OpenVPN does not add IPv6 prefix to unbound DNS resolver
I added a private local IPv6 network (fd32:..../64) on the OpenVPN server setup. The idea was to avoid any real IP and simply have an internal network to mirror the 172.16 network on the IPv4 VPN. A DNS server on the OpenVPN setup included the IPv6 address of pfSense.
Whenever I do a DNS query, I was getting query refused on the IPv6 address.
It appears /var/unbound/access_lists.conf did not contain the IPv6 tunnel network the way IPv4 did.
This should be added automatically to allow resolution over the IPv6 addresses via
access-control: fd34:.../64 allow
for any network included in the IPv6 Tunnel Network for OpenVPN.
Updated by Viktor Gurov over 3 years ago
- Status changed from Feedback to Resolved
tested on 2.5.0.a.20200423.1513
works as expected - adds IPsec Mobile Virtual IPv6 Address Pool and OpenVPN IPv6 Tunnel Networks to /var/unbound/access_lists.conf, but (other issue), only after restarting DNS Resolver