IPv6 LAN Rules Setup

Started by chawk, February 22, 2026, 11:43:57 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 22, 2026, 11:43:57 PM Last Edit: Today at 02:37:32 AM by chawk
Hello everyone. Looking for some insight into how some of you are blocking Inter-VLAN/LAN IPv6 traffic. Since IPv6 GUA's are globally routable the classic !RFC1918 a lot of us use for IPv4 rules won't work. I'm new to IPv6 so I may not be fully understanding this concept..

I already have an interface group that contains all of my LAN interfaces (LAN,VLANx, VLANy, etc.)
If I create a rule on VLANx's interface that is similar to the !RFC1918 setup, such as:
IPv6* Source: VLANx Port * Destination (Invert ticked) !langroup

Wouldn't this prevent any IPv6 inter-lan/vlan traffic? Any concerns with this setup other than having to explicitly allow traffic to dynamic IPv6 host(s) alias'?


I gave this and a few other posts a read:
https://forum.opnsense.org/index.php?topic=28447.0
Print
Go Up Pages1
User actions