"
This is solved. I was using the port assigned to VLANs to connect to the appliance directly from my laptop. This caused the laptop to get a ton of IPv6 addresses (one for each PD). When I assigned LAN to a different port (not the one used by VLANs), the problem resolved itself. Thanks for your help!
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
23.1 Legacy Series / Re: [SOLVED] Firewall blocking all IPv6 traffic to Internet
June 28, 2023, 11:55:49 PM #2
23.1 Legacy Series / [SOLVED] Firewall blocking all IPv6 traffic to Internet
June 28, 2023, 06:46:09 PM
Hi all, the OPNsense firewall appears to be blocking all IPv6 internet traffic originating from the LAN.
I'm running 23.1 set up on a fresh install; haven't set up any new rules I don't believe (there's an allow all IPv6 rule); IPv6 is enabled in the firewall. Please see images below. Any help/ideas would be very much appreciated!
I can ping google.com over IPv6 from the OPNsense shell but ping and web browsing from LAN to the internet is blocked. I can ping the LAN gateway over IPv6 from a device on the LAN network, but I cannot ping the WAN gateway from a device on the LAN network.
Important note: IPv6 worked on OPNsense until I set up prefix delegation from my AT&T router using this guide. I am running five VLANs (haven't tested those, just can't use IPv6 on LAN for sure). Could the firewall be blocking traffic due to some anti-spoofing rule or something?
Firewall log excerpt:
Log event detail:
Firewall rules on LAN (no floating rules):
IPv6 allowed in firewall:
I'm running 23.1 set up on a fresh install; haven't set up any new rules I don't believe (there's an allow all IPv6 rule); IPv6 is enabled in the firewall. Please see images below. Any help/ideas would be very much appreciated!
I can ping google.com over IPv6 from the OPNsense shell but ping and web browsing from LAN to the internet is blocked. I can ping the LAN gateway over IPv6 from a device on the LAN network, but I cannot ping the WAN gateway from a device on the LAN network.
Important note: IPv6 worked on OPNsense until I set up prefix delegation from my AT&T router using this guide. I am running five VLANs (haven't tested those, just can't use IPv6 on LAN for sure). Could the firewall be blocking traffic due to some anti-spoofing rule or something?
Firewall log excerpt:
Log event detail:
Firewall rules on LAN (no floating rules):
IPv6 allowed in firewall:
Pages1
