Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    CARP and IPv6-PD - trying to understand things

    Scheduled Pinned Locked Moved IPv6
    6 Posts 2 Posters 603 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      msi
      last edited by

      Hi

      While I'm trying to figure out how the national incumbent (who has a tendency of doing things always a bit different from anyone else here) is doing IPv6-PD for our business line I've been trying to understand on how IPv6-PD and CARP can be done together.

      At work I have one static /48 from that provider and I'd like to get this also working with CARP, however where my brain is not following through the IPv6 rabbit hole is how both nodes in a CARP cluster will know who is the router and how radvd will know that it should announce the CARP IP address as they default gateway and not the interface IP to clients.

      I've done this one a single node setup, and it's really simple for me on my private line where I have a mostly sane ISP which doesn't expect any extra arguments or does some weird dual session PPPoE... I've tried find something in the docs but so far most examples mention IPv4 only.

      Any pointers would be appreciated. So far haven't come far after trying to do my due diligence of searching myself.

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @msi
        last edited by

        @msi said in CARP and IPv6-PD - trying to understand things:

        how radvd will know that it should announce the CARP IP address

        Because you would pick the carp vip as the RA interface would be my assumtion.. From what this says HA with IPv6 requires static.

        https://docs.netgate.com/pfsense/en/latest/book/highavailability/example-redundant-configuration.html
        "High Availability is compatible with IPv6, but it requires static addressing on the firewall interfaces. When preparing to configure HA, if static IPv6 assignments are not available, set IPv6 to None on all interfaces."

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • M
          msi
          last edited by

          Thanks, I got that part in that article, but I wasn't certain, but I guess that's what we need.

          The issue boils down to the ISP being quite "selective" or should I say "minimalistic" about what they give out for specification to customers. All I get from them is that we have a static /48 delegated to that FTTH line. Absolutely nothing more like a technical specification.
          The endpoint is a semi-managed box from them and they (unfortunately) seem to count on having customers who don't run a more elaborate system such as pfSense - even though their service is called a business solution... ๐Ÿ˜”

          I guess that I will have to bugger their support as otherwise I'm likely going to spend many hours on trying to understand what their service actually expects. If the location would be a couple of blocks closer to the city, things would be different and other ISPs would have been chose for certain.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            Well if they are giving you a /48.. Ask them what that /48 is and then you should be able to do whatever you want with that..

            Why would they be dicking with delegation if they have assigned you a /48?

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • M
              msi
              last edited by

              Why would they be dicking you ask: They are the national incumbent and they have a history of doing things differently and hiding information from customers unless specifically asked... ๐Ÿ˜›

              It's also their CPE which is a quite dumbed down box, and their documentation is really a lackluster when you are only a bit more than just a "mom and pop" shop even for SME products... allas, thanks nonetheless.

              1 Reply Last reply Reply Quote 0
              • johnpozJ
                johnpoz LAYER 8 Global Moderator
                last edited by

                Don't feel too bad the DOD is still dicking around with even trying to roll out dual stack support ;) And they have been at its since 2003 ;)

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 24.11 | Lab VMs 2.8, 24.11

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.