This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

networking setup

I am needing to setup IPV6 inside my network.  My wan is a dynamic ip provided by comcast.  The thing i cannot get working is how to setup IPV6 inside my network so that UTM will route things correctly?  Honestly I could probably go ipv6 only internally but then would i loose access to ipv4 externally?  All in all I am a total newb when it comes to ipv6 with UTM..:)



This thread was automatically locked due to age.
Parents
  • Does UTM treat ipv6 like ipv4?  is it a NAT by default so we setup an internal private ipv6 subnet and masq it out like ipv4? 

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • the short answer is yes.  I setup ipv6 using the internal range set forth.  It would be nice if UTM would do DHCP by using the prefix given by the Wan provider via IPV6 and then it could do auto renumbering on both sides.  Then NAT really isn't needed.  Considering that UTM is deny by default this would actually simplify setup.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

Reply
  • the short answer is yes.  I setup ipv6 using the internal range set forth.  It would be nice if UTM would do DHCP by using the prefix given by the Wan provider via IPV6 and then it could do auto renumbering on both sides.  Then NAT really isn't needed.  Considering that UTM is deny by default this would actually simplify setup.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

Children
  • My limited experience shows that the ISP provides an external network connection IPv6 address either a /64 or a /128.

    Then they provide you with a range for use internally eg /60, /56 or /48 depending on ho generous your ISP is.

    My ISP has provided me with a /56 for internal use where as sixxs provided a /48.

    You turn on IPv6 advertisement, put your internal address range in there, the /60 or /56.

    You can create your internal DHCP servers or use stateless addressing.

    If you want control of your internal devices you need to use IPv6 DHCP on each of your internal interfaces as well as ip4.

    You add your IPv6 internal networks to the proxy allowed networks.

    You can create rules that specifically allow IPv6 traffic without being NAT'ed.

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.