"
Hello everyone. Looking for some insight into how some of you are blocking Inter-VLAN/LAN IPv6 traffic. Since IPv6 GUA's are globally routable the classic !RFC1918 a lot of us use for IPv4 rules won't work. I'm new to IPv6 so I may not be fully understanding this concept..
I already have an interface group that contains all of my LAN interfaces (LAN,VLANx, VLANy, etc.)
If I create a rule on VLANx's interface that is similar to the !RFC1918 setup, such as:
IPv6* Source: VLANx Port * Destination (Invert ticked) !langroup
Wouldn't this prevent any IPv6 inter-lan/vlan traffic? Any concerns with this setup other than having to explicitly allow traffic to dynamic IPv6 host(s) alias'?
I gave this and a few other posts a read:
https://forum.opnsense.org/index.php?topic=28447.0
I already have an interface group that contains all of my LAN interfaces (LAN,VLANx, VLANy, etc.)
If I create a rule on VLANx's interface that is similar to the !RFC1918 setup, such as:
IPv6* Source: VLANx Port * Destination (Invert ticked) !langroup
Wouldn't this prevent any IPv6 inter-lan/vlan traffic? Any concerns with this setup other than having to explicitly allow traffic to dynamic IPv6 host(s) alias'?
I gave this and a few other posts a read:
https://forum.opnsense.org/index.php?topic=28447.0
