NDP not populating for Android devices on pfSense - no ipv6 access

  • Hello,

    I have a working network based around pfSense with several interfaces, VPNs and all work with ipv6 immediately excepting the guest network that only works immediately with a Windows 10 client. Android devices do not work across ipv6 until pinging the pfSense interface ipv6 address and then full ipv6 access is enabled then will stop working after some time until the pfSense interface ipv6 address is pinged again.

    While the Android devices are online via ipv6, consoling into the pfsense box and clearing the ndp table will immediately break access for the device until the interface ipv6 address is pinged again.

    How can this be resolved? Additionally the guest network was handled by a vlan on the same bonded LAN interface but now is handled by a dedicated port on the same intel quad port nic with the switch now handling the vlan tagging before heading out to the AP. Also of mention is that none of the other networks (LAN, ipsec VPN, two different openvpn networks) are vlan tagged. If I add an ipv6 address to the vlan on the switch, the android devices can ping that as well but pinging that does not enable full ipv6 connectivity.

  • Well, one configuration item differed on the APs vs the other SSIDs/Networks which was 'Multicast Enhancement'. Once enabled for the guest SSID the issue was resolved.

  • @qsystems

    Multicasts are used a lot with IPv6 and your network won't work properly without them.

  • @qsystems If you are using Unifi APs (Multicast Enhancement, rings bell for those) make sure you have the latest firmware loaded, they have had some issues with multicast recently and supposedly corrected with newer firmware.

Log in to reply