WireGuard interface IPv6 prefixlen
-
I'm trying to set up two WireGuard tunnels. These are the addresses I have been provided:
- 10.72.69.xxx/32,fc00:bbbb:bbbb:bb01::9:xxxx/128
- 10.71.231.xxx/32,fc00:bbbb:bbbb:bb01::8:xxxx/128
I can add the first one fine, but then I get this error when trying to add the second:
The following input errors were detected:
fc00:bbbb:bbbb:bb01::8:xxxx/128 is already configured on this firewall: OPT10 (fc00:bbbb:bbbb:bb01::9:xxxx/64)As the error indicates, the first interface seems to have been assigned a /64 rather than the specified /128. Confirmed with
ifconfig wg0:inet 10.72.69.xxx netmask 0xffffffff inet6 fc00:bbbb:bbbb:bb01::9:xxxx prefixlen 64Am I missing something? This seems like a bug.
-
I dug further into this. It is a bug. When I add the first interface,
/etc/inc/web/wg.incdoes this:/sbin/ifconfig 'wg0' inet6 'fc00:bbbb:bbbb:bb01::9:xxxx' netmask '255.255.255.255'If I apply the attached fix, it does this instead:
/sbin/ifconfig 'wg0' inet6 'fc00:bbbb:bbbb:bb01::9:xxxx' prefixlen '128' -
This post is deleted! -
Ahh a fellow Mullvad user. I had same problem and was going to post this. Are Netgate aware of this bug? I just take a look at bug tracker and it seems nobody posted this there. Tagging mod @dennis_s
-
@nva Thanks for the mention...let me bring this up to our engineers.
-
-
