Bug #9815
closed
IPv6 policy routing selects wrong interface
0%
Description
I've a rather complex setup with multiple interfaces - some of them have an IPv6 Address and some also have an IPv6 Gateway. I added a policy route (firewall rule) which forces icmp packets from LAN to a single host over the gateway of the last interface (OPT8GWv6), but the state monitor showed a state for the 4th interface (WAN1) which doesn't even have an IPv6 Address or Gateway assigned.
I've attached the stripped and anonymized part of my config.
Files
Updated by Jim Pingle over 4 years ago
- Status changed from New to Not a Bug
Not enough evidence that there is a bug here. This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the Netgate Forum or the pfSense Subreddit .
See Reporting Issues with pfSense Software for more information.
Updated by Bianco Veigel over 4 years ago
output of pfctl -sa | grep 2001:bbbb:bbbb:bbbb::1
pass in quick on em1.1 route-to (em0 2a00:zzzz:zzzz:zzzz::1) inet6 proto ipv6-icmp from any to 2001:bbbb:bbbb:bbbb::1 keep state label "USER_RULE"
The IPv6 Address 2a00... belongs to opt8/l2tp1 and not to WAN1/em0