4. 6rd tunnel and DHCP6

6rd tunnel and DHCP6

  • M

    I'm getting IPV6 from my ISP through a 6rd tunnel. I set up one of my LANs to use track interface and it works well, IPV6 are assigned automagically and all devices pass the usual IPV6 tests.
    Now I was wondering if it's possible to statically assign IPs internally like I do with IPV4 so I can enforce FW rules for different IPV6 clients.

    I admit that I am not as familiar with IPV6 as I'd like so is there any tutorial or examples on how to setup DHCP6 on pfsesne?

    0

  • Normally, IPv6 addresses are assigned via SLAAC, where the router provides the network prefix and the client device creates the suffix, using either the MAC address or a random number.  Those addresses will not change unless the prefix does.  You can filter on those addresses for incoming traffic.  However, you usually can't filter on the address for outgoing traffic, as something called privacy addresses are used, which will change daily.

    https://en.wikipedia.org/wiki/IPv6#Stateless_address_autoconfiguration_.28SLAAC.29

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy