vethbbe434e1.locktime = 0
net.ipv6.neigh.vethbbe434e1.mcast_resolicit = 0
net.ipv6.neigh.vethbbe434e1.mcast_solicit = 3
net.ipv6.neigh.vethbbe434e1.proxy_delay = 80
net.ipv6.neigh.vethbbe434e1.proxy_qlen = 64
net.ipv6.neigh.vethbbe434e1.retrans_time_ms = 1000
net.ipv6.neigh.vethbbe434e1.ucast_solicit = 3
net.ipv6.neigh.vethbbe434e1.unres_qlen = 101
net.ipv6.neigh.vethbbe434e1.unres_qlen_bytes = 212992
net.ipv6.neigh.vethc6f1c36a.anycast_delay = 100
net.ipv6.neigh.vethc6f1c36a.app_solicit = 0
net.ipv6.neigh.vethc6f1c36a.base_reachable_time_ms = 30000
net.ipv6.neigh.vethc6f1c36a.delay_first_probe_time = 5
net.ipv6.neigh.vethc6f1c36a.gc_stale_time = 60
net.ipv6.neigh.vethc6f1c36a.locktime = 0
net.ipv6.neigh.vethc6f1c36a.mcast_resolicit = 0
net.ipv6.neigh.vethc6f1c36a.mcast_solicit = 3
net.ipv6.neigh.vethc6f1c36a.proxy_delay = 80
net.ipv6.neigh.vethc6f1c36a.proxy_qlen = 64
net.ipv6.neigh.vethc6f1c36a.retrans_time_ms = 1000
net.ipv6.neigh.vethc6f1c36a.ucast_solicit = 3
net.ipv6.neigh.vethc6f1c36a.unres_qlen = 101
net.ipv6.neigh.vethc6f1c36a.unres_qlen_bytes = 212992
net.ipv6.route.gc_elasticity = 9
net.ipv6.route.gc_interval = 30
net.ipv6.route.gc_min_interval = 0
net.ipv6.route.gc_min_interval_ms = 500
net.ipv6.route.gc_thresh = 1024
net.ipv6.route.gc_timeout = 60
net.ipv6.route.max_size = 4096
net.ipv6.route.min_adv_mss = 1220
net.ipv6.route.mtu_expires = 600
net.ipv6.xfrm6_gc_thresh = 32768
net.netfilter.nf_log.10 = nf_log_ipv6

Maybe the problem is net.ipv6.conf.all.accept_ra = 2(and net.ipv6.conf.default.accept_ra = 2), as forwarding is turned on but the 2 according to this means that the forwarding is overruled.

Maybe it is because net.ipv6.conf.all.proxy_ndp = 1 may be set to 1 but net.ipv6.conf.default.proxy_ndp = 0 was forgotten to be set to 1 and therefore all other devices including eth0 and lxdbr0 are set to 0?

Also, why are the veth devices set to disable_ipv6 = 1? Because they are just in-betweens?