OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Dmonroe »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - Dmonroe

Pages: [1]
1
24.7 Production Series / Can't ping ipv6 WAN externally
« on: September 15, 2024, 12:19:14 am »
Hello, I have an issue where I can't access my ipv6 WAN address externally. I have verizon FIOS, they don't provide me with a WAN address so I'm using the new WAN track interface ability to assign it out of the /56 verizon gives me. This works and the WAN assigns itself an address and I can even ping that address from inside my network, however when I try to ping that address from outside or connect to the wireguard instance running on it, I get no reply. I have a firewall rule passing all ipv6 ICMP traffic externally and I can successfully ping my LAN ipv6 interface address from externally, so the rule is working, I don't get why its not working specifically for my new WAN address.

2
22.7 Legacy Series / ipv6 wireguard Nat help
« on: August 03, 2022, 06:09:12 pm »
Hello, I'm trying to convert as much of my network as I can to ipv6-only. Right now I'm trying to convert my wireguard server to use ipv6 addresses, and I've run into a problem. I get my prefix via DHCPv6 from my ISP, so they can change it at any time, and my clients connect to the server using dynamic dns. Wireguard, however, requires that the clients have static addresses, which makes sense, because the server would have no way to tell the client it's new address when it's trying to establish a connection. The way around this, and also how wireguard works with ipv4, is to have a static internal network and use NAT to connect to the internet, which is what I'm trying to set up with wireguard using ipv6. However, it seems that ipv6 NAT does not currently work. I can successfully ping machines on my LAN over ipv6 from a wireguard client, and I can sucessfully ping ipv4-only internet hosts via tayga, but when I try to ping ipv6 hosts on the internet it doesn't go through. Googling found this: https://forum.opnsense.org/index.php?topic=13896.0 from 2019 which seems to be the same problem and has no resolution. Is there any way to get this working, or am I stuck using ipv4 for wireguard? Attached is a screenshot of my outbound NAT settings.
 Thanks in advance.

3
22.1 Legacy Series / Tayga help
« on: May 22, 2022, 12:36:33 am »
Hello, I'm trying to set up nat64 using tayga so my ipv6 devices can reach ipv4 addresses. I followed the setup instructions in the documentation, https://docs.opnsense.org/manual/how-tos/tayga.html, but tayga still refuses to start. I've attached screenshots of my configuration to the post, can anyone see what I'm doing wrong? thanks in advance.

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2