1. Home
  2. pfSense® Software
  3. IPv6
  4. Automatically generated rules causing issues

Automatically generated rules causing issues

  • M

    I'm trying to use a pfsense firewall as a perimeter firewall where I have both public IPv4 addresses and public IPv6 prefix delegation going into the device. IPv4 is coming into a bridged WAN/Internal interface while IPv6 is coming in a completely separate WAN interface that is not bridged, but instead is performing prefix delegation to 2 other separate interfaces. The issue I have is the automatically generated IPv6 firewall rules are forcing the ICMPv6 router solicitation, advertisement, etc. be allowed on all interfaces. This causes an issue because the default IPv6 prefix is leaking through the IPv4 bridge.

    0 JKnott 1 Reply
  • JKnott

    @MikeAce

    What happens if you make the bridge interface IPv4 only?

    0
  • M

    The bridged interfaces are ipv4 only. the issue is that the automatically generated rules are floating rules so they apply globally

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy