IPSec with public routable IPv6
-
Hello everyone,
I'm trying to setup IPSec for my mobile devices including IPv6 connectivity.
IPSec is working fine and also IPv6 is working, when using fd00:1:1:2::/64 as virtual address pool (==> ULA).
But this kind of IPv6 address is not really helpful, because it's obviously not public routable. Setting address pool to a public prefix is also not an option, as my provider chose (unfortunately) to hand out dynamically assigned prefixes.
So basically I'd need some kind of feature like the "track WAN interface" functionality of the interfaces (e.g. for VLAN config).So the question is: Can I handout public routable IPv6 addresses to the IPSec-clients considering that I don't have a static IPv6 prefix?
(To answer the one question, that always comes up ;) : No, I don't have a hard requirement for IPv6, but like it and for some use cases it makes my life easier -> if possible, I'd like to use IPv6 for IPSec)
Thank you!