Show Posts
1
21.1 Legacy Series / Problems with HA Proxy and IPv6
« on: April 05, 2021, 11:39:38 am »
Hello,
I have a small problem regarding the HAProxy configuration with IPv6.
IPv4 Settings are working without prroblems. But with IPv6 it seems that HAProxy is not listening correctly on them.
I have tried everything. Also checked Firewall that the rules are set but nothing.
I'm migrating from pfsense to opnsense so I tried with the working config from pfsense.
IPv6 Config on Firewall:
I have two IPv6 nets. One /64 and one /56, The /64 is a routing net to route from WAN interface to the /56 LAN Interface net.
Config on WAN: Static IPv6. Gateway on WAN is the aaa:aaa:1/64 and IPv6 address for WAN is aaa:aaa:2/64
The /56 is routed to aaa:aaa:2/64
Config LAN interface:
Static IPv6
Adresses: bbb:aaa:1/56
Gateway: Auto-detect.
IPv6 itself is working from behind the firewall. I have a Virtual Server which is working with IPv6. So theres no problem with IPv6 Routing / connectivity.
HA Proxy Config:
- Added desired IPv6 address to virtual ip list. (IP address from /56 LAN Interface)
- Created firewall rule to let through port 80 and 443
- Added the IPv6 Address into HAProxy Config Public Server as listen address in format bbb:aaa:1000:80 / bbb:aaa:1000:443
While IPv4 is reachable IPv6 is not. Also not showing in HA Proxy Log file.
In PFsense that config was working. So what am I doing wrong? Please help.
I have a small problem regarding the HAProxy configuration with IPv6.
IPv4 Settings are working without prroblems. But with IPv6 it seems that HAProxy is not listening correctly on them.
I have tried everything. Also checked Firewall that the rules are set but nothing.
I'm migrating from pfsense to opnsense so I tried with the working config from pfsense.
IPv6 Config on Firewall:
I have two IPv6 nets. One /64 and one /56, The /64 is a routing net to route from WAN interface to the /56 LAN Interface net.
Config on WAN: Static IPv6. Gateway on WAN is the aaa:aaa:1/64 and IPv6 address for WAN is aaa:aaa:2/64
The /56 is routed to aaa:aaa:2/64
Config LAN interface:
Static IPv6
Adresses: bbb:aaa:1/56
Gateway: Auto-detect.
IPv6 itself is working from behind the firewall. I have a Virtual Server which is working with IPv6. So theres no problem with IPv6 Routing / connectivity.
HA Proxy Config:
- Added desired IPv6 address to virtual ip list. (IP address from /56 LAN Interface)
- Created firewall rule to let through port 80 and 443
- Added the IPv6 Address into HAProxy Config Public Server as listen address in format bbb:aaa:1000:80 / bbb:aaa:1000:443
While IPv4 is reachable IPv6 is not. Also not showing in HA Proxy Log file.
In PFsense that config was working. So what am I doing wrong? Please help.