Text only | Text with Images

OPNsense Forum

English Forums => 25.7, 25.10 Series => Topic started by: OzziGoblin on November 04, 2025, 05:18:02 AM

Title: dnsmasq and ipv6 config
Post by: OzziGoblin on November 04, 2025, 05:18:02 AM
Hi

I've been able to migrate to dnsmasq but there are some IPv6 settings I'm confused about.

I have been assigned a /48 IPv6 address by my ISP, it's segmented this into various /64s for each interface in OpnSense.  Each interface is configured with IPv6 Configuration Type of "Track Interface"  WAN as the parenjt address.
I used to use Router Advertisements, but I've been able to stop using that with the use of dnsmasq ranges, see below.

(about:invalid)

The question is, what setting do I need on each network interface for IPv6 Configuration Type, testing reveals I can disable it, but I'm not sure if that is correct.

Thanks for your help
Title: Re: dnsmasq and ipv6 config
Post by: sifrmoja on November 04, 2025, 05:32:53 AM
The official guide (https://docs.opnsense.org/manual/ipv6.html) for IPv6 goes through setting up exactly what you are doing. What exactly are you struggling with?
Title: Re: dnsmasq and ipv6 config
Post by: OzziGoblin on November 04, 2025, 05:42:30 AM
Hi

Basically, if I'm using dnsmasq ipv6 RA modes to assign ipv6 addresses, do I need the setting enabled on the network interface to track the WAN and what should it be?

ATM each client is getting 2 ipv6 addresses, one seems to be from dnsmasq and the other appears be from the network interface

thanks

Title: Re: dnsmasq and ipv6 config
Post by: sifrmoja on November 04, 2025, 05:54:11 AM
Is the second one the privacy address? They both appear to be on the same /64.

Edit: it appears you are using DHCPv6 to send out client IPs as well as SLAAC. You should only use DHCPv6 for prefix delegation and maybe DNS server information.
Title: Re: dnsmasq and ipv6 config
Post by: OzziGoblin on November 04, 2025, 06:44:14 AM
Thanks, I think it's because I followed the instructions and used slaac,ra-names in dnsmasq.

Title: Re: dnsmasq and ipv6 config
Post by: OzziGoblin on November 04, 2025, 11:58:32 AM
In the end I've reverted to snapshot, I can't figure out the required IPv6 DHCP settings if not using ISC and RA.

Hopefully I can continue using ISC until I can get it working in a lab and then put into my system
Title: Re: dnsmasq and ipv6 config
Post by: Monviech (Cedrik) on November 04, 2025, 01:04:22 PM
Either you configure the IPv6 statically, or you use track interface and use the dnsmasq constructor, pointing each DHCPv6 range to the interface it should construct the RAs from.

E.g. this example works when having LAN on "Track Interface" /or/ a static IPv6 address

https://docs.opnsense.org/manual/dnsmasq.html#dhcpv6-and-router-advertisements
Title: Re: dnsmasq and ipv6 config
Post by: muchacha_grande on November 04, 2025, 04:36:51 PM
You can use the following guide as an additional source:

https://homenetworkguy.com/how-to/migrate-from-isc-dhcp-to-dnsmasq-or-kea-dhcp-in-opnsense/

I'm studying the migration right now as I'll be moving to dnsmasq in the following days.
Text only | Text with Images