Manual Unbound IPv6 ACL?

Started by Archer36, October 15, 2021, 04:01:24 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 15, 2021, 04:01:24 PM
Hello,

Is it possible to add an Unbound manual ACL for an IPv6 subnet through the GUI? Right now it appears to only support IPv4 networks based on the CIDR subnet range (0-32).

When I attempt to add the entry to the .conf via shell, it is removed when the unbound service is reloaded.

Edited to add that I'm running OPNsense 21.7.2_1-amd64

Thanks!
October 18, 2021, 07:56:32 PM #1
Figured this one out. Despite it only listing 0-32 bits, it will accept either a full or abbreviated IPv6 address. Once you save the ACL, go back into the ACL and then you will notice that you can pick mask bits >32, resave the ACL, and restart unbound.

I verified that even after restarting unbound the IPv6 ACL remains in place in the access_lists.conf file. Hope this helps anyone who might be looking.
Print
Go Up Pages1
User actions