Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Converting to dual stack

    IPv6
    2
    2
    146
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nikmiddleton last edited by

      Hi Guys,

      I'd like to implement a dual stack on our network but I'm a little confused.

      Prior to deploying PFSense, all of our servers sat behind a cisco router. Each server had 2 connections, lan and wan.

      All the servers had static public IP's and their own firewall.

      When we deployed pfsense, we got rid of the wan connection and used port forwarding and alias's to provide the servers with their own external IP's

      We now want to enable our webserver for IP6 as well as IP4. Before the change over we simply put an IP6 address on the wan connection and it worked.

      What I can't figure out is how we would now do this with just the lan connection without exposing the LAN. (we currently have a IP6 /64 allocated)

      At the moment I have setup a gateway on PFSense pointing to the router ::1 and given the wan an ip6 address of ::15

      The web server originally had an address of ::205

      Can some kind soul tell me what I need to do to make this work?

      This is a production environment so I'm a little nervous in just trying to experiment.

      regards

      T 1 Reply Last reply Reply Quote 0
      • T
        teamits @nikmiddleton last edited by

        You could set firewall rules to only allow traffic to the servers' IPv6 addresses, and not allow connections to other PCs.

        You might double check your ISP's router as well...many block inbound IPv6 by default.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense Plus
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy