Add IPv6 to PfSense, DNS problems IPv4
-
@jknott said in Add IPv6 to PfSense, DNS problems IPv4:
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
Yes i get that, but why do all my client get a IPv6 (from my ISP subnet) except my DC01? Even my DC02 gets a IPv6.
As mentioned above, if IPv6 is available, it will be preferred. If the clients are getting IPv6 addresses, it's because it's being provided to them.
Yes but my is everything getting an IPv6 address except my DC01? My DC02 (same roles, only not primary domain controller) all in same LAN. My DC01 just isnt getting ab IPv6 address. I was/am wondering if there is a logical explaination for this that i am not aware of.
-
I can't help you there, as I know nothing about your domain controllers.
-
@jknott said in Add IPv6 to PfSense, DNS problems IPv4:
I can't help you there, as I know nothing about your domain controllers.
What do you need to know to determine if there is a logical reason why my DC01 is not getting an IPv6 address?
IPv6 is enabled and on DHCP.
-
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
What do you need to know to determine if there is a logical reason why my DC01 is not getting an IPv6 address?
If everything else gets an IPv6 address and DC01 doesn't, then the problem is with DC01.
-
@operations it’s windows
that’s the explanation. A -
@jknott said in Add IPv6 to PfSense, DNS problems IPv4:
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
What do you need to know to determine if there is a logical reason why my DC01 is not getting an IPv6 address?
If everything else gets an IPv6 address and DC01 doesn't, then the problem is with DC01.
I agree. How do we fix this? :)
-
@thebear said in Add IPv6 to PfSense, DNS problems IPv4:
@operations it’s windows
that’s the explanation. AYou think you funny he
:) -
@operations without joking, every client in your network receives IPv6 addresses right? Only 1 windows OS is failing, I think this is an OS issues. If you boot a fresh installed win 11/10 VM, in the same virtual network as DC01, does it work?
-
@thebear said in Add IPv6 to PfSense, DNS problems IPv4:
@operations without joking, every client in your network receives IPv6 addresses right? Only 1 windows OS is failing, I think this is an OS issues. If you boot a fresh installed win 11/10 VM, in the same virtual network as DC01, does it work?
Yes all got IPv6 and fresh server 2019 VM also gets IPv6.
My got tells me it has got something to do with the DC01 being primary domain controller (with DNS and DHCP role).
-
@operations then it might be time to get the microsoft experts in touch on a microsoft forum.
If you or they can proof its pfSense related, with a Wireshark capture please report back.
-
@thebear said in Add IPv6 to PfSense, DNS problems IPv4:
@operations then it might be time to get the microsoft experts in touch on a microsoft forum.
If you or they can proof its pfSense related, with a Wireshark capture please report back.
I am not sure how to troubleshoot this using WireShark. I could run it on DC01. Could you tell me what to do and what to look for?
-
@operations I think he’s suggesting you’ve got a Windows problem. It’s not a pfSense problem, so it’s unlikely you’ll get exposure to a group of people with the knowledge you need here, especially for a niche issue like a domain controller
-
@vollans said in Add IPv6 to PfSense, DNS problems IPv4:
@operations I think he’s suggesting you’ve got a Windows problem. It’s not a pfSense problem, so it’s unlikely you’ll get exposure to a group of people with the knowledge you need here, especially for a niche issue like a domain controller
Yes i get he suggesting it is a Windows issue.
I didn't know a domain controller is a niche thing. Plus Wireshark troubleshooting is more a network thing. Which i would think is a thing people here would know. But i could be wrong:) -
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
I agree. How do we fix this? :)
ON DC01, "format c:".
It's a Windows problem, not pfSense. You'll have to see what's wrong with your own system. We can't do it for you.
-
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
I am not sure how to troubleshoot this using WireShark. I could run it on DC01. Could you tell me what to do and what to look for?
Are you the admin for the domain controller? If so. I'd have to question your abilities. Filter on ICMP6 and watch for DHCPv6. It works just like DHCP on IPv4, in the sequence of packets, though the contents are different.
-
@operations said in Add IPv6 to PfSense, DNS problems IPv4:
I didn't know a domain controller is a niche thing.
There are plenty of people who are familiar with Windows, myself included. However, most of those people have no exposure to Windows domain controllers, myself included. The closest I got to that was when I was doing Windows desktop support at IBM 17 years ago, and reset user passwords. Now, if you wanted to set up a file & print or IMAP server on Linux, I may be able to help.
-
Make double sure that IPv6 is enabled on the network adapter on DC01, and then make sure that "Obtain IP address automatically" is checked on the IPv6 Properties tab as well. Alternatively, you can assign a static IPv6 address from your subnet. That is actually preferred for a domain controller, especially one that is also the DNS server for the domain. Best practice for domain controllers is to always assign them static IP addresses (both IPv4 and IPv6).
If all that is set correctly, go here, read the information, and then examine the Registry of your domain controller to see if someone in the past disabled IPv6 using the Registry settings described in the link I provided. If you find they did, then use the information at the link to put things back to "normal" so IPv6 works.
But you really should use static IP addresses for domain controllers!
-
@bmeeks said in Add IPv6 to PfSense, DNS problems IPv4:
But you really should use static IP addresses for domain controllers!
Exactly! especially if they are going to be dhcp servers, normally the dhcpv4 would normally be your v6 dhcp server as well - if your using it.
