I am unable to get IPv6 address on LAN.
-
I am getting an IPv6 address on WAN by my ISP (T-Mobile), but nothing on LAN. IPv6 Configuration Type on LAN is set to "track interface". Both WAN_DHCP and WAN_DHCP6 gateways are online, no package loss (if that matters). Multiple reboots of the mobile modem and the SG-5100 have made no difference.
-
IPv6 isn't like IPv4.
When using IPv6 on your WAN, pfSense can use what look like the DHCPv4 client process : dhcp6c can get a IPv6 for your WAN.
But it needs another thing to also from your ISP : a prefix.You want answer ? Ask them ....
and from now on look at the page with answers : here is mine :
see the last line : my dhcp6c got a prefix, and its that prefix that is mapped using IPv6 Tracking on my LAN.
You (the dhpc6c process) can ask for more the one prefix.
You can select on each of your LAN interface which one you want to use for which LAN interface :Here is mine :
So I get just 'one' prefix from upstream (that that sucks) so I can select 0 from 0.
As soon as things start to work, activate the DHCP6 SERVER on your LANB and assign a pool out of the prefix.
And visit Services > Router Advertisement > for your LAN interface and select whatever you want ... I used 'Managed' as I like pfSense to manage things for me ^^ -
@Gertjan
Thank you!
Unfortunately, I don't think I got a prefix -
I did see this message quite a few times:code_text ```INFO [kea-dhcp6.dhcp6.0x8784ce12000] DHCP6_CONFIG_COMPLETE DHCPv6 server has completed configuration: no IPv6 subnets!; DDNS: disabled``` code_textAlso this:
code_text ```WARN [kea-dhcp6.dhcpsrv.0x8784ce12000] DHCPSRV_NO_SOCKETS_OPEN no interface configured to listen to DHCP traffic``` code_text -
Does your ISP provide prefix delegation over the cell network? I'm assuming a cell network since you said T-Mobile?
-
@JKnott
I haven't spoken to them directly yet, but I found this on their forum:
"T-mobile does not offer IPv6 Prefix Delegation (comcast has it, att fiber does too)."
So it doesn't look good.
Yes, it is wireless. Took me forever to find a way to get just a SIM card from them, which I can use in my own router. They really insist on you using their crappy gateway. -
It's the same with my cell company. I don't know of any technical reason why they couldn't. Perhaps when more businesses move fully to IPv6 and want a fallback that properly supports it. The proper way for a backup connection is to use routing protocols to advertise the network address, so that any connection will work. What has been common practice is to use private addresses & NAT, which makes the outside address irrelevant. I have set up many businesses that way. It's just bad practice building on bad practice, necessitated by the IPv4 address shortage.
PfSense running on Qotom mini PC
i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
UniFi AC-Lite access pointI haven't lost my mind. It's around here...somewhere...
-
@JKnott said in I am unable to get IPv6 address on LAN.:
It's the same with my cell company. I don't know of any technical reason why they couldn't. Perhaps when more businesses move fully to IPv6 and...
Right away : a cell company for me is : those 3G/4G/5G 50++ feet high iron antennas everywhere, who allow my cell phone to do calls, and receive messages, and it also carries a data connection which allows my phone to connect to the internet.
Right ?All these portable devices were never meant to be 'portable routers firewall devices', but IPv4 was used so .... using some NAT tricks etc and a 4G/5G IPv4 router is easily created. There was a market for them, as not everybody had cable/POTS (to carry A/VDSL) nearby. For the cell company point of view, it's just a 'cell device' that actually is a router, so it 'hides' all other devices on its LAN.
Now IPv6 : the cell company hands out over also an IPv6 - just like the 'one IPv4' . Just one /128, and the device is happy, it can now use whatever is available using IPv6. For my phone : great. For a router : wrong.
But I get it, they should also hand over 'entire /64 networks' for cell devices that are not phones, but actually real routers / firewalls.
The thing is, what I make of it, cell companies do 'IPv6' "because they have to". But they implemented it only half way ... so most really don't accept IPv6 ready router connections.
As with ISPs, you have to pick yours - if possible.
Most often : you have to pick the less worse one.
But do make your list first : what do you want that they offer you ? "price" is just one minor aspect. Speed might be another one. But don't stop there.
And you still have to deal with a non exiting IPv6, or even worse, plain bad 'IPv6' implementation. -
@Gertjan said in I am unable to get IPv6 address on LAN.:
Right away : a cell company for me is : those 3G/4G/5G 50++ feet high iron antennas everywhere, who allow my cell phone to do calls, and receive messages, and it also carries a data connection which allows my phone to connect to the internet.
Right ?All these portable devices were never meant to be 'portable routers firewall devices', but IPv4 was used so .... using some NAT tricks etc and a 4G/5G IPv4 router is easily created. There was a market for them, as not everybody had cable/POTS (to carry A/VDSL) nearby. For the cell company point of view, it's just a 'cell device' that actually is a router, so it 'hides' all other devices on its LAN.
Starting with 4G, the cell network was being used to provide connections to office networks, usually for fallback. Now with 5G, that's being promoted much more and also as the only connection. 5G goes far beyond just providing phone calls. One thing it supports is network slicing where the cell network supports multiple virtual networks, sort of like VLANs for the cell network. These slices can be customized to support different services. For example, there could be one for emergency responders that has higher priority than regular cell users. There could be a low bandwidth slice for utility meters and so on.
With my cell phone, I get a /64 prefix and tethered devices get an IPv6 address, but pfSense can't provide IPv6 address to LAN devices.
-
@JKnott
@Gertjan
I used to have cable (Xfinity), but got rid of it as it was a potential surge path (nothing is properly grounded here), I am able to get AT&T fiber, but their insistence on you using their gateway put me off. Maybe if I find a way to use my own fiber modem (if that is the proper term) fiber would be the way to go.
As for now, it seems like I am out of luck, though : )
Thank you, appreciate the input!
