Adding limiters to IPv6 firewall rules breaks IPv6
-
Adding a simple UP/Down limit to an IPv6 * -> Any firewall rule will break IPv6.
Is this a known issue? Or a bug?
-
That does appear to cause some problems. I'm on an HE.Net GIF tunnel though…
Set 1Mbit up and 2Mbit down limiters on my IPv6 any any rule. Can still ping out. DNS appears to work, but anything TCP is worthless. Can't browse. I can telnet IPv6 to smtp.gmail.com. I get a banner, but I get nothing back from an EHLO.
Weird.
-
What's the process for submitting this as a bug?
-
Is your IPv6 native or on a tunnel?
With all the IPv6 stuff in the limiters, I'm not convinced it's a bug yet. Things usually aren't.
redmine.pfsense.org.
-
IPv6 is implemented natively. It was implemented by tracking the IPv6 interface.
-
https://redmine.pfsense.org/issues/2526
Feedback and will be fixed in 2.2.1
-
Many thanks!