IPV6, prefix delegation and 2 LAN subnets

[epalzeo]

Hi

i've got a router OPnsense 21.7 version,
with WAN (optical fiber) which gives me a prefix delegation IPV6 from my isp

On LAN1, i set the "track interface" with prefix delegation (pd 0). All my equipment on LAN1 has now IPV6 connection to internet
On LAN2 interface, i cant select track interface as it s already used by LAN1. I've got FDEC::: ipv6, and it doesnt have ipv6 connection

How can i allow my LAN2 to have IPV6 working ?

Thanks :)

[priller]

First, what size prefix are you getting from the ISP?  If only a /64, stop right there.  You will need something larger, typically a /56 or /60.

If the larger prefix, then for your LAN2 interface you will still track the WAN, but set it for IPv6 Prefix ID = 1.

[epalzeo]

Hi thanks for your answer,

it's an /56

for authentification, i need to send this

Code Select Expand

ia-pd 0 ,raw-option 15 00:2b:46:53:56:44:53:4c:5f:6c:69:76:65:62:6f:78:2e:49:6e:74:65:72:6e:65:74:2e:73:6f:66:74:61:74:68:6f:6d:65:2e:4c:69:76:65:62:6f:78:34 ,raw-option 16 00:00:04:0e:00:05:73:61:67:65:6d ,raw-option 6 00:0b:00:11:00:17:00:18 ,raw-option 17 00:00:05:58:00:06:00:0e:49:50:56:36:5f:52:45:51:55:45:53:54:45:44 ,raw-option 11 00:00:00:00:00:00:00:00:00:00:00:mysecretid

And also

Code Select Expand

X Prefix Delegation (checked)
id-assoc pd ID                     0
Prefix Interface Site-Level Aggregation Length        8

Here's my dhcp6c.conf

Code Select Expand

interface bxe1_vlan832 {
  send ia-pd 0;
  send raw-option 15 00:2b:46:53:56:44:53:4c:5f:6c:69:76:65:62:6f:78:2e:49:6e:74:65:72:6e:65:74:2e:73:6f:66:74:61:74:68:6f:6d:65:2e:4c:69:76:65:62:6f:78:34;
  send raw-option 16 00:00:04:0e:00:05:73:61:67:65:6d;
  send raw-option 6 00:0b:00:11:00:17:00:18;
  send raw-option 17 00:00:05:58:00:06:00:0e:49:50:56:36:5f:52:45:51:55:45:53:54:45:44;
  send raw-option 11 00:00:00:00:00:00:00:00:00:00:00:secretID;
  script "/var/etc/dhcp6c_wan_script.sh";
};
id-assoc pd 0 {
  prefix-interface re0 {
    sla-id 0;
    sla-len 8;
  };
};



if i try to track ID 1 on LAN2 :

Code Select Expand

You specified an IPv6 prefix ID that is out of range.

[Greelan]

Have you tried without setting the sla-id and sla-len options in the advanced config on the WAN interface?

[epalzeo]

YEs i tried, if i remove those options, my isp dont give me an ipv6 prefix...

[Greelan]

It looks like then that your ISP does not support requesting the whole /56 PD, but rather you have to request individual /64 PDs for each internal interface. It appears then that you might have to do some manual configuration to achieve this, as it does not appear that the UI allows multiple PDs to be requested (I'm assuming for example it does allow multiple prefix IDs to be specified in the advanced field on the WAN interface?).

This post may be of assistance to do it manually:

https://forum.netgate.com/topic/153288/multiple-ipv6-prefix-delegation-over-at-t-residential-gateway-for-pfsense-2-4-5

[epalzeo]

Thanks,

i did it, but actually my ISP dont allow me to do a second prefix delegation...

[Greelan]

Well, your ISP sucks! Which ISP is it?

[epalzeo]

Orange in france