Static IPv6 addresses (last 64bits) with dynamic ISP prefix /56
-
Can anyone please give an EXAMPLE of how to set static ipv6 IP addresses for LAN devices, when you have a dynamic prefix? I'm seeing various posts on this and other forums that say it's possible with pfSense.... but then no one ever tells you HOW or gives an example. The prefix with my isp does not change often, but it does happen with an extended power outage or extended system maintenance, even with DUIDs set, even with "Do not allow PD/address release checked, etc.
I have a /56 from the ISP, how do I set it so that the last 64 bits stay consistent and prefix changes don't kill devices?
Yes, I understand that "stateless" to let devices auto-pick their addresses is the "preferred" way but I need some devices to have consistent addresses for some particular settings and my own sanity. I do not want to have to manually look at the IP info on a device over and over again because, it randomly decided it wants to change its IPv6 address for whatever reason. I don't care if it's "trackable" to keep the same ending 64 bits or anything like that. I am trying to keep the same semblance of order that you have on a privately addressed IPv4 network where all your private address assignments can be memorized, and do as much of the the same as possible with IPv6. It's no big worry to remember the first 56 bits, and deal with an occasional change when you know what the last 64 bits are, because they don't change every time the wind blows.
Do I just put in all zeroes for the first 64 bits of the IPv6 address, or something else? What is the "placeholder value" to use that the system will know to populate with the first half of the address which other than the two characters of the prefix ID that I can set, will also be the ISP's /56?
Thanks for any help!
-
::123 -
@sirsilentbob Hey there,
as mentioned in topics about IPv6 before: do you really need DHCPv6? Keep in mind that i.e. android devices cannot work with dhcpv6 but instead expect SLAAC.
So in case you do not need dhcpv6 use SLAAC, you can set static ULAs as well (that will then work with android devices as well). -
@sirsilentbob said in Static IPv6 addresses (last 64bits) with dynamic ISP prefix /56:
Can anyone please give an EXAMPLE of how to set static ipv6 IP addresses for LAN devices, when you have a dynamic prefix? I'm seeing various posts on this and other forums that say it's possible with pfSense.... but then no one ever tells you HOW or gives an example. The prefix with my isp does not change often, but it does happen with an extended power outage or extended system maintenance, even with DUIDs set, even with "Do not allow PD/address release checked, etc.
You can use Unique Local Addresses to provide stable LAN addresses.
-
@sirsilentbob This is a thing that no one likes to understand here. No chance. As I remember some service from freebsd gives not the right things back so pfsense can not determine the prefix. I don't understand this, because we humans can read the prefix in interface. Use a fritzbox instead.
ULA will not work, it is not reachable from internet. Things about slaac and dhcpv6 have nothing to do with the problem. After devices have a new IPv6 no one knows about and so the device is not reachable from internet.
Still waiting...
(Or I'm missing some things in between?)
-
Have you set Do not allow PD/Address release on the WAN page?
-
@jknott yes, but this is not what we talk about. We need the prefix as an variable value throug all services in pfsense. If the prefix would be always the same, then there is no problem. but it isn't in the real world. sometimes it changes no matter of Do not allow PD/Address release
-
Assuming you want access from elsewhere, how would that help? You still have to allow the outside world to know what the address is.