IPv6 DNS servers



  • I'm new to IPv6, so bare with me, please

    Since I don't trust myself, the pfsense box uses the dns resolvers provided by my ISP. This way, I ensure that at least the pfsense box has name resolution.
    I have a pihole @ home, so my DHCP IPv4 service overrides the settings from the ISP, the clients on the local network get a DNS IPv4 address (the pihole's address). This works great, no problem there.

    I've setup IPv6 on the pfsense box, PD 56 on the WAN, 'track interface 'WAN' on the LAN interface, works great, the clients now get an IPv6 address, however, I was looking for a way to tell the clients on the LAN to use the pihole's IPv6 address as the DNS server for the (Microsoft - windows 10) clients.

    The Microsoft windows 10 network IPv6 properties show the same options as the IPv4 properties, that is 'obtain DNS servers automatically' or 'use the following DNS server addresses'.
    As with IPv4, I don't want to modify this on the client, but have the address provided by pfsense (in the case of IPv4, I use the DHCPv4 service to achieve this).

    The problem: Since I don't have a DHCPv6 service (using 'track interface WAN'), I can't find an option anywhere in pfsense that allows me to provide an alternate DNS IPv6 server to the clients.

    Question(s):

    Is it 'useful' / 'desired' / 'possible' / 'a bad idea' to even provide an IPv6 DNS server to the clients?

    Is it possible to change the IPv6 DNS server that clients would receive, when using 'track interface'?

    Thanks for your time and effort, remember IPv6 newbie.



  • @jpgsense251:

    The problem: Since I don't have a DHCPv6 service (using 'track interface WAN'), I can't find an option anywhere in pfsense that allows me to provide an alternate DNS IPv6 server to the clients.

    Using "track interface WAN" does not prevent you from using DHCPv6 for the LAN. Did you even look at the "Services" -> "DHCPv6 Server & RA" settings, I bet not because the DNS settings on both DHCPv6 and Router Advertisements jump you right in the face there.



  • Thank you for your reply.

    As I said, totally new to IPv6, please humor me…

    I'm already getting an IPv6 (GUA, I think is reffered to) without a DHCPv6 server, using 'track interface'. I can connect (ping other clients) using this IPv6 address on my local network.

    Would you care to explain why i should also have ULA (I think thats what it is called) on my home network, thus a DHCPv6 server, apart from the obvious reason I can than use IPv6 DHCP options?

    Thank you for your Time and effort, rmember: newbie



  • I'm not going to explain IPv6 basics in a forum post, do your own research. Start with https://forum.pfsense.org/index.php?topic=46792.0 and the pfSense book. As for being a newbie, that's not an excuse for being lazy and entirely up to you to change.



  • ULA has nothing to do with DHCPv6.  ULA is the IPv6 equivalent of IPv4 RFC 1918 addresses.  You can use it with SLAAC, DHCPv6 or manual configuration. just like global addresses.  I'd also recommend reading a good tutorial on IPv6.