Limit DHCPv6 traffic

  • My pfsense use DHCPv6 protocol to get ipv6 connectivity.

    But, sometimes (and I still don't know exactly why), my hosting provider blocks the MAC address because pfSense is making too much DHCPv6 traffic.

    In the documentation (here), they ask customers to limit DHCPv6 traffic with 2 ip6tables rules :

    ip6tables -A OUTPUT -p udp --dport 547 -m limit --limit 10/min --limit-burst 5 -j ACCEPT
    ip6tables -A OUTPUT -p udp --dport 547 -j DROP

    How could I set these rules within pfsense ?

  • Wow, no responses yet. I'm not sure how to do this, but I am curious what traffic is being created by pfSense. IPv6 is not that common yet, shame. Possible there is a bug, but pfSense tends to do very well following the standards and best practices. Rule of thumb is that if something is going wrong, it's not the fault of pfSense.

    Any packet dumps of what the traffic is and how much?

Log in to reply