I have open a feature request on Github
https://github.com/opnsense/plugins/issues/3905
https://github.com/opnsense/plugins/issues/3905
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Show posts MenuQuoteIf it was WAN's then perhaps your prefix is a link prefix (not routed), better check with your ISP.Can you explain this a bit more?
QuoteWhat does reach mean? Name resoultion, PING, HTTP, physical proximity? Please state your observation more precise.The OPNsense is able to reach DNS or ping via IPv6 in the Internet. I can do VPN via IPv6 into the OPNsense.
QuoteCan you see the traffic leaving the WAN interface?Yes I can see that the traffic is leaving the WAN interface.
Quote19:56:30.191565 IP6 fe80::21f:9eff:feff:2f41 > ff02::1:ff58:21: ICMP6, neighbor solicitation, who has aaaa:bbbb:cccc:1:546f:78ff:fe58:21, length 32Important: Only if the interface is in promiscuous mode. So that packet is ignored by the kernel. Means OPNsense is not blocking nor answering it.
QuoteWAN static IPv6: aaaa:bbbb:cccc::2/64
* Inspect your prefix. Did you correctly derive an IPv6 and statically assign it to the LAN interface? Check again, the prefix MUST match! If unsure, check again three more times.
Quote* Check that your client in LAN has a valid public IPv4 address that matches in the first 64 bits with the LAN IP of Opnsense. There will be some fe80::... or other adresses starting with f... but they are not relevant here.The client is: aaaa:bbbb:cccc:1:546f:78ff:fe58:21/64 and it can reach the LAN IPv6 of the OPNsense.