"
dnsmasq DHCPv6 is indeed the other sender. I have it enabled in stateless mode so it can create AAAA records on the LAN. The solution is disable one of these, and since having AAAA for the dnsmasq-managed domain is a benefit, I turned off radvd. It does seem unfortunate that both announcers can be enabled simultaneously without some callout in the UI or documentation.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
25.7, 25.10 Series / Re: "RA with lower CurHopLimit ..." sent by OPNSense
August 24, 2025, 08:43:29 PM #2
25.7, 25.10 Series / "RA with lower CurHopLimit ..." sent by OPNSense
August 24, 2025, 05:03:07 AM
All my FreeBSD hosts on my LAN see this kernel message repeated roughly every 360 seconds:
<hostname> kernel: RA with lower CurHopLimit sent from fe80:n::a:b:c:d on <interface> (current = 255, received = 64). Ignored.
(where a:b:c:d is the EUI-64 for my OPNsense host, and n is the number that corresponds to the interface's scope ID in ifconfig)
I ran radvdump on one my hosts, and after a while it shows there are two distinct RAs sent from fe80::a:b:c:d. The differences are:
AdvManagedFlag off vs on
AdvDefaultLimetime 1200 vs 1800
AdvCurHopLimit 255 vs 64
AdvLinkMTU <not present> vs 1500
DNSSL <not present> vs home.arpa (what I'm using as the domain in OPNsense settings)
On the OPNsense host, I have Services > Router Advertisements > LAN set to Assisted. Interfaces > LAN > Track IPv6 Interface > Manual configuration is off. ISC DHCPv6 server is off for everything. The contents of /var/etc/radvd.conf mostly match the second:
interface <interface> {
AdvSendAdvert on;
AdvLinkMTU 1500;
AdvManagedFlag on;
AdvOtherConfigFlag on;
prefix 2x:x:x:x::/64 { ... };
RDNSS 2:x:x:x:a:b:c:d { }; <- this is the OPNsense host's routable IPv6 address
DNSSL home.arpa { };
}
Is there some other process other than radvd that also sends out RAs on OPNsense?
<hostname> kernel: RA with lower CurHopLimit sent from fe80:n::a:b:c:d on <interface> (current = 255, received = 64). Ignored.
(where a:b:c:d is the EUI-64 for my OPNsense host, and n is the number that corresponds to the interface's scope ID in ifconfig)
I ran radvdump on one my hosts, and after a while it shows there are two distinct RAs sent from fe80::a:b:c:d. The differences are:
AdvManagedFlag off vs on
AdvDefaultLimetime 1200 vs 1800
AdvCurHopLimit 255 vs 64
AdvLinkMTU <not present> vs 1500
DNSSL <not present> vs home.arpa (what I'm using as the domain in OPNsense settings)
On the OPNsense host, I have Services > Router Advertisements > LAN set to Assisted. Interfaces > LAN > Track IPv6 Interface > Manual configuration is off. ISC DHCPv6 server is off for everything. The contents of /var/etc/radvd.conf mostly match the second:
interface <interface> {
AdvSendAdvert on;
AdvLinkMTU 1500;
AdvManagedFlag on;
AdvOtherConfigFlag on;
prefix 2x:x:x:x::/64 { ... };
RDNSS 2:x:x:x:a:b:c:d { }; <- this is the OPNsense host's routable IPv6 address
DNSSL home.arpa { };
}
Is there some other process other than radvd that also sends out RAs on OPNsense?
#3
25.7, 25.10 Series / Multiple IP address on an interface
July 27, 2025, 06:11:25 AM
How can I configure an interface to have multiple IP addresses and connected routes? Examples of what I am trying to do:
1. WAN interface has a static (routable) IP, but the modem that is attached to the WAN port exposes its management interface on 10.1.0.0/24, and I want to get to that from the LAN side.
2. LAN networks get their IPv6 via prefix delegation, but I would also like to statically assign a ULA (a block inside of fd00::/8) on these interfaces.
1. WAN interface has a static (routable) IP, but the modem that is attached to the WAN port exposes its management interface on 10.1.0.0/24, and I want to get to that from the LAN side.
2. LAN networks get their IPv6 via prefix delegation, but I would also like to statically assign a ULA (a block inside of fd00::/8) on these interfaces.
Pages1
