Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPV6 address

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 634 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Buckethead
      last edited by

      I'm generally pretty sharp, but I'm a newbie when it comes to more advanced networking.  I just switched from a standard consumer router to a fairly basic pfsense box on my home network within the past year.  I do have openvpn set up with a private internet access account.  I did this using the tutorial provided on PIA's site.

      I recently noticed that some sites can see my real IPV6 address, while others see my PIA address. This defeats the purpose of why I switched to pfsense in the first place.

      Currently I am running a single VPN client.  The VPN client settings offer 4 choices - UDP, UDP6, TCP, and TCP6.  Currently mine is set to UDP.  Am I correct that the VPN protocol defines the protocol used to connect to the VPN, and is NOT the same as the protocol defined in the NAT rules?

      My NAT rules for the VPN are set ANY protocol, which I thought would include IPV6 since that is one of the options.  Apparently I was wrong.

      Based on some research here, I think I may need to create additional VPN clients and NAT rules for each protocol.  Does that sound correct?

      If it is, I can handle creating additional clients, but does the client need to be configured differently to handle IPV6 traffic?

      Once I have additional clients created, I'm not sure how to use them.  For example, the NAT rules offer 12 options for protocol.  Among the options, TCP, UDP, and IPV6 seem the most relevant.  Do I just create one new rule for IPV6 Protocol, and place it before my existing ANY Protocol rule?

      Any guidance is appreciated.

      1 Reply Last reply Reply Quote 0
      • J
        jimwat01
        last edited by

        Hello,

        I see this is a pretty old post, but going to bump it as I have a similar issue. I am also a pfSense noob, and have added an OpenVPN client (IPVanish). All seems to work fine, but I have an occasional issue with the DNS being unable to resolve certain addresses through the VPN server with IPv6 enabled. Ironically, I am unable to resolve https://forum.netgate.com while using IPVanish. However, when connected directly from my Windows 10 PC (through a hotspot) with IPVanish running, I can connect to this forum (only) if I disable the IPv6 protocol in the adapter properties. Anyway, it would be great if there were a way to disable all IPv6 traffic in pfSense. I have turned off all the IPv6 options I can find, but no joy. I have also attempted using various DNS servers, but this does not help either. On a side note, my research found that most VPN providers still do not have IPv6 support, but are promising to have it available this year (we'll see). Anyway, any suggestions would be appreciated.

        Here's hoping to be able to respond to this thread while using my new pfSense router :)

        Thanks,

        Jim

        1 Reply Last reply Reply Quote 0
        • J
          jimwat01
          last edited by

          I think I found a solution. From https://www.reddit.com/r/PFSENSE/comments/7or0bt/pia_vpn_leaking_ipv6/

          System -> General Setup -> DNS Server Override (unchecked)
          System -> General Setup -> Disable DNS Forwarder (checked)
          Services -> DNS Resolver -> DNS Query Forwarding (checked)
          Reboot

          I am now posting on this forum while using my pfSense router and all seems good 👍

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.