Unable to get ipv6 to work over ipsec
-
I have set up a ipsec dial in vpn and it works fine for ipv4 traffic. for ipv6 traffic on the other hand it does not work.
When I dial in from my macbook I get the following address assigned to me:
swiftyblack:~ ivar$ ifconfig ipsec0
ipsec0: flags=8051 <up,pointopoint,running,multicast>mtu 1400
inet 10.11.15.1 –> 10.11.15.1 netmask 0xff000000
inet6 fe80::7a4f:43ff:fe9c:c99b%ipsec0 prefixlen 64 scopeid 0x15
inet6 2001:XXXX:XXX:6e01::1 prefixlen 64
nd6 options=201 <performnud,dad>My ISP has assigned me the following /56 network:
2001:XXXX:XXXX:6e00My lan interface has the following ipv6 address (and ipv6 works fine on the lan):
2001:XXXX:XXXX:6e00:208:a2ff:fe0a:7922When trying to ping 2001:XXXX:XXXX:6e01::1 from the outside I get:
[ivar@trondheim ~]$ ping6 2001:XXXX:XXXX:6e01::1
PING 2001:XXXX:XXXX:6e01::1(2001:XXXX:XXXX:6e01::1) 56 data bytes
From 2001:XXXX:YYYY:9c9:208:a2ff:fe0a:7922 icmp_seq=1 Destination unreachable: Address unreachable
From 2001:XXXX:YYYY:9c9:208:a2ff:fe0a:7922 icmp_seq=2 Destination unreachable: Address unreachable2001:XXXX:YYYY:9c9:208:a2ff:fe0a:7922 is the ipv6 address of my wan interface so the packets are sent to my pfsense box. The problem is that there does not seem to be a ipv6 route on the pfsense box to the ipsec network. in fact I cant even find a interface for the ipsec network on the pfsense box
I am sure I am missing something pretty basic here. Anyone have an idea what I am doing wrong?</performnud,dad></up,pointopoint,running,multicast>