IPv6 PD not work after update OPNSense from 22.7.11->23.1_6

Started by cayenne, February 02, 2023, 12:00:00 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3 4 5
User actions
March 12, 2023, 05:33:06 PM #45
The moment IPv6 dropped @ 10:57am (attached). Running 23.1.3. Not sure what to do at this point.
OPNsense 24.7.7  - QEMU/KVM (Ubuntu), i9-9900K 16 core @ 5ghz, 16GB RAM, 64GB SSD, 2 dedicated SFP+ NICs
March 12, 2023, 06:39:18 PM #46
I turned off IPv6 entirely while I decide if I want to downgrade back to 22.z when it worked properly, or buy a Firewalla.
March 20, 2023, 02:48:31 PM #47
Replying to this thread because I replied earlier...still not sure if this issue is related. 

Last night my ISP "bounced" my connection, zabbix reported couldn't ping either ipv4 and ipv6...ipv4 problem lasted for about 2 minutes, but ipv6 never recovered.  Restarting radvd did nothing and my ipad had an assigned ipv6 address but couldn't ping ipv6 on the wan.  To solve without a reboot I went to interfaces and without making any changes, just clicked save/apply for my primary LAN and it immediately recovered.  I don't have gateway monitoring enabled and wondering if this has any automation to auto-recover...guessing not.
HP T730/AMD  RX-427BB/8GB/500GB SSD
HP NC365T 4-PORT
March 20, 2023, 02:59:20 PM #48
I gave up and pulled the OPNsense box out. Reset my AT&T gateway to be the firewall/router. Spouse is much happier now. There's enough stuff that will use IPv6 out there that it has to work if you're going to have it enabled. I wasn't noticing the issue from my Mac since it was using the iCloud private relay, but her Android has no such thing enabled and it definitely did not like having broken IPv6.
March 20, 2023, 03:20:32 PM #49
@gpb, if this happens again, could you execute this:

/usr/local/etc/rc.configure_interface wan

Maybe that will restore things?
March 28, 2023, 06:43:44 PM #50 Last Edit: April 01, 2023, 06:12:15 AM by Gromhelm
Came here after having IPv6 problems since the last update. Before the update, https://internet.nl/connection/ showed all green checks. Now I had problems with IPv6 not being available, three checks somehow disappeared in the WAN configuration:

  • Request only an IPv6 prefix
  • Send IPv6 prefix hint
  • Use IPv4 connectivity

After checking these again and restarting, IPv6 works again, but my General System Log is spammed with these entries:
Code Select

2023-03-28T18:23:28 Notice opnsense /usr/local/etc/rc.newwanipv6: No IP change detected for WAN[wan]
2023-03-28T18:23:28 Warning opnsense /usr/local/etc/rc.newwanipv6: ROUTING: not a valid host gateway address: ''
2023-03-28T18:23:28 Warning opnsense /usr/local/etc/rc.newwanipv6: ROUTING: not a valid host gateway address: ''
2023-03-28T18:13:26 Notice opnsense /usr/local/etc/rc.newwanipv6: No IP change detected for WAN[wan]
2023-03-28T18:13:25 Warning opnsense /usr/local/etc/rc.newwanipv6: ROUTING: not a valid host gateway address: ''
2023-03-28T18:13:25 Warning opnsense /usr/local/etc/rc.newwanipv6: ROUTING: not a valid host gateway address: ''
2023-03-28T18:03:23 Notice opnsense /usr/local/etc/rc.newwanipv6: No IP change detected for WAN[wan]


The period is every 10 Minutes - what could cause that?

I am on DHCPv6 with a delegated 64 prefix and a LAN that is set to track IPv6 WAN, according to the standard setup from the docs.

Under Gateway, my DHCPv6 gateway shows online and does have a link-local IP (fe80::224e:71ff:fe11:2cfe).
March 29, 2023, 06:07:32 AM #51 Last Edit: March 29, 2023, 06:39:05 AM by Gromhelm
I run
Code Select
/usr/local/etc/rc.configure_interface wan, without success. After the command, some errors popped up in the log, but I think they are mostly meaningless:
Code Select

/usr/local/etc/rc.newwanipv6:
The command '/usr/local/sbin/dhcpd -6 -user dhcpd -group dhcpd -chroot /var/dhcpd -cf /etc/dhcpdv6.conf -pf /var/run/dhcpdv6.pid igb1 igb3' returned exit code '1',
the output was 'Internet Systems Consortium DHCP Server 4.4.3-P1 Copyright 2004-2022 Internet Systems Consortium. All rights reserved.
For info, please visit https://www.isc.org/software/dhcp/
Warning: subnet 2003:e7:1f11:300::/32 overlaps subnet 2003:e7:1f11:300::/32
Config file: /etc/dhcpdv6.conf
Database file: /var/db/dhcpd6.leases
PID file: /var/run/dhcpdv6.pid
There's already a DHCP server running.
If you think you have received this message due to a bug rather than a configuration issue please read the section on submitting bugs on either our web page at www.isc.org or in the README file before submitting a bug. These pages explain the proper process and the information we find helpful for debugging. exiting.'


I tried to check
Code Select
/etc/dhcpdv6.conf, but it doesn't exist.

[edit]

Perhaps I am seeing these log entries because both my IPSEC Gateways are IPv4 only?
Only my default WAN gateway is Dualstack (IPv4 + IPv6).
April 01, 2023, 06:13:33 AM #52
Fixed my issue - it was a missing default gateway set under System > General > DNS. Described here, with a Pull Request attached:
https://github.com/opnsense/core/issues/6435#issuecomment-1492616278
May 25, 2023, 10:39:58 PM #53
Hi @franco,

Has the problem been solved?

I've upgraded to OPNsense 23.1.8 and I'm not having the same problem. The IPv6 default route is not deleted.
May 25, 2023, 10:55:14 PM #54
Some things regarding IPv6 have been changed in 23.1.8. I honestly don't know what your issue is/was, but perhaps we finally caught it.

If not we need to see how to get more relevant info from you. It feels like we missed something obvious before.


Cheers,
Franco
May 26, 2023, 10:10:56 PM #55
I'm no longer getting an IPV6 address detected by https://test-ipv6.com/ after updating to 23.1.8 from the previous most recent release. I attached a log that starts right after the update. Hopefully someone can help me figure out what's wrong with that.

May 27, 2023, 06:28:47 AM #56
For me, too: I could solve my problems described above, everything is green in OPNsense for IPv6, but https://test-ipv6.com/ returns Zero connectivity for IPv6. It was all green before 23.1.8.
May 27, 2023, 10:08:23 AM #57
@Gromhelm That's interesting!

Exactly the other way round for my place:

Finally test-ipv6.com reports that I have ipv6 connectivity with 23.1.8 ... :o
Br br


May 27, 2023, 02:03:51 PM #58
Quote from: bringha on May 27, 2023, 10:08:23 AM
@Gromhelm That's interesting!

Exactly the other way round for my place:

Finally test-ipv6.com reports that I have ipv6 connectivity with 23.1.8 ... :o
Br br

Like me, who created this post.
May 27, 2023, 02:13:02 PM #59
Quote from: Gromhelm on May 27, 2023, 06:28:47 AM
For me, too: I could solve my problems described above, everything is green in OPNsense for IPv6, but https://test-ipv6.com/ returns Zero connectivity for IPv6. It was all green before 23.1.8.

23.1.8 changed a few things about IPv6. So does your OPNsense get a WAN IPv6 address and prefixes? How is your WAN (or dial up connection) configured?
Do you use DHCPv6 for your LAN devices or SLAAC (in unmanged mode) only?
Print
Go Up Pages 1 2 3 4 5
User actions