How to remove IPv6 from vApp
Article ID: 379287
Updated On:
Products
CA Identity Suite
CA Identity Manager
CA Identity Portal
CA Identity Governance
Issue/Introduction
While working with rsyslog, you may notice that /var/log/messages is being flooded with error messages due to IPv6 not being used for Network Manager.
Example of logs events: grep -i ipv6 /var/log/messages
Sep 29 06:22:58 vapp145 NetworkManager[793]: <warn> [1727608978.3001] ipv6ll[1ad01a420750ae45,ifindex=2]: changed: no IPv6 link local address to retry after Duplicate Address Detection failures (back off)
Sep 29 06:23:08 vapp145 NetworkManager[793]: <warn> [1727608988.3024] platform-linux: do-add-ip6-address[2: <IPV6 address>]: failure 13 (Permission denied - ipv6: IPv6 is disabled on this device)
Sep 29 06:23:08 vapp145 NetworkManager[793]: <warn> [1727608988.3025] l3cfg[e72522d0d139da92,ifindex=2]: unable to configure IPv6 route: type unicast fe80::/64 dev 2 metric 1024 mss 0 rt-src ipv6ll
Sep 29 06:23:10 vapp145 NetworkManager[793]: <warn> [1727608990.3051] platform-linux: do-add-ip6-address[2: <IPV6 address>]: failure 13 (Permission denied - ipv6: IPv6 is disabled on this device)
Environment
Virtual Appliance 14.5
Resolution
Providing this process to assist with reducing noise when using rsyslog to monitor the vApp.
As the 'config' user, issue the below commands and confirm that /var/log/messages no longer has error messages related to IPv6.
sudo sysctl -w net.ipv6.conf.all.disable_ipv6=1sudo sysctl -w net.ipv6.conf.default.disable_ipv6=1sudo sysctl -psudo systemctl restart NetworkManagersudo journalctl -n 100 --no-pagerSummary Note: Use the above process to reduce "noise" for your chosen log collector (Grafana/Splunk/etc.) when using rsyslog as the intermediate process.
Additional Information
Originaly provided by Alan Baugher in IGA community
Feedback
Yes
No
Powered by
