Rule matching with "WAN address" for IPv6 is broken?

bkraptor · Sep 6, 2013, 1:40 PM

I have an inbound rule for IPv6 with destination selected as "WAN address" and protocol IPv6 from the drop-down lists. The traffic destined to the WAN IPv6 address is not matched by the rule and gets discarded by the default deny rule. When I replace the destination with "any", the traffic is not discarded any more.

2.1-RC2 (amd64)
built on Thu Sep 5 21:38:32 EDT 2013

IPv4 is PPPoE, IPv6 is via DHCPv6, with "Use IPv4 connectivity as parent interface" checked.

Another, possibly related, issue is that the IPv6 address is not listed under the WAN interface in Status -> Interfaces, nor in the text console menu, although it can be seen via ifconfig on the pppoe1 interface.

jimp · Sep 6, 2013, 5:02 PM

Your last note may be correct there, if it can't determine the IP for that it may not know it for use in firewall rules.

I ran a test here with a static config and it does properly form the expected rule.