Community discussions

MikroTik App
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

IPV6 flooding the network.

Wed Sep 14, 2022 9:04 am

Dear All of Mikrotik Experts,
i would kindly ask your assistance, tips and tricks.
I have disable IPV6 but somehow, there are ipv6 which traffic flooding my local network.
When it's happens all of clients can not connected to the internet.
i use bridge which consist LAN 1 dan LAN 2
Its happened randomly, not everyday.
Before this problem never occur, but this problem appears since some of user clients using apple device (ipad/iphone, etc..)

Thank you.

i put the screenshoot bellow.
Image
Image
Image
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: IPV6 flooding the network.

Wed Sep 14, 2022 9:21 am

You forgot to post the export of the configuration, and the interface names in the text differ from those on the screenshots.

IPv6 related settings do not affect bridging. So if LAN-LT2 and LAN-LT3 are in the same bridge, the frames carrying IPv6 packets are bridged between these ports regardless any IPv6 settings. Depending on your device model, it may be possible to prevent them from loading the CPU by letting a switch chip forward them in hardware, or by dropping IPv6 using switch chip rules. If the interfaces are 100 Mbit/s ones and there are no switch chip rules or no switch chip at all, you may use bridge filter rules to drop IPv6 traffic, hoping that the failing attempts to establish an IPv6 connection will occupy less bandwidth than a successful connection.
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Wed Sep 14, 2022 10:18 am

Dear sindy,
as you wrote:
"you may use bridge filter rules to drop IPv6 traffic"
how could i do that ?.. would you kindly post command line so i can try it on terminal?

I'm using x86 mikrotik on PC computer.
I don't have switch chip option menu.

Thank you.
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: IPV6 flooding the network.  [SOLVED]

Wed Sep 14, 2022 10:44 am

/interface bridge filter add chain=forward mac-protocol=ipv6 action=drop
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Wed Sep 14, 2022 12:20 pm

Thank you sindy,
i did code it in, i will take a look in three more days, usually it's happen once a day or at lease once in three days.
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Wed Sep 14, 2022 1:40 pm

Dear Sindy,
Since i'using x86 PC Mikrotik which don't have switch chip. I'm preparing my backup router RB-89521-2n to replace my x86 PC mikrotik if problems still in place.

my questions is, as you wrote:
"...by dropping IPv6 using switch chip rules"
could you kindly post the command line so i can put in the terminal?.

Thank you.
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: IPV6 flooding the network.

Wed Sep 14, 2022 2:15 pm

RB951-2n (if that's what you actually intended to type) has an AR7240 switch chip that has no switch chip rules. Plus it is likely much weaker than the x86, so no point in using the 951 to replace the x86.
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Wed Sep 14, 2022 7:02 pm

/interface bridge filter add chain=forward mac-protocol=ipv6 action=drop
Thank you very much Sindy, it works perfectly !! you just make my live easier !..
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Thu Sep 15, 2022 6:48 am

Dear Cindy,
New problems appears,
the code cures LAN2 and bridge from flooding but LAN3 still flooding.
here is the screenshoot.

Image
Image

any idea how to solve this ?...
Thank you.
 
User avatar
Znevna
Forum Guru
Forum Guru
Posts: 1347
Joined: Mon Sep 23, 2019 1:04 pm

Re: IPV6 flooding the network.

Thu Sep 15, 2022 7:10 am

FInd the devices that cause that and throw them out the window, ffs.
With the admin that set them up to do that too.
 
sindy
Forum Guru
Forum Guru
Posts: 10205
Joined: Mon Dec 04, 2017 9:19 pm

Re: IPV6 flooding the network.

Thu Sep 15, 2022 8:48 pm

any idea how to solve this ?...
@Znevna is right. If one of the connected devices floods the network with so much traffic even though it gets no responses, it is most likely infected by malware or broken (or its administrator has an evil intention himself). The drop rule in the bridge filter prevents this flood traffic from getting further to the network, but it cannot prevent it from clogging the interface bandwidth, so whatever equipment is connected to the same interface of Mikrotik like the source of the flood suffers from this as its own traffic doesn't fit.
 
mukky
just joined
Topic Author
Posts: 12
Joined: Sat Nov 27, 2021 11:11 am

Re: IPV6 flooding the network.

Sat Sep 17, 2022 7:41 pm

Thank you, @sindy & @Znevna,
After investigation, i found that the device are router AP Wifi which connect to LAN 3 port in mikrotik. I assumed it's broken even so the IP4 & IP6 dhcp server is turned off and eventually no body connect to those router AP Wifi either. We change the AP everything is back to normal.

Who is online

Users browsing this forum: adrianmartin16, Amazon [Bot], Qanon, senseivita and 84 guests