Show Posts
1
19.7 Legacy Series / [SOLVED] IPv6 has stopped working for LAN Clients
« on: January 13, 2020, 02:26:45 am »
Hi all,
For some reason IPv6 has stopped working for LAN clients.
I am on OPNsense 19.7.9_1 and really nothing has changed except updating to 19.7.9_1 (from 19.7.
.
I have my WAN set to DHCP6 and LAN set to Tracking.
Previously I was able to hit IPv6 targets fine but now I get nothing.
I've tried the ol' toggle "Enable IPv6" in the Firewall -> Settings -> Advanced but that doesn't seem to help.
Perhaps a firewall rule is mucked up now?
My LAN rules related to IPv6 are only 1 in number:
IPv6 * LAN net * * * * *
Which shows IPV6-ICMP being blocked by the "Default Deny" rule.
I've tried setting this too no avail too:
IPv6 * * * * * * *
Which actually shows nothing in the live view / flat logs.
I am able to ping IPv6 addresses (typically only testing with ipv6.google.com) using the OPNSense ping diagnostic tools and am able to ping addresses from both the LAN and WAN nics.
Can anyone help / verify / sanity check? I am pretty sure my settings are correct ... (Comcast - Consumer).
Thanks!
*** EDIT
Filtered dhcp6c System -> Log Files General
For some reason IPv6 has stopped working for LAN clients.
I am on OPNsense 19.7.9_1 and really nothing has changed except updating to 19.7.9_1 (from 19.7.
. I have my WAN set to DHCP6 and LAN set to Tracking.
Previously I was able to hit IPv6 targets fine but now I get nothing.
I've tried the ol' toggle "Enable IPv6" in the Firewall -> Settings -> Advanced but that doesn't seem to help.
Perhaps a firewall rule is mucked up now?
My LAN rules related to IPv6 are only 1 in number:
IPv6 * LAN net * * * * *
Which shows IPV6-ICMP being blocked by the "Default Deny" rule.
I've tried setting this too no avail too:
IPv6 * * * * * * *
Which actually shows nothing in the live view / flat logs.
I am able to ping IPv6 addresses (typically only testing with ipv6.google.com) using the OPNSense ping diagnostic tools and am able to ping addresses from both the LAN and WAN nics.
Can anyone help / verify / sanity check? I am pretty sure my settings are correct ... (Comcast - Consumer).
Thanks!
*** EDIT
Filtered dhcp6c System -> Log Files General
Code: [Select]
Jan 12 19:43:36 dhcp6c[47703]: no responses were received
Jan 12 19:43:34 dhcp6c[47703]: no responses were received
Jan 12 19:43:21 dhcp6c[47703]: Sending Release
Jan 12 19:43:20 dhcp6c[47703]: Sending Release
Jan 12 19:43:13 dhcp6c[47703]: Sending Release
Jan 12 19:43:13 dhcp6c[47703]: Sending Release
Jan 12 19:43:10 dhcp6c: dhcp6c REQUEST on bge0 - running newipv6
Jan 12 19:43:10 dhcp6c[47703]: add an address 2001:558:60**:**:**:**:**:**/128 on bge0
Jan 12 19:43:10 dhcp6c[47703]: add an address 2601:281:82**:**:**:**:**:**/64 on bge1
Jan 12 19:43:10 dhcp6c[47703]: Received REPLY for REQUEST
Jan 12 19:43:10 dhcp6c[47703]: Sending Request