Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 41 subscribers
  • Views 1652 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPv6 traffic isn't shown in firewall log

KennethHolmqvist

I have enabled IPv6 on my XG v.18 and the connectivity seems fine. I can ping the host over IPv6 without issues and the firewall rule for that works as expected, but I can't access port 80 on host. I have created a firewall rule, but the traffic never shows in the firewall log. I do however see the traffic is dropped when a packet capture is done.. Does any of you have any suggestions?

As a note i can access ipv6.google.com from the the host I'm trying to access so IPv6 connectivity seems to be working as expected.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to KingChris

    Hi Chris and Ian.

    I haven't created any NAT rules.. To my understanding idea behind IPv6 is to solve the address exhaustion of IPv4 and be all about routing. And therefor make NAT obsolete

    Have I got something wrong here?

    Sophos UTM 9.3 Certified Engineer
    Sophos UTM 9.3 Certified Architect
    Sophos XG v.15 Certified Engineer
    Sophos XG v.17 Certified Engineer
    Sophos XG v.17 Certified Architect

  • 0 in reply to KennethHolmqvist

    Hi Kenneth,

    as I posted the current version of XG IPv6 requires a NAT.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to KingChris

    KingChris said:

    Hi  

    Have you created a NAT rule for the incoming traffic?  Did you go through the DNAT rule wizard?

    Thanks! 

     

    Thanks it actually did the trick. I ended up using the IPv6 address for both internal server and external address.. Will this behavior be fixed in the future? A plain and simple firewall rule should be enough

    Sophos UTM 9.3 Certified Engineer
    Sophos UTM 9.3 Certified Architect
    Sophos XG v.15 Certified Engineer
    Sophos XG v.17 Certified Engineer
    Sophos XG v.17 Certified Architect

  • 0 in reply to KennethHolmqvist

    Unsubstantiated rumour has all IPv6 users hoping this will be the year?

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML