Need help enabling IPv6 w/Android Devices on 2.3.2

cmbroth

As I understand it, if you only want SLAAC, the router advertisement needs to be set to "unmanaged" and not "router only".

https://doc.pfsense.org/index.php/Router_Advertisements

Chris.

JKnott

Give unmanaged a try and see what happens.

inferno480

Unamanged made no difference to me, the Android phone would always report a link-local address only (maybe that's what happens if you're only using SLAAC, not sure?), but I was still getting the DNS timeouts.  Maybe it's possible to get the DNS server to listen on the link-local address?  Not sure that's ideal though.

The thing I struggle with is… this can't be a "me only" thing and this almost has to be something related to my setup/configuration, or else a LOT more people would be complaining.  Like I said, there are people posting that Unamanged or Assisted resolves the issue for them but it seems to make no difference to me.  I have the capability of running a Wireshark capture using port mirroring on the switch my LAN port is connected to, if it would be helpful.

I did have a couple questions about the General Setup DNS server screen, however...

Should I always populate that with two IPv4 and two IPv6 DNS servers?  Should I put IPv4 before IPv6?  What gateways should I select?  The webGUI mentions selecting a unique gateway per server, but I am using gateway groups / multi-wan, so I wasn't sure.  I even tried specifying "none" for all four but it had no real impact either way.

JKnott

The phone should have both a link local and global unicast address.  If it has only a link local address, then you won't be able to go beyond your local network.  Your phone should be responding to the router advertisements by creating an address from the advertised prefix and the MAC address or a random number.  For whatever reason, it's not doing that.  One work around for those Samsung phones is to get a WiFi router, with the WAN side connected to the local LAN and use it's WiFi only for those phones.  That way you'll only get an IPv4 connection.  It's not ideal, but it may be a way to get the phones working.

Paint

I am having the same problem with my Samsung Note 4 (developer edition).

I had to download a program to disable ipv6 support on my device - now I no longer have the DNS issues with ipv6 and I can keep my RA Announcement configuration to Assisted. I realize that disabling IPv6 on my device is just a patch and not a fix to this problem. Good luck!

cmbroth

@Paint:

I had to download a program to disable ipv6 support on my device - now I no longer have the DNS issues with ipv6 and I can keep my RA Announcement configuration to Assisted. I realize that disabling IPv6 on my device is just a patch and not a fix to this problem. Good luck!

I have thought about that as well, but I haven't wanted to go through rooting my phone.

Chris.

cmbroth

Is there any reason that I cannot change my RDNSS entry so that it uses the router's local IPv6 address instead of the global one?  The RFC says that using the local-link is ok, but I wasn't sure if there are any unintended consequences.

Thanks,
Chris.

bimmerdriver

For what it's worth, my GS7 is getting ipv4 and ipv6 addresses (two global and one link-local) from my pfsense router. I ran test-ipv6.com and ipv6-test.com and both were fine. The only issues were that former noted a tunnel is being used for ipv6 and the latter noted there is no ipv6 hostname. Speedtest and ping test both work fine.

I'm using assisted mode.

kpa

@cmbroth:

Is there any reason that I cannot change my RDNSS entry so that it uses the router's local IPv6 address instead of the global one?  The RFC says that using the local-link is ok, but I wasn't sure if there are any unintended consequences.

Thanks,
Chris.

I'm guessing that the global address is used because a downstream IPv6 router could pick the RDNSS entry up and re-use it for its own LAN, this won't work if the address is a link-local address because the address wouldn't be reachable outside the original LAN.

cmbroth

I'm guessing that the global address is used because a downstream IPv6 router could pick the RDNSS entry up and re-use it for its own LAN, this won't work if the address is a link-local address because the address wouldn't be reachable outside the original LAN.

In my case, I don't have any routers downstream.

Thanks,
Chris.