OPNsense Forum

Archive => 21.7 Legacy Series => Topic started by: epalzeo on October 09, 2021, 01:47:03 pm

Title: IPV6, prefix delegation and 2 LAN subnets
Post by: epalzeo on October 09, 2021, 01:47:03 pm

Hi

i've got a router OPnsense 21.7 version,
with WAN (optical fiber) which gives me a prefix delegation IPV6 from my isp

On LAN1, i set the "track interface" with prefix delegation (pd 0). All my equipment on LAN1 has now IPV6 connection to internet
On LAN2 interface, i cant select track interface as it s already used by LAN1. I've got FDEC::: ipv6, and it doesnt have ipv6 connection

How can i allow my LAN2 to have IPV6 working ?

Thanks :)

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: priller on October 09, 2021, 03:19:31 pm

First, what size prefix are you getting from the ISP?  If only a /64, stop right there.  You will need something larger, typically a /56 or /60.

If the larger prefix, then for your LAN2 interface you will still track the WAN, but set it for IPv6 Prefix ID = 1.

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: epalzeo on October 09, 2021, 03:43:25 pm

Hi thanks for your answer,

it's an /56

for authentification, i need to send this

Code: [Select]

ia-pd 0 ,raw-option 15 00:2b:46:53:56:44:53:4c:5f:6c:69:76:65:62:6f:78:2e:49:6e:74:65:72:6e:65:74:2e:73:6f:66:74:61:74:68:6f:6d:65:2e:4c:69:76:65:62:6f:78:34 ,raw-option 16 00:00:04:0e:00:05:73:61:67:65:6d ,raw-option 6 00:0b:00:11:00:17:00:18 ,raw-option 17 00:00:05:58:00:06:00:0e:49:50:56:36:5f:52:45:51:55:45:53:54:45:44 ,raw-option 11 00:00:00:00:00:00:00:00:00:00:00:mysecretid
And also

Code: [Select]

X Prefix Delegation (checked)
id-assoc pd ID                     0
Prefix Interface Site-Level Aggregation Length        8
Here's my dhcp6c.conf

Code: [Select]

interface bxe1_vlan832 {
  send ia-pd 0;
  send raw-option 15 00:2b:46:53:56:44:53:4c:5f:6c:69:76:65:62:6f:78:2e:49:6e:74:65:72:6e:65:74:2e:73:6f:66:74:61:74:68:6f:6d:65:2e:4c:69:76:65:62:6f:78:34;
  send raw-option 16 00:00:04:0e:00:05:73:61:67:65:6d;
  send raw-option 6 00:0b:00:11:00:17:00:18;
  send raw-option 17 00:00:05:58:00:06:00:0e:49:50:56:36:5f:52:45:51:55:45:53:54:45:44;
  send raw-option 11 00:00:00:00:00:00:00:00:00:00:00:secretID;
  script "/var/etc/dhcp6c_wan_script.sh";
};
id-assoc pd 0 {
  prefix-interface re0 {
    sla-id 0;
    sla-len 8;
  };
};


if i try to track ID 1 on LAN2 :

Code: [Select]

You specified an IPv6 prefix ID that is out of range.

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: Greelan on October 09, 2021, 04:42:40 pm

Have you tried without setting the sla-id and sla-len options in the advanced config on the WAN interface?

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: epalzeo on October 09, 2021, 06:05:27 pm

YEs i tried, if i remove those options, my isp dont give me an ipv6 prefix...

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: Greelan on October 10, 2021, 04:13:46 am

It looks like then that your ISP does not support requesting the whole /56 PD, but rather you have to request individual /64 PDs for each internal interface. It appears then that you might have to do some manual configuration to achieve this, as it does not appear that the UI allows multiple PDs to be requested (I’m assuming for example it does allow multiple prefix IDs to be specified in the advanced field on the WAN interface?).

This post may be of assistance to do it manually:

https://forum.netgate.com/topic/153288/multiple-ipv6-prefix-delegation-over-at-t-residential-gateway-for-pfsense-2-4-5

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: epalzeo on October 10, 2021, 10:30:02 am

Thanks,

i did it, but actually my ISP dont allow me to do a second prefix delegation...

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: Greelan on October 10, 2021, 11:02:49 am

Well, your ISP sucks! Which ISP is it?

Title: Re: IPV6, prefix delegation and 2 LAN subnets
Post by: epalzeo on October 12, 2021, 06:56:24 am

Orange in france