reaching firewall itself via ipv6
-
@mikev7896 said in reaching firewall itself via ipv6:
On their own routers, they use the "ff" prefix ID and assign a global address from that prefix to the WAN interface (usually ::1).
ff00/8 is a multicast address and certainly not global, which starts with 2 or 3. Perhaps you meant fc or fd, which are unique local addresses and entirely suitable for network management.
PfSense running on Qotom mini PC
i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
UniFi AC-Lite access pointI haven't lost my mind. It's around here...somewhere...
-
@ddbnj said in reaching firewall itself via ipv6:
I didn't want to be wrong again.
I thought I was wrong once, but I was mistaken.
-
@jknott said in reaching firewall itself via ipv6:
@mikev7896 said in reaching firewall itself via ipv6:
On their own routers, they use the "ff" prefix ID and assign a global address from that prefix to the WAN interface (usually ::1).
ff00/8 is a multicast address and certainly not global, which starts with 2 or 3. Perhaps you meant fc or fd, which are unique local addresses and entirely suitable for network management.
I mean that they use prefix ID "ff" out of the /56 that was delegated... that would be xxxx:xxxx:xxxx:xxFF::
-
@ddbnj I'm on FIOS too (NYC) and spent just about the entire week messing around with and learning the ins and outs of Verizon's implementation. There are definitely some sharp edges but I'm pretty happy now with the way things are working.
You might want to check out my helper script to assign a routable IP (GUA) to your WAN from one of the delegated prefix subnets. Link below
