Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPv6 static address using Client Specific Overrides

    Scheduled Pinned Locked Moved OpenVPN
    2 Posts 1 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      thomasb9511
      last edited by

      How do I make it work on my pfsense box?
      Here is my server's ipv6 config:

      
server-ipv6 2001:470:XXXX:fea0::/64
tun-ipv6
push tun-ipv6
#ifconfig-ipv6 2001:470:XXXX:fea0::1 2001:470:XXXX:fea0::2
push "redirect-gateway-ipv6 def1";
push "route-ipv6 2000::/3";
topology subnet;

      Client overrides:

      
ifconfig-push 192.168.2.60 255.255.255.0;
ifconfig-push-ipv6 2001:470:XXXX:fea0::de1/64 2001:470:XXXX:fea0::2;
iroute-ipv6 2001:470:XXXX:fea0::/64;

      When I use these overrides my client gets the correct ipv4(192.168.2.60) but it doesn't get any ipv6 address(should get 2001:470:XXXX:fea0::de1).

      here is the client log:

      
Fri Jul 04 19:33:45 2014 OpenVPN 2.3.4 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Jun  5 2014
Fri Jul 04 19:33:45 2014 library versions: OpenSSL 1.0.1h 5 Jun 2014, LZO 2.05
Enter Management Password:
Fri Jul 04 19:33:53 2014 Control Channel Authentication: using 'pfsense-udp-4636-tbrown-tls.key' as a OpenVPN static key file
Fri Jul 04 19:33:53 2014 UDPv4 link local (bound): [undef]
Fri Jul 04 19:33:53 2014 UDPv4 link remote: [AF_INET]SERVR:4636
Fri Jul 04 19:33:54 2014 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Jul 04 19:33:55 2014 [pfsense.kyper.lo] Peer Connection Initiated with [AF_INET]SERVR:4636
Fri Jul 04 19:34:07 2014 UDPv4 link local (bound): [undef]
Fri Jul 04 19:34:07 2014 UDPv4 link remote: [AF_INET]72.29.61.218:4636
Fri Jul 04 19:34:08 2014 [pfsense.kyper.lo] Peer Connection Initiated with [AF_INET]SERVR:4636
Fri Jul 04 19:34:10 2014 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:6: redirect-gateway-ipv6 (2.3.4)
Fri Jul 04 19:34:10 2014 OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig-ipv6 options
Fri Jul 04 19:34:10 2014 OpenVPN ROUTE: failed to parse/resolve route for host/network: 2000::/3
Fri Jul 04 19:34:10 2014 do_ifconfig, tt->ipv6=1, tt->did_ifconfig_ipv6_setup=0
Fri Jul 04 19:34:10 2014 open_tun, tt->ipv6=1
Fri Jul 04 19:34:10 2014 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{407CE4DB-027E-4558-8AA9-EA7933F29715}.tap
Fri Jul 04 19:34:10 2014 Set TAP-Windows TUN subnet mode network/local/netmask = 192.168.2.0/192.168.2.60/255.255.255.0 [SUCCEEDED]
Fri Jul 04 19:34:10 2014 Notified TAP-Windows driver to set a DHCP IP/netmask of 192.168.2.60/255.255.255.0 on interface {407CE4DB-027E-4558-8AA9-EA7933F29715} [DHCP-serv: 192.168.2.254, lease-time: 31536000]
Fri Jul 04 19:34:10 2014 Successful ARP Flush on interface [14] {407CE4DB-027E-4558-8AA9-EA7933F29715}
Fri Jul 04 19:34:15 2014 Initialization Sequence Completed
      1 Reply Last reply Reply Quote 0
      • T
        thomasb9511
        last edited by

        But if I disable the override my client gets an ipv6 address and everything is golden but I would like to choose the ip of my clients.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.