Messages

1

23.1 Legacy Series / Re: [SOLVED] Firewall blocking all IPv6 traffic to Internet

« on: June 28, 2023, 11:55:49 pm »

This is solved.  I was using the port assigned to VLANs to connect to the appliance directly from my laptop.  This caused the laptop to get a ton of IPv6 addresses (one for each PD).  When I assigned LAN to a different port (not the one used by VLANs), the problem resolved itself.  Thanks for your help!

2

23.1 Legacy Series / [SOLVED] Firewall blocking all IPv6 traffic to Internet

« on: June 28, 2023, 06:46:09 pm »

Hi all, the OPNsense firewall appears to be blocking all IPv6 internet traffic originating from the LAN.

I'm running 23.1 set up on a fresh install; haven't set up any new rules I don't believe (there's an allow all IPv6 rule); IPv6 is enabled in the firewall.  Please see images below.  Any help/ideas would be very much appreciated!

I can ping google.com over IPv6 from the OPNsense shell but ping and web browsing from LAN to the internet is blocked.  I can ping the LAN gateway over IPv6 from a device on the LAN network, but I cannot ping the WAN gateway from a device on the LAN network.

Important note: IPv6 worked on OPNsense until I set up prefix delegation from my AT&T router using this guide.  I am running five VLANs (haven't tested those, just can't use IPv6 on LAN for sure).  Could the firewall be blocking traffic due to some anti-spoofing rule or something?

Firewall log excerpt:


Log event detail:


Firewall rules on LAN (no floating rules):


IPv6 allowed in firewall: