Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DHCP6 Serves Prefix Outside the Interface's Prefix

    Scheduled Pinned Locked Moved IPv6
    2 Posts 2 Posters 293 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shamrock
      last edited by

      My DHCP6 server's "Primary Address Pool" defaults to being outside the prefix of the corresponding LAN interface.

      I can find no mechanism by which to change that:

      IPv6 LAN Interface.png
      DHCP6 Address Pool.png
      What am I missing?
      I tried:

      • Changed the /56 prefix length to /60 and /64.
        This updates the prefix length shown by the DHCP6 server, but has no influence on the numbers in the prefix. (I have a /48)
      • Change the value of the prefix using a different /56 subnet than the subnet ending in *:246:246. The DHCP6 prefix numbers do not change.
      • Tried both the ISC and Kea servers.
      • Performed countless reboots.
        I also note that the string "246:240" is nowhere to be found in config.xml. Presumably because the DHCP6 server is supposed to obtain the prefix from the values entered for the Interface.
        In case you are wondering why I set the LAN prefix to /56, I am planning to offer both individual IPv6 address out of that address space as well as /60s via prefix delegation. /56 was the next size up.

      I am out of ideas what else to try. Suggestions are appreciated!
      Thanks,

      • Lucky
      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @shamrock
        last edited by johnpoz

        @shamrock for starters why would you ever put a /56 on an interface? /64 is the only thing that should be on an interface. Maybe a /128 in some circumstances.. But an interface on a device/router/firewall etc.. should and would only be /64

        You can use other larger prefixes in say a firewall rule or route.. Or a delegation to some downstream device that will break up that larger prefix..

        2nd - that is the correct /56.. it would run from..

        fd00:fd00:246:200:: - fd00:fd00:246:2ff:fff:ffff:ffff:ffff

        A prefix is going to start on specific net break, if you put an address that is in the middle of the network, that doesn't change the network address.

        Its easier to read with IPv4 as example..

        Lets say you are using a 192.168.0.0/22

        This range is 192.168.0.0- 192.168.3.255

        If You put an address of say 192.168.2.1/22 on your interface.. The network that is on is still 192.168.0.0- 192.168.3.255

        If you used 192.168.1.1, or 192.168.1.254 or 192.168.3.254 or 192.168.2.27, etc.. the network is still that 192.168.0/22 that runs from 192.168.0.0 to 192.168.3.255, does not matter where in that space the address you put on the interface lands.

        A prefix or netblock/network is always going to start and end at specific addresses.. Just because you put an IP that is in that range on the interface, doesn't change the the network boundaries

        If you wanted to use 246:246, that would be like the 71st subnet out of your /56

        fd00:fd00:246:246::/64
        fd00:fd00:246:246:0000:0000:0000:0000-fd00:fd00:246:246:ffff:ffff:ffff:ffff

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.