Bug #15096: Interface subnet aliases do not contain IPv6 VIPs - pfSense - pfSense bugtracker

Custom queries

2.4.5-p1 - Resolved/Closed
2.5.0 - Resolved/Closed
2.5.1 - Resolved/Closed
2.5.2 - Resolved/Closed
2.6.0 - Resolved/Closed
2.7.0 - Resolved/Closed
2.7.1 - All Open Issues
2.7.1 - Resolved/Closed
2.7.2 - Resolved/Closed
2.8.0 - All Open Bugs
2.8.0 - All Open Features
2.8.0 - All Open Issues
2.8.0 - All Open Regressions
2.8.0 - Feedback
2.8.0 - Needs Attention
2.8.0 - New/Confirmed
2.8.0 - Pull Requests
2.8.0 - Regressions affecting 2.7.0
2.8.0 - Resolved/Closed
21.02.2/2.5.1 - Resolved/Closed
21.05 Plus - All Closed Issues
21.05.1 Plus Target - All Closed Issues
21.05.1 Target - All Closed Issues
22.01 Plus - All Closed Issues
22.01 Target - All Closed Issues
22.05 Plus - All Closed Issues
22.05 Target - All Closed Issues
23.01 Plus - All Closed Issues
23.01 Target - All Closed Issues
23.05 Plus - All Closed Issues
23.05 Target - All Closed Issues
23.05.1 Plus - All Closed Issues
23.05.1 Target - All Closed Issues
23.09 Plus - All Closed Issues
23.09 Target - All Closed Issues
23.09.1 Plus - All Closed Issues
23.09.1 Target - All Closed Issues
24.03 Plus - All Closed Issues
24.03 Target - All Closed Issues
24.07 Plus - All Closed Issues
24.07 Plus - All Open Issues
24.07 Plus - Feedback Issues
24.07 Plus - Needs Attention/Work
24.07 Plus - New/Confirmed/In Progress Issues
24.07 Plus - Pull Request Review
24.07 Plus - Waiting on Merge
24.07 Target - All Closed Issues
24.07 Target - All Open Issues
All Open Issues assigned to Me
All Open Pull Requests
Any Target - All Open Regressions
Any Target - Feedback Issues
CE-Next - All Closed Issues (Move to specific target)
CE-Next - All Open Issues
CE-Next - Feedback (Likely needs target changed)
New Issues by Category - Future Target
New Issues by Category - No Target
New Issues by Category - No Target+Future
No Target - All Open Issues (Base Only)
No Target - New Issues (Base Only)
No Target - New Issues (Base and Packages)
Release Notes - Plus Target Version (DO NOT EDIT)
Release Notes - Target Version (DO NOT EDIT)

Actions

Copy link

Bug #15096

closed

Interface subnet aliases do not contain IPv6 VIPs

Added by Bob Dig 5 months ago. Updated 3 months ago.

Status:

Resolved

Priority:

Normal

Assignee:

Marcos M

Category:

Aliases / Tables

Target version:

2.8.0

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

24.03

Release Notes:

Default

Affected Version:

2.7.2

Affected Architecture:

Description

While the tables NETWORK not reflecting any IPv6 ULA as VIP at all, an ULA IPv6 connection from LAN is working while a connection from other Subnets isn't working as long as there is a rule with subnets as source. It is working with source any with every subnet, not only LAN.
Also see this forum post.
https://forum.netgate.com/topic/184867/ula-routing-broke-after-2-7-2-update/2?=1702635139798

CE and Plus are affected.

Files

clipboard-202312152349-amahq.png (41.9 KB) clipboard-202312152349-amahq.png

Lev Prokofev, 12/15/2023 04:49 PM

History
Notes
Property changes
Associated revisions

Actions

Copy link

Updated by JohnPoz _ 5 months ago

I just looked, created gua and ula on one of my interfaces - and while the gua is shown, the ula is missing.

I created a IPv4 vip on the same interface the ula is on, and the IPv4 is shown, the gua IPv6 is shown, but not the ula.

Actions

Copy link

Updated by gwab ber 5 months ago

I fixed it temporarely by adding separate allow rule for the ULA.

Actions

Copy link

Updated by Marcos M 5 months ago

Project changed from pfSense Plus to pfSense
Subject changed from built-in subnets not containing ULA IPv6 VIP to Interface subnet aliases do not contain IPv6 VIPs
Category changed from Aliases / Tables to Aliases / Tables
Status changed from New to Feedback
Assignee set to Marcos M
Target version set to 2.8.0
Affected Plus Version deleted (~~23.09~~)
Plus Target Version set to 24.03
Affected Version set to 2.7.2

Fixed in commit 1c4ca20d3d5910f126f11221f23e1fa21197f225.

Actions

Copy link

Updated by Marcos M 5 months ago

% Done changed from 0 to 100

Applied in changeset 1c4ca20d3d5910f126f11221f23e1fa21197f225.

Actions

Copy link

Updated by Lev Prokofev 5 months ago

File clipboard-202312152349-amahq.png clipboard-202312152349-amahq.png added

Patch is woring, table now contain the IPV6 alias IP
tested on

23.09.1-RELEASE (amd64)
built on Wed Dec 6 23:22:00 MSK 2023
FreeBSD 14.0-CURRENT

Actions

Copy link

Updated by Bob Dig 5 months ago

Patch working great, thanks.

Actions

Copy link

Updated by gwab ber 5 months ago

Works like a charm! cheers!

Actions

Copy link

Updated by Marcos M 5 months ago

Status changed from Feedback to Resolved

Actions

Copy link

Updated by Bob Dig 3 months ago

Turns out the patch is only working momentarily. It will prevent you from enabling IPv6 GUA (tested via Track Interface) on another interface.
First you have to disable the patch, turn IPv6 on on another interface, as desired, and then re-enable the patch (for ULA).

Actions

Copy link

#10