Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to control access using ipv6?

    Scheduled Pinned Locked Moved IPv6
    4 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jmaurin
      last edited by

      Hi!
      In ipv4, I'm using NAT to isolate my LAB using invalid ip range and control internet access for some clients (captive portal). Since with IPv¨clients get valid ipv6 and direct internet access, how do I control these access? How should I split my networks for LAN and WAN? I mean, should I use one /64 for each? Then the default GW of LAN should be IP of my pfsense? And if client just change default GW?

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        The same way you do with IPv4, via firewall rules. NAT doesn't control what can get where in v4 either (though I guess the lack thereof could, that's not the right way to do it), firewall rules do.

        1 Reply Last reply Reply Quote 0
        • awebsterA
          awebster
          last edited by

          jmaurin points out that he was thinking of using captive portal.  Last I'd tried, it didn't work with IPv6.  Is this fixed (or on the roadmap to be fixed) in 2.3 or later?

          –A.

          1 Reply Last reply Reply Quote 0
          • C
            cmb
            last edited by

            Captive portal blocks all IPv6 at this time. No immediate plans to add support for it.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.