Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - johnshill

Pages1

26.1, 26,4 Series / Re: Unable to get IPv6 Traffic via WireGuard

May 14, 2026, 12:57:10 PM

Many thanks for the detailed step-by-step guide. I started from scratch and the only material change to my setup was the following:

Quote from: space_cadet on May 13, 2026, 04:04:23 AMRequest DNS configuration: Checked

Everything else I followed like for like with some adjustments for my /56 prefix, existing LANs and endpoint & port preference:

Code Select

[Interface]
PrivateKey = <redacted>
Address = 10.10.90.2/32,2a01:xxxx:xxxx:xx03::9002/128
DNS = 10.10.90.1,2a01:xxxx:xxxx:xx03::9001

[Peer]
PublicKey = <redacted>
Endpoint = ddns.myprivatedomain.com:60090

AllowedIPs = 0.0.0.0/0,::/0

I connected my iPhone using the WireGuard app via 5G and am still unable to open IPv6-only sites. I tried the same with an Android (GrapheneOS) and it is the same.

Some questions:
1. What do your Services > Router Advertisements look like?
2. What do your Firewall > NAT > Outbound rules look like?
3. Do you have anything for Firewall > NAT > NPTv6?

26.1, 26,4 Series / Re: Unable to get IPv6 Traffic via WireGuard

May 11, 2026, 03:33:03 PM

Thank you, I gave it another try by manually carving out another /64 from my /56 and assigning it to the WG interface.

My subnets in Overview > Interfaces followed this pattern: xxxx:xxxx:xxxx:xx00:yyyy:yyyy:yyyy:yyyb/64, xxxx:xxxx:xxxx:xx01:yyyy:yyyy:yyyy:yyyc/64, xxxx:xxxx:xxxx:xx02:yyyy:yyyy:yyyy:yyyd/64,

Thus, I codified xxxx:xxxx:xxxx:xx03:10:10:50:1/64 on the interface, and my config looks as follows:

Code Select

[Interface]
PrivateKey = <redacted>
Address = 10.10.50.2/32,xxxx:xxxx:xxxx:xx03::1/128
DNS = 10.10.50.1,xxxx:xxxx:xxxx:xx03:10:10:50:1

[Peer]
PublicKey = <redacted>
Endpoint = ddns.mydomain.com:51820
AllowedIPs = 0.0.0.0/0,::/0

Internet is fine, but still no IPv6 sadly...

26.1, 26,4 Series / Unable to get IPv6 Traffic via WireGuard

May 11, 2026, 03:41:56 AM

I have dual stack working correctly (I think) on my home network using DHCPv6 on WAN and "Identity association" on each of my three subnets with Router Advertisements set to "Assisted" mode. My ISP is Hyperoptic and I have /56 on the WAN for prefix delegation size and each of the subnets is using /64.

whatismyipaddress.com detects both IPv6 and IPv4 and test-ipv6.run passes with 10/10 on all my clients, however, any client connected via WireGuard fails.

I configured all the IPv6 settings per the WireGuard Road Warrior Setup guide to no avail, including:
-ULA for the tunnel address, fddd::1/64, and tried both fddd::2/64 and fddd::2/128 for the peer/client in every combination.
-Assigned an interface to WireGuard.
-Created an outbound NAT rule for IPv6 with Translation / target set to "Interface address"
-Created an inbound firewall rule on WAN for IPv4+IPv6
-Created a firewall rule on WireGuard letting it access all subnets and the internet.
-Created normalization rules with Max mss 1360

My config is as follows:

Code Select

[Interface]
PrivateKey = <redacted>
Address = 10.10.50.2/32,fddd::2/128
DNS = 10.10.50.1, fddd::1 <this is probably wrong>

[Peer]
PublicKey = <redacted>
Endpoint = ddns.myowndomain.com:51820
AllowedIPs = 0.0.0.0/0,::/0

I simply cannot get "What Is My IP Address" to detect an IPv6 when connected from my phone to my home network via VPN and would kindly appreciate some help.

Pages1