How best to use IPV6 with domain controllers on residential ISP?

Started by AveryFreeman, November 03, 2020, 10:14:47 PM

Previous topic - Next topic
Hi,

I'm trying to figure out how to set up my DCs with IPV6

I have a residential 1G/40M cable connection (Comcast ISP) with DHCPv4/v6

My LANv6 works with "track changes" which is the only way I've been able to get it working consistently, but I admit I don't know much about how IPV6 works

I just noticed if I change my WANv6 settings to "Request only an IPv6 prefix"  I get a link local address

For instance, I had "Request only IPV6 prefix" unchecked, and my WAN IPV6 address was: 2001:558:600a:c3:8590:bba3:2023:e486/128

I checked "Request only IPV6 Prefix" and rebooted, and now my address is: fe80::226:55ff:fed6:b115/64

Can any of these assist me in having a static gateway address?  I need a static gateway address in order to create static IPV6 addresses for my domain controllers.

I asked this question on pfsense forum on Reddit and some people were saying ULAs (would that double-NAT with the DCs?) Another person said EIA64 could be an option.

This is all new to me, I have no idea what they are besides looking up definitions, and I haven't heard any clear direction as to how to implement either one.

Does anyone want to demystify this for me?  How could either be used in the context of OPNsense and AD?

Thanks