Package: kea-dhcp6-server Version: 2.2.0-5 System: Debian 12 (Bookworm) Linux dhcp 6.1.0-6-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.15-1 (2023-03-05) x86_64 GNU/Linux
There are multiple issues. I have managed to fix one, but I am stuck on the second. First off apparmor blocked kea-dhcp6-server to start (error from syslog): [Tue Mar 28 10:40:14 2023] audit: type=1400 audit(1679992815.512:30): apparmor="DENIED" operation="create" profile="kea-dhcp6" pid=1070 comm="kea-dhcp6" family="inet6" sock_type="dgram" protocol=0 requested_mask="create" denied_mask="create" I solved by applying this change: diff /tmp/usr.sbin.kea-dhcp6.orig usr.sbin.kea-dhcp6 12,13c12,13 < network inet dgram, < network inet stream, --- > network inet6 dgram, > network inet6 stream, Now however kea-dhcp6-server is not blocked by apparmor but instead these log entries are found in /var/log/kea/kea-dhcp6.log: 2023-03-29 09:39:07.851 WARN [kea-dhcp6.dhcpsrv/7362.140490067909056] DHCPSRV_OPEN_SOCKET_FAIL failed to open socket: Failed to open unicast socket on interface ens192, reason: Failed to bind socket 17 to 2a0e:XXXX:XXXX:XXXX::5/port=547: Permission denied 2023-03-29 09:39:07.851 WARN [kea-dhcp6.dhcpsrv/7362.140490067909056] DHCPSRV_OPEN_SOCKET_FAIL failed to open socket: Failed to open multicast socket on interface ens192, reason: Failed to open link-local socket on interface ens192: Failed to bind socket 17 to fe80::250:56ff:fe96:dfb3/port=547: Permission denied While I do not know how to solve this, I think it could be related to AmbientCapabilities in kea-dhcp6-server.service. However this is just speculation from my side. Also maybe good to mention, kea-dhcp4-server works fine on the same machine.
