Text only | Text with Images

OPNsense Forum

Archive => 21.1 Legacy Series => Topic started by: JamesFrisch on May 05, 2021, 10:26:15 AM

Title: Unable to start DHCP6 after reboot. 21.1.5
Post by: JamesFrisch on May 05, 2021, 10:26:15 AM
Update: Problem seems to be solved by disabling VLAN Hardware Filtering.

I experience a strange issue. Today I updated my Unifi US-8 60W switch. My OPNsense system is a "router on a stick" configuration. My fiber converter goes into Port 1 of said switch. Port1 is VLAN7. Port 2 has all VLANs tagged an goes to an Intel NUC running OPNsense. After the update, OPNsense was unable the start the DHCP6 service.

In the logs I see this error:


Update: I start to think this problem has nothing to do with OPNsense. Here is something else in the logs:
em0_vlan7: a looped back NS message is detected during DAD for 2a02:XXXXXX. Another DAD probes are being sent.

I have thinkred around with gateway and WAN settings without luck.
I have not idea where to go from here, any help would be greatly appreciated. Let me know if I can provide you additional information.
Title: Re: Unable to start DHCP6 after reboot. 21.1.5
Post by: JamesFrisch on May 05, 2021, 06:05:46 PM
arghh still not working. And now the firewall starts to crash from time to time. Will contact my ISP to get help.
Title: Re: Unable to start DHCP6 after reboot. 21.1.5
Post by: JamesFrisch on May 06, 2021, 10:32:41 AM
I have no idea what is going on. It works for now but there are some things I do not understand.

1. All my interfaces are track interface WAN. WAN uses DHCP6 /48 prefix.

WAN gets the IP 1234:1234:2000:29:9876:9876:9876:9876
VLANs are all Track interface. They look like this:
VLAN1 1234:1234:43f0:1:9876:9876:9876:9876
VLAN2 1234:1234:43f0:2:9876:9876:9876:9876

Should the WAN not be on the same subnet? Something like 1234:1234:43f0:29:9876:9876:9876:9876 instead of
1234:1234:2000:29:9876:9876:9876:9876?

2. Is it normal that my Unifi switch sees around 20 other MAC addresses on the WAN Port?

3. Why do I still get the error a looped back NS message is detected during DAD for 1234:1234:2000:29:9876:9876:9876:9876. Another DAD probes are being sent.
Title: Re: Unable to start DHCP6 after reboot. 21.1.5
Post by: marjohn56 on May 06, 2021, 10:58:00 AM
With regards to the WAN address, it's within your ISPs network. Remember they are all GUA addresses and they get routed via your ISP.
Title: Re: Unable to start DHCP6 after reboot. 21.1.5
Post by: JamesFrisch on May 06, 2021, 11:47:28 AM
Thanks for the clarification.

I contacted my ISP and he said that everyone gets a /48 prefix but mine is empty for some strange reason.
He will get in touch with 2nd level support.

Title: Re: Unable to start DHCP6 after reboot. 21.1.5
Post by: JamesFrisch on May 12, 2021, 06:35:41 PM
It seems to be an issue with the new core CISCO switches from my ISP.
Text only | Text with Images