Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Comcast IPv6 redux

    IPv6
    2
    3
    478
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jhg
      last edited by jhg

      Re: How to setup IPv6 for Comcast or similar ISP?

      Following the instructions in the referenced post caused my pfSense to stop working completely, not even responding to pings on the LAN interface, so clearly the post needs updating. Luckily I was able to revert to a previous working config from the console.

      Google isn't helpful as every "how to set up IPv6 for Comcast" gives different and/or incomplete/conflicting instructions, and on 2.7.2 I don't see some of the specified configuration options (Debug (for DHCPv6), Do not allow PD/Address release).

      Also, even though the firewall receives a routable IPv6 address itself, it doesn't receive any DNS servers from Comcast.

      Is there a canonical update for Comcast IPv6?

      pfSense CE on Beelink EQ12 (N100 CPU, dual 2.5Gbe Intel NICs)
      Hitron CODA56 - Comcast 2.5Gb cable

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @jhg
        last edited by

        @jhg Do you have your own modem or are you NATting through theirs?

        With my own modem (public IP on pfSense) I didn't have to do anything special that I can recall.

        WAN is set to DHCP6. DNS uses pfSense by default unless you add custom ones, so no need to add those. My RA mode is set to Assisted. My IPv4 and IPv6 gateways are set to Automatic. Pretty sure everything else is defaults.

        I have System/General Setup set to use Quad9 DNS and have forwarding enabled but that shouldn't be necessary. Technically IPv6 DNS servers are not necessary as long as DNS is working.

        LAN should have a default IPv6-to-any allow rule.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        J 1 Reply Last reply Reply Quote 0
        • J
          jhg @SteveITS
          last edited by jhg

          @SteveITS I seem to have gotten it to work, but I'm not quite sure how. I'll download the old pre-v6 and current configs and diff them.

          And, BTW I have a modem-only connection (non-Xfinity device) without any routing or NAT. pfSense runs on a Zotac CI323-nano mini-pc.

          pfSense CE on Beelink EQ12 (N100 CPU, dual 2.5Gbe Intel NICs)
          Hitron CODA56 - Comcast 2.5Gb cable

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.