Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Correct settings for Active Directory IPV6 comcast internet?

    Scheduled Pinned Locked Moved DHCP and DNS
    3 Posts 3 Posters 499 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      AveryFreeman
      last edited by

      Hi,

      I think I have this set up right as far as IPV4, but I am not sure what to do with IPV6:

      in pfSense:
      disable dhcp server
      disable dns forwarder/127.0.0.1 dns (in general settings)
      disable dns resolver

      Interface ipv6 settings:
      dhcp6 (WAN)
      track interface (LAN)
      block private and loopbacks (WAN)
      send ipv6 prefix hint (WAN)
      resolution /64  (WAN) (it's a residential connection)
      prefix id 0 (LAN)

      Firewall rule:
      Echo request from ICMPv6

      This setup seems to be working pretty well, as far as the internet is concerned.  ipv6-test.com gives me a 19/20 (in their eyes all I'm missing is a DDNS name for my WAN, apparently).

      However, my domain controllers complain that I do not have static IPV6 addresses.  I have very limited understanding of IPV6 so far, can anyone give me an idea of what I should do?

      Thank you so much,
      Avery

      1 Reply Last reply Reply Quote 0
      • JKnottJ Online
        JKnott
        last edited by

        Essentially, on IPv6, like IPv4, you don't have a static address, unless specifically assigned.  However, you do have what should be very consistent address.  IPv6 used DHCPv6-PD, which assigns your prefixes.  It shouldn't normally change, though it is possible.

        PfSense running on Qotom mini PC
        i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel 1 Gb Ethernet ports.
        UniFi AC-Lite access point

        I haven't lost my mind. It's around here...somewhere...

        1 Reply Last reply Reply Quote 0
        • C Offline
          coreybrett
          last edited by

          Had a similar question myself, still doesn't seem to be any generally accepted "best practices".

          https://serverfault.com/questions/804607/what-is-the-proper-way-to-configure-active-directory-and-domain-controllers-when

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.