Show Posts
1
19.7 Legacy Series / Problems with Tunnelbroker IPv6 (GIF) Tunnel
« on: September 12, 2019, 04:37:14 pm »
Hi there,
I have a problem with tunnelbroker setup. From time to time my tunnel collapses for some reason.
When I de- und reactivate the tunnelinterface the tunnel goes up again and will function for some time. I did not exactly find a pattern which circumstances cause the tunnel to stop.
I notice in the firewall live view that the HE tunnel IPv4 endpoint tries to ping my IPv4 endpoint, which is also documented. But OPNsense thinks the IPv4 endpoint pings with IPv6:
00_WAN Sep 12 16:29:50 216.66.80.90 a.c.d.73 ipv6 Default deny rule
This occurs every few seconds.
Inserting a rule which would allow that is not possible.
00_WAN IPv4+IPv6 ICMP Echo Source 216.66.80.90 Dest: a.c.d.73
gives this error;
You can not assign an ICMP type to a rule that applies to IPv4 and IPv6.
You can not use an IPv4 or IPv6 address in combined IPv4 + IPv6 rules.
I even drastically tried this on the 00_WAN interfacem but this does also not work:
IPv4+6 ICMP * * * * * *
Is this a bug or do I oversee something?
Best regards!
I have a problem with tunnelbroker setup. From time to time my tunnel collapses for some reason.
When I de- und reactivate the tunnelinterface the tunnel goes up again and will function for some time. I did not exactly find a pattern which circumstances cause the tunnel to stop.
I notice in the firewall live view that the HE tunnel IPv4 endpoint tries to ping my IPv4 endpoint, which is also documented. But OPNsense thinks the IPv4 endpoint pings with IPv6:
00_WAN Sep 12 16:29:50 216.66.80.90 a.c.d.73 ipv6 Default deny rule
This occurs every few seconds.
Inserting a rule which would allow that is not possible.
00_WAN IPv4+IPv6 ICMP Echo Source 216.66.80.90 Dest: a.c.d.73
gives this error;
You can not assign an ICMP type to a rule that applies to IPv4 and IPv6.
You can not use an IPv4 or IPv6 address in combined IPv4 + IPv6 rules.
I even drastically tried this on the 00_WAN interfacem but this does also not work:
IPv4+6 ICMP * * * * * *
Is this a bug or do I oversee something?
Best regards!