Need Help : Ipv6 Next-hop with Pfsense
-
Hi,
My ISP provide me several /64 :
-
2a01:e35:xxxx:yyy0::/64
-
2a01:e35:xxxx:yyy1::/64
-
2a01:e35:xxxx:yyy2::/64
I want to configure pfense like this :
WAN <==> BOX <=( 2a01:e35:xxxx:yyy0::/64)=> PFSENSE1(Release:2.2.6) <=(2a01:e35:xxxx:yyy1::/64) DMZ=> PFSENSE2 <=(2a01:e35:xxxx:yyy2::/64) LAN=>
On my ISP BOX, I have configured the nex-hop like this :
-
2a01:e35:xxxx:yyy1::/64 = fe80::21f:29ff:yyyy:xxxx
-
2a01:e35:xxxx:yyy2::/64 = fe80::21f:29ff:yyyy:xxxx
With fe80::21f:29ff:yyyy:xxxx the locallink of PFSENSE1 for the WAN
So in my DMZ I can use : 2a01:e35:xxxx:yyy1::/64
Now, I want to be able to have the 2a01:e35:xxxx:yyy2::/64 network on the LAN, but I don't know how to tell PFSENSE1 to send 2a01:e35:xxxx:yyy2::/64 to the PFSENSE2 ?
I have try to put on PFENSE1 a gateway with the link-local of pfsense2 (interface DMZ), and had a static route 2a01:e35:xxxx:yyy2::/64 but this doesn't work.
-
-
@Kal:
My ISP provide me several /64 :
There it goes off the road. You should receive a prefix /62 (or upto /48) on your pfSense's WAN-request…
Then pfSense-LAN's can get an address /64 by Track Interface or Static assignment.(Your ISP-box must delegate-on-request with use of its DHCP6-server, to pfSense)
-
@hda:
(Your ISP-box must delegate-on-request with use of its DHCP6-server, to pfSense)
Not if they're static. They actually seem to be part of some bigger net block anyway.
Just need to add a static route to send it to the other device in that case.