Radvd will not function with IPv6 Prefix delegation other than 64 on WAN
Radvd functions properly when LAN interface is set as tracking to WAN and WAN is set to DHCP6 with a prefix delegation size is 64. When the prefix delegation size is set to a value such as 62 or 60 radvd is completely missing from the status->services page. Additionally, the only IPv6 address present on the LAN interface is fe80::1:1. Toggling "Send IPv6 prefix hint" (plus saving and applying) has no impact on the absence of radvd. I verified my findings on a clean 2.1 i386 instal with a stock configuration with no changes other than those which pertain to IPv6 on the WAN interface. Restarting the box after changing the prefix delegation to 60 changes nothing. Changing the prefix delegation back to 64 restores radvd and IPv6 connectivity on the LAN interface, even without restarting the box. My ISP is Comcast and /60 delegations are available in my area, verified by a Cisco 1841 router.
#3 Updated by Alex Fox over 5 years ago
- File vlans_interfaces_P64.xml vlans_interfaces_P64.xml added
- File radvd_P64.conf radvd_P64.conf added
- File radvd_P60.conf radvd_P60.conf added
- File vlans_interfaces_P60.xml vlans_interfaces_P60.xml added
I am too busy to pull the files from a completely stock setup but I was able to pull them from a clean 2.1 install with my custom (restored) config on it.
#7 Updated by Michael Virgilio over 4 years ago
Just wanted to add a comment here... it's possible that this is not a pfSense bug. DHCPv6+PD leases a prefix of the requested size based on the DUID. So if the client requests a /64 prefix first, then it will not be able to get a /60 until the first /64 lease has expired, or if the ISP deletes the lease for that DUID. This is why the user cannot obtain a /60 after a /64 was requested first by the same host (Comcast's default expiration time is one week).
I also have Comcast and had my IPv6 settings set to request a /60 from the start. This not only worked just fine, I've also used the additional subnets without any problems.
A workaround for the issue of waiting for the lease to expire would be to allow changing the DUID, as mentioned in feature 3971, so that the ISP sees a new DUID and can allocate a new prefix of the desired size.