Configuring radvd when using ULA with NPT?
-
@ianc1215 said in Configuring radvd when using ULA with NPT?:
@bob-dig I upgraded to pfSense Plus, it supports dynamic prefixes.
Good for you... then do what I have said and look if this is working for you.
-
@bob-dig Ok, so I assign a Virtual IP to each interface I want a ULA on? How would I get radvd to advertise the ULA prefix but not the GUA prefix?
-
@ianc1215 I don't think you can do that, you will have both.
-
@bob-dig I assume there is no way to override radvd's config file without breaking the way pfSense configures it?
-
@ianc1215 I don't know.
If you look at the NPt-dialog, you can see that it makes more sense if you don't put that GUA-prefix on the same interface to begin with because it is "applied" at the WAN-Interface. This also means you could have two WANs with separate prefixes and the routing would dictate which GUA-prefix would be used by NPt.
So I guess the best way to do it at present is to create VLANs for every GUA-prefix and don't use them for anything other than the NPt-dialog.
In the future I would like to see that integrated there without setting up those VLANs. -
You can have both GUA and ULA on your network. Then you can use the ULA in your DNS.
-
You advertise both for local devices and use the ULA for your DNS.
-
@jknott Oh! Never looked at it that way. So in a sort of analogy its like split tunneling with a vpn. GUA would be used for non-local traffic bound for beyond the WAN interface but the ULA would be used for local resources and local name resolution?
-
Yes. People have to stop thinking about the way they did things with IPv4. With IPv6, you can have multiple GUA and ULA on the same interface. Some people also use ULA because they don't get a stable prefix from their ISP, which makes it difficult to use DNS. With ULA, it works fine.
-
@jknott Well I just learned something new today, thanks!