Hi all,
I'm still new at opnsense, I have some networking backgound but firewalls are not my primary area of expertise. I'm looking for some pointer in how to troubleshoot an offline IPv6 gateway (I just set it up, it never worked).
The goal of the IPv6 gateway is to route IPv6 traffic through a Wireguard tunnel to a VPN provider.
I also have an IPv4 gateway which works fine and sends traffic to the VPN provider.
I followed these instructions: https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html#configuring-ipv6
How would you advise to see where the routing is failing?
I have configured the outbound FW NAT rule, the Wireguard config has both IPv4 and IPv6 config in it, I assigned /127 network to the Wireguard interface and assigned another IP out of this subnet to the IPv6 GW, but nonetheless, the gateway is not coming online...
Solved. When generating a new config file with wgcf, the IPv4 stays the same (172.16.0.2) but the IPv6 changes, I didn't notice this. I generated a new config to switch from WARP to WARP+ / WARP Plus. Hence packets were sent from the wrong source IPv6 and CloudFlare was dropping them.