IPv4 Internet with IPv6 LAN
-
Hello.
How is Pfsense doing this? We have IPv4 Internet, and would like to configure IPv6 LAN, but it just doesn't seem possible with Pfsense without "tunnels" or is it?
Is this a feature that is yet to manifest because it looks like IPv4 ain't going anywhere anytime soon. I'mma go grab a snickers while I wait, cause this issue and how it can be tackled, is interesting... -
You can add a local IPv6 subnet from one of the reserved ranges. But if your ISP doesn't provide IPv6 it won't be much use other than locally.
What are you actually trying to achieve?
Steve
-
You could use Unique Local Addresses. However, as Stephen mentioned, you won't get very far. If your ISP doesn't provide IPv6, you'll have to use a tunnel. Some people here use Hurricane Electric (he.net).
-
@stephenw10 said in IPv4 Internet with IPv6 LAN:
You can add a local IPv6 subnet from one of the reserved ranges. But if your ISP doesn't provide IPv6 it won't be much use other than locally.
What are you actually trying to achieve?
Steve
That's it... Local IPv6 with IPv4 Internet. There is currently no way to use 6to4 in Pfsense without the use of tunnels, and how come netgate didn't pick up on this and say, "no,no,no...that's just unacceptable." or did they, and this option is something you have to pay for?
it just seems weird that after all this time, you still can't do this in Pfsense. When did they stop blazing the trail? Is that sort of stuff left for VyOS, Mikrotik and OpenWRT?I'm just saying... not angry at all. If the boss comes tomorrow and says we need to do 6to4, then we just have to find another product that can do it, and do it. This should be a non-issue for Pfsense and Netgate. It should be a case of "You no longer have any excuse not to use IPv6. None at all." But here we are, umpteen years later....You need a HE tunnel for that. Why?
-
@starcodesystems Because you chose an ISP for your work that doesn’t use IPv6, basically.
-
If you don't have an actual routable IPv6 address you need some way translate that back to IPv6 somewhere even if you have some NAT 6to4 scheme in place. That has to be handled via your ISP.
It's far easier to setup a tunnel to HE.net and get real routable IPv6 address space.
-
@Vollans said in IPv4 Internet with IPv6 LAN:
@starcodesystems Because you chose an ISP for your work that doesn’t use IPv6, basically.
Yes, basically, but more importantly than that, none of our local ISP's are doing IPv6, and attending a IANA meeting with them on Border gateway's it seems some like the idea of IPv6 with no NAT because, their words, not mine.... "Ohh boy, we got you now!"
-
@stephenw10 said in IPv4 Internet with IPv6 LAN:
If you don't have an actual routable IPv6 address you need some way translate that back to IPv6 somewhere even if you have some NAT 6to4 scheme in place. That has to be handled via your ISP.
It's far easier to setup a tunnel to HE.net and get real routable IPv6 address space.
Ok, yes, but the ISP doing IPv4 means I will have to be doing that tracking on my system, so when ISP IPv4 response / reply reaches me, Pfsense NAT 6to4 will go, "ah yes, that belongs to IPv6 here, and that belongs to IPv6 there, and what's this, IPv4 for IPv4? ... Aww c'mon man, again? ..NAT, NAT!!! Wake up and handle your shit man!" (until a patch comes out?)
-
If your ISP is offering some sort of translation to v6 upstream then you may be able to use that. Or potentially you could host your own translation node to do that. But it would still be easier to just tunnel or encapsulate the v6 to something you host.
