Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    New PPPoE backend, some feedback

    Scheduled Pinned Locked Moved Development
    232 Posts 19 Posters 38.8k Views 17 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • stephenw10S Online
      stephenw10 Netgate Administrator
      last edited by

      Also I think there may be some language barrier confusion here. Obviously the WAN gateway should be pingable from within the same layer 2 segment, even if the gateway doesn't chose to respond.

      In pfSense the 'LAN' interface is taken to be an internal interface on a different layer 2 segment than the PPPoE connection. From a client on that segment it will not be possible to ping a link local address on the PPPoE segement, gateway or otherwise, becaue lik-local traffic is not routable.

      RobbieTTR 1 Reply Last reply Reply Quote 0
      • RobbieTTR Offline
        RobbieTT @stephenw10
        last edited by

        @stephenw10
        I'd go further as PPPoE, when used for wholesale connections or subscriber access, is Layer 3. It uses both logical and defined routing instances to partition the traffic. The routing table is there, albeit in a stricter form (specifying PP0 interface etc). As such it becomes an exception to the 'normal' link-local rules.

        All from the books of Juniper and Cisco of course, albeit the Juniper version is easier to digest. Personally I think the OSI Model has had its day but what do I know...

        @louis2
        You have an issue that is not fully understood, is not being seen by others and may be somewhat unique. I think it is best for now to avoid terms such as Layer 2 or 3 as it may not be helpful and can only add confusion.

        Response to ping is not mandatory or enforced, no matter what the RFCs originally intended.

        ☕️

        L 1 Reply Last reply Reply Quote 1
        • L Offline
          louis2 @RobbieTT
          last edited by louis2

          @RobbieTT

          Be aware that I am not at all saying that a user can directly access the ISP-node, but I am sure that PPOE interface can !!

          Whats ever I it helps, I am absolutely OK to activate PPOE debug logging for a short period!

          Note that my actual config is like this
          ISP => ISP-fiber-interface => one of my small switches => pfSense.

          Internet should arrive via VLAN 6, IPTV via VLAN4 and (Old) VoIP via VLAN7.
          Untagged routed to vlan1 and vlans (internet) are routed to pfSense.

          I did add vlan1 to be quite sure that even untagged messages are passing to pfSense. Normally I would simply have blocked untagged. However the PPPOE is assigned to VLAN6.

          P 1 Reply Last reply Reply Quote 0
          • P Offline
            Phil2025 @louis2
            last edited by

            @stephenw10

            I've updated to the BETA 2.8.1, and the issue with the IPv6 Gateway monitoring is not fixed for me. I still need to restart the gateway service in order for monitoring to start on the IPv6 gateway.

            If I can provide any more information or logs let me know.

            1 Reply Last reply Reply Quote 0
            • stephenw10S Online
              stephenw10 Netgate Administrator
              last edited by

              Does the interface get an IPv6 address or is it link-local with PD only?

              P 1 Reply Last reply Reply Quote 0
              • P Offline
                Phil2025 @stephenw10
                last edited by

                @stephenw10 I get a 'WAN_DHCP6' Gateway listed with a link local address (something like fe80::a96:adff:febb:f800%pppoe1), and Status is Unknown on the dashboard. I have IPv6 connectivity all okay though. Restarting the Gateway service brings the monitoring up and it goes to Online.

                The DHCP6 client settings for the WAN is below. Hope that helps.

                5079d1fc-a737-416c-a5f8-5d744e30842e-image.png

                RobbieTTR 1 Reply Last reply Reply Quote 0
                • RobbieTTR Offline
                  RobbieTT @Phil2025
                  last edited by

                  @Phil2025
                  Mine, for reference:

                  2025-08-09 at 12.15.53.png

                  2025-08-09 at 12.17.03.png

                  ☕️

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S Online
                    stephenw10 Netgate Administrator
                    last edited by

                    Hmm, I would expect that to work. It's pretty much exactly what I run myself.

                    What do you see logged at boot compared with when you restart dpinger?

                    1 Reply Last reply Reply Quote 0
                    • A Offline
                      azalea
                      last edited by

                      I'm seeing the IPv6 gateway monitoring issue, too. (2.8.1-RC)

                      But my situation is a little different. IPv6 address is set but is not reachable.

                      My ISP uses separate PPPoE sessions for IPv4 and IPv6.
                      (IPv4 username and IPv6 username are different.)

                      DHCP6 Client Configuration is the same as Phil2025.

                      Below is an IPv6-only situation. These are picked out from the perspective of the differences between if_pppoe and mpd5.

                      Gateways Status

[if_pppoe]
<WAN_DHCP6>
Gateway	:not displayed
Status	:Pending
<WAN_PPPOE>
Gateway	:not displayed
Status	:Pending

[mpd5]
<WAN_DHCP6(default)>
Gateway	:displayed
Status	:Online
<WAN_PPPOE>
Gateway	:not displayed
Status	:Pending

                      Gateways Widget

[if_pppoe]
<WAN_DHCP6>
Gateway IP Address:not displayed (tilde symbol)
Status:Unknown
<WAN_PPPOE>
Gateway IP Address:not displayed (tilde symbol)
Status:Unknown

[mpd5]
<WAN_DHCP6(Default gateway)>
Gateway IP Address:displayed
Status:Online
<WAN_PPPOE>
Gateway IP Address:not displayed (tilde symbol)
Status:Unknown

                      Services Status

[if_pppoe]
dpinger:Stopped (can not start)

[mpd5]
dpinger:Running

                      Interfaces Status

[if_pppoe]
<WAN Interface>
IPv6 Link Local	:displayed
Gateway IPv6	:not exist
<LAN Interface>
IPv6 Address	:displayed (no reachability)

[mpd5]
<WAN Interface>
IPv6 Link Local	:displayed
Gateway IPv6	:displayed
<LAN Interface>
IPv6 Address	:displayed

                      NDP Table
(The following is the same situation for IPv4-only.)

[if_pppoe]
WAN Interface IPv6 Link Local:not exist

[mpd5]
WAN Interface IPv6 Link Local:displayed

                      PPP Log

[if_pppoe]
if_pppoe: pppoe0: failed to clear IP address: 49

[mpd5]
No errors
                      stephenw10S 1 Reply Last reply Reply Quote 0
                      • stephenw10S Online
                        stephenw10 Netgate Administrator @azalea
                        last edited by

                        @azalea said in New PPPoE backend, some feedback:

                        My ISP uses separate PPPoE sessions for IPv4 and IPv6.

                        Hmm, how exactly is that configured?

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.