• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Can't create IPv4+IPv6 Firewall rule with an alias

Scheduled Pinned Locked Moved Firewalling
firewallrulesipv4+ipv6alias
4 Posts 2 Posters 1.4k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • L
    leonroy
    last edited by Jul 18, 2021, 10:31 PM

    I've a URL Table (IPs) Firewall alias of IPv4 and IPv6 addresses. When I try and block access to it in the LAN firewall rules I get the error:

    IPv4 and IPv6 addresses can not be used in rules that apply to both IPv4 and IPv6 (except within an alias).

    The form looks like so:
    d056877a-bf0e-4ad7-9b71-a8666485b643-image.png

    I believe I'm doing it right, any thoughts?

    J 1 Reply Last reply Jul 19, 2021, 10:30 AM Reply Quote 0
    • J
      JeGr LAYER 8 Moderator @leonroy
      last edited by Jul 19, 2021, 10:30 AM

      @leonroy said in Can't create IPv4+IPv6 Firewall rule with an alias:

      I believe I'm doing it right, any thoughts?

      You are using an IPv4 as source so that's why the rule won't work with IPv4/IPv6 - that can' work :)

      Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

      If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

      L 1 Reply Last reply Jul 19, 2021, 7:34 PM Reply Quote 1
      • L
        leonroy @JeGr
        last edited by leonroy Jul 19, 2021, 7:35 PM Jul 19, 2021, 7:34 PM

        @jegr said in Can't create IPv4+IPv6 Firewall rule with an alias:

        You are using an IPv4 as source so that's why the rule won't work with IPv4/IPv6 - that can' work :)

        Thanks following the guide here https://labzilla.io/blog/force-dns-pihole

        Which adds a mixed IPv4 and IPv6 list of IP addresses and blocks access to them on the network.

        Not sure how else to prevent access to a mixed list like that when my homelab environment is all IPv4.

        What I ended up doing was sticking my PiHole IP address in an Alias as well and setting that as the Source alias. Not sure if that's the best way of doing it but it worked...

        3b3a6e69-f42c-4515-8c4c-cbec5e3ae2f2-image.png

        J 1 Reply Last reply Jul 20, 2021, 11:05 AM Reply Quote 0
        • J
          JeGr LAYER 8 Moderator @leonroy
          last edited by Jul 20, 2021, 11:05 AM

          @leonroy said in Can't create IPv4+IPv6 Firewall rule with an alias:

          What I ended up doing was sticking my PiHole IP address in an Alias as well and setting that as the Source alias. Not sure if that's the best way of doing it but it worked...

          If your PiHole should answer IPv6 and work with IPv6 it needs an IPv6 address. Without that makes no sense, then you can simply block all IPv6 alltogether. If your Pi has IPv4 and IPv6 then that's the right way, put both into the alias and use it in rules.

          That said I wouldn't work with invert rules but that's my approach.

          Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

          If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

          1 Reply Last reply Reply Quote 1
          4 out of 4
          • First post
            4/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received