OPNsense Forum

Archive => 22.1 Legacy Series => Topic started by: tiermutter on January 21, 2022, 08:23:15 am

Title: IPv6 and VPN/DNS issues
Post by: tiermutter on January 21, 2022, 08:23:15 am

Hi all,

I freshly installed RC1 on my "testing"-device whereby I set up everything (except os-wol and os-dyndns) by hand one-to-one according to my configuration of the production system (21.7).
Now I´m struggling with two issues that didn't occur with (almost)* identical configuration on 21.7.

* The main difference is that I used PPP LTE (internal Sierra Wireless modem, IPv4 only) as failover with 21.7, with 22.1 (meanwhile RC2) I´m using an external LTE modem DHCP4 (had issues using static IP) and DHCP6.

Issue #1:
I´m used to have a seperate OVPN server (hosted on OPNsense) for NAS devices, wherby one device is connected from OPNsense LAN side to the WAN side via global v6.
Since RC1 it is no more possible to connect from LAN side to WAN side (even with OVPN/WG on Android), no entries in FW log, OPNsense is directly attached to FTTH modem.

What is the reason for this behavior?
I´m just surprised that this is how it has worked so far, now my LAN side NAS is connected to VPN via link-local.

Issue #2:
Since RC1 (external) DNS resolution over VPN (OVPN and WG) is not working.
I found that DNS requests will be routed correctly to OPNsense and that the resolver (tried unbound, DNScryptProxy and AdGuard) receives and processes the request, but there will be no reply. Packet capture only shows requests from VPN client to Sense, I don´t know where the reply (if there is one at all) goes to, I can´t either find them on the other interfaces.

Maybe this is my configuration fault, I´m really not sure and surpised again, because identical config worked on 21.7 and previous versions...

Any ideas why the aspected behaviour is not happening or what I´ve done wrong?