Looking to give clients on an interface public IPv6 space from /64 - how to?

Started by TheLinuxGuy, January 10, 2021, 11:10:49 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 10, 2021, 11:10:49 PM
I'm trying to give public internet routable IPv6 address space to clients in one of my opnsense interfaces "V6only"

This interface has been configured with IPv4 disabled and V6 only. My WAN interface obtains V6 addresses from ISP. My goal is to have a network where clients get an IPv6 address that is routable (pingable) from the internet to my network.

I have been struggling to get my windows 10 VM to get an IPv6 from the same address block than my ISP gives my WAN - can I get some help? Not sure what I am doing wrong.

Here's pictures of my interface settings, firewall rules (allow any any ipv6) and interface overviews. https://imgur.com/a/tMrWwTN
January 10, 2021, 11:38:04 PM #1
As an interesting observation... under Services > DHCPv6 my interface does not show up when "Track interface" is set.

If I click "Allow manual adjustment of DHCPv6 and Router Advertisements" then save the interface shows up under DHCPv6... The options such as "Subnet Mask" and "Available Range" are empty when I do this.... it makes it seem like "Track interface" is not properly telling the DHCPv6 the bits and range available for scope?
January 11, 2021, 12:21:47 AM #2
You've set a PD size of /64 on the WAN but I can't actually see any prefix being delegated. You sure you aren't allocated a /60 or /56 for the LAN side?
January 11, 2021, 12:52:24 AM #3
Quote from: Greelan on January 11, 2021, 12:21:47 AM
You've set a PD size of /64 on the WAN but I can't actually see any prefix being delegated. You sure you aren't allocated a /60 or /56 for the LAN side?

I actually just called my ISP to ask for a bigger block and /64 is all they are giving me. If I want to have this IPv6 only test network does that mean I need to rely on NTPv6?

I am going to try to static configure an IPv6 random /64 block. Found this calculator to generate a random address: https://simpledns.plus/private-ipv6

IPv6 is totally new to me and trying to learn it, all I am really trying to do is move my Plex Media server into an IPv6 only network that is reachable from the public IPv6 internet. I presume I will need to do the NAT game for it and port forwarding on IPv6?
January 11, 2021, 12:59:46 AM #4
Quote from: Greelan on January 11, 2021, 12:21:47 AM
You've set a PD size of /64 on the WAN but I can't actually see any prefix being delegated. You sure you aren't allocated a /60 or /56 for the LAN side?

I think I see what you are referring to with "/60" and found this guide: https://homenetworkguy.com/how-to/configure-ipv6-opnsense-with-isp-such-as-comcast-xfinity/#:~:text=Enabling%20IPv6%20in%20OPNsense&text=To%20ensure%20IPv6%20is%20globally,option%20is%20%E2%80%9CAllow%20IPv6%E2%80%9D.


My ISP is T-mobile Home Internet.
Going to give it a shot forcing /60 but looks like DHCPv6 on the other side responded with a /64 already.
January 11, 2021, 01:22:37 AM #5
According to this thread (https://community.ui.com/questions/T-Mobile-Home-Internet-IPv6/44391c82-8276-42b0-97dd-0984a0eab17a) that ISP does not offer IPv6 prefix delegation. You will probably need to discuss with them what the appropriate configuration is for IPv6
Print
Go Up Pages1
User actions