Using OPNsense to override crappy Meraki IPv6 implementation

Started by smccloud, August 15, 2024, 05:48:33 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 15, 2024, 05:48:33 PM
So our firewall at work is a Meraki MX95 (which was decided above my pay grade).  It works, the problem is now that I am getting ready to roll out an IPv4 + IPv6 dual stack it is very limiting.  I can't just say let's rip it out and replace it because we just purchased a costly 3-year licensing & support renewal for it.  So I have to figure out a way to make it work.  I'd like to use OPNsense to tell clients to use our domain controllers for DNS, but not override the Meraki when it comes to the default route.  The problem is so far if I enable DHCPv6 on an OPNsense VM I'm using for testing (with one virtual NIC, the next time I'm in the office it will get a passed-through i350 NIC) it advertises itself as a DNS server as well.  With Advertise Default Gateway unchecked hosts also tend to get the MX95 as a DNS server.  Does anyone have any suggestions on how to make this work without telling my boss we just wasted $7250.00 on the MX95?
August 15, 2024, 06:27:57 PM #1
Hi!

How about disabeling Unbound and entering your preferred DNS IP to the DHCP config page?
kind regards
chemlud
____
"The price of reliability is the pursuit of the utmost simplicity."
C.A.R. Hoare

felix eichhorns premium katzenfutter mit der extraportion energie

A router is not a switch - A router is not a switch - A router is not a switch - A rou....
August 15, 2024, 07:34:08 PM #2
Quote from: chemlud on August 15, 2024, 06:27:57 PM
Hi!

How about disabeling Unbound and entering your preferred DNS IP to the DHCP config page?

Is there a way to specify three DNS IPs in the DHCPv6 config page?
Print
Go Up Pages1
User actions