1
24.1 Production Series / Re: Console Upgrade Option - Not Available?
« on: Today at 12:57:06 pm »
Sorry, my bad - I was intending to write "connectivity audit".
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
So basically it's going to be the OPNSense that's going to route from all the different /64 Networks to the Subnet of the OpenWRT Router ?Yes.
Isn't that either doing NAT or generating a "Default Deny State Violation" ?With proper rules - no.
There is no segment with /48. You get your /48 from the ISP to assign /64 chunks to your segments. Not minimum, not maximum. Exactly!You are getting a /48 simply for address management purposes. IPv6 address space is that vast, we can afford that. You have two octets (bytes) worth of "structure".
So on both OPNSense Routers, you propose for the WAN that I should select a "Static IPv6" and use the /49 Subnet on both, with IP maybe ::11 for Router1 and ::12 for Router2 ?No, no no ... for WAN there is obviously some transfer network in place so you ask your ISP what exactly to configure.
Then for LAN (and all other interfaces: DMZ, WiFi, VLAN_XXX), I setup as "Track Interface" as usual with id 0,1,2,3,.... ?