Issue configuring IPv6 with ULA, but works fine with Track Interface.

lamboalpha

@jknott Everything works fine the moment I enable DHCPv6 (with PD). I have enabled the IP alias, but just confirming, there is not way with 1:1 or NPt to use the ISP range (which is dynamic) and set the internal network of FD00. Per the ULA comment.

Bob.Dig

@lamboalpha said in Issue configuring IPv6 with ULA, but works fine with Track Interface.:

but just confirming, there is not way with 1:1 or NPt to use the ISP range (which is dynamic) and set the internal network of FD00.

Maybe there is, haven't tried it yet, because you can use the dynamic ones too (with some caveats).

One thing one could try is maybe this, make an unused VLAN and give it a dynamic prefix via track interface. Then use that prefix to do NPt with your interface which is using the ULA and see how pfSense respond.

In the future it would be nice if pfSense would allow to reserve prefixes just for that cause. Or find another way of fixing the problems when using dynamic prefixes.

JKnott

@lamboalpha said in Issue configuring IPv6 with ULA, but works fine with Track Interface.:

but just confirming, there is not way with 1:1 or NPt to use the ISP range (which is dynamic) and set the internal network of FD00. Per the ULA comment.

Not that I'm aware of. Regardless, NAT is a bad idea on both IPv4 and IPv6. It's needed on IPv4 due to the address shortage, but not IPv6. However, your prefix should not be changing, provided Do not allow PD/Address release is selected, though I know there are some stupid ISPs that don't respect it. I've had the same prefix for a few years and it's survived replacing both the modem and the computer I run pfSense on.

Bob.Dig

@jknott said in Issue configuring IPv6 with ULA, but works fine with Track Interface.:

Do not allow PD/Address release

I don't have this option anymore or am I blind...

JKnott

@bob-dig said in Issue configuring IPv6 with ULA, but works fine with Track Interface.:

or am I blind...

Yes. It's on the WAN page.

Bob.Dig

@jknott Not for me.

JKnott

@bob-dig

How old is your version of pfSense? It was added a few years ago. It wasn't there when I started using pfSense around 6.5 years ago, but was added not long afterward. Before then, simply disconnecting/reconnecting the WAN cable was enough to cause a prefix change.

Bob.Dig

@jknott said in Issue configuring IPv6 with ULA, but works fine with Track Interface.:

@bob-dig

How old is your version of pfSense?

I am on 22.05-RELEASE

JKnott

@bob-dig

I'm on 2.6.0. I have no experience with 22. Perhaps you should contact the Netgate people about this.

Bob.Dig

Maybe @stephenw10 can confirm, that that option (Do not allow PD/Address release) is missing in 22.05-RELEASE.

lamboalpha

It is set on for me per my above post. But, I am on 2.6.0 (which is 22.2 config rev).