On 11/2/24 16:49, Peter Hessler wrote:
> What does the full output of 'slaacctl show interface iwm0', 'ifconfig iwm0',
> and  'netstat -rnf inet6' say?

Disabling the DHCPv6 server in the fritz box seems to do the job. Every device
now gets a working IPv6 configuration using SLAAC. Is there anything special
I need to add to pf.conf(5) to make IPv6 work? Currently IPv6 only works when
pf(4) is disabled. Following script also contains the contents of the current
pf.conf(5) file. Neither the FAQ nor the manpages contain anything special for
IPv6 and I do not see the reason the following pf.conf(5) file will not behave
the same for IPv6 as for IPv4. Any hints highly appreciated.


Script started on Tue Nov  5 09:48:16 2024
x500# pfctl -d
pfctl: pf not enabled
x500# slaacctl show interface iwm0
iwm0:
         index:   2 running: yes temporary: yes
        lladdr: e8:b1:fc:51:73:7c
         inet6: fe80::eab1:fcff:fe51:737c%iwm0
        Router Advertisement from fe80::6b4:feff:fe18:9cab%iwm0
                received: 2024-11-05 09:48:25; 2s ago
                Cur Hop Limit: 255, M: 0, O: 0, Router Lifetime:  1800s
                Default Router Preference: High
                Reachable Time:         0ms, Retrans Timer:         0ms
                MTU: 1492 bytes
                prefix: fd20:3eea:92dd::/64
                        On-link: 1, Autonomous address-configuration: 1
                        vltime:       7200, pltime:       3600
                prefix: 2001:16b8:8170:200::/64
                        On-link: 1, Autonomous address-configuration: 1
                        vltime:       7200, pltime:       3600
                rdns: 2001:16b8:8170:200:6b4:feff:fe18:9cab, lifetime: 1200
                rdns: fd20:3eea:92dd:0:6b4:feff:fe18:9cab, lifetime: 1200
        Address proposals
                id:    5, state: PROPOSAL_CONFIGURED, temporary: y
                vltime:       7200, pltime:       3600, timeout:       3586s
                updated: 2024-11-05 09:48:25; 2s ago
                2001:16b8:8170:200:b1a3:64d1:e5b4:1ebb, 2001:16b8:8170:200::/64
                id:    4, state: PROPOSAL_CONFIGURED, temporary: n
                vltime:       7200, pltime:       3600, timeout:       3586s
                updated: 2024-11-05 09:48:25; 2s ago
                2001:16b8:8170:200:c5e3:8aee:2f6e:407c, 2001:16b8:8170:200::/64
                id:    3, state: PROPOSAL_CONFIGURED, temporary: y
                vltime:       7200, pltime:       3600, timeout:       3586s
                updated: 2024-11-05 09:48:25; 2s ago
                fd20:3eea:92dd:0:f82:3437:a92d:f03e, fd20:3eea:92dd::/64
                id:    2, state: PROPOSAL_CONFIGURED, temporary: n
                vltime:       7200, pltime:       3600, timeout:       3586s
                updated: 2024-11-05 09:48:25; 2s ago
                fd20:3eea:92dd:0:5e46:169e:4173:a36e, fd20:3eea:92dd::/64
        Default router proposals
                id:    1, state: PROPOSAL_CONFIGURED
                router: fe80::6b4:feff:fe18:9cab%iwm0
                router lifetime:       1800
                Preference: High
                updated: 2024-11-05 09:48:25; 2s ago, timeout:       1786s
        rDNS proposals
                id:    6, state: PROPOSAL_CONFIGURED
                router: fe80::6b4:feff:fe18:9cab%iwm0
                rdns lifetime:       1200
                rdns:
                        2001:16b8:8170:200:6b4:feff:fe18:9cab
                        fd20:3eea:92dd:0:6b4:feff:fe18:9cab
                updated: 2024-11-05 09:48:25; 2s ago, timeout:       1186s
x500# ifconfig iwm0
iwm0: 
flags=a48843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,AUTOCONF6TEMP,AUTOCONF6,AUTOCONF4>
 mtu 1492
        lladdr e8:b1:fc:51:73:7c
        index 2 priority 4 llprio 3
        groups: wlan egress
        media: IEEE802.11 autoselect (HT-MCS15 mode 11n)
        status: active
        ieee80211: nwid FLSTR81WHG6DG chan 11 bssid 04:b4:fe:18:9c:ad 82% 
wpakey wpaprotos wpa2 wpaakms psk wpaciphers ccmp wpagroupcipher ccmp
        inet6 fe80::eab1:fcff:fe51:737c%iwm0 prefixlen 64 scopeid 0x2
        inet 10.0.0.115 netmask 0xffff0000 broadcast 10.0.255.255
        inet6 fd20:3eea:92dd:0:5e46:169e:4173:a36e prefixlen 64 autoconf pltime 
3593 vltime 7193
        inet6 fd20:3eea:92dd:0:175c:a176:d0d4:f714 prefixlen 64 autoconf 
temporary pltime 3384 vltime 6984
        inet6 2001:16b8:8170:200:c5e3:8aee:2f6e:407c prefixlen 64 autoconf 
pltime 3593 vltime 7193
        inet6 2001:16b8:8170:200:4a3c:e602:d10b:e61e prefixlen 64 autoconf 
temporary pltime 3384 vltime 6984
        inet6 fd20:3eea:92dd:0:f82:3437:a92d:f03e prefixlen 64 autoconf 
temporary pltime 3593 vltime 7193
        inet6 2001:16b8:8170:200:b1a3:64d1:e5b4:1ebb prefixlen 64 autoconf 
temporary pltime 3593 vltime 7193
x500# cat /etc/pf.conf
#       $OpenBSD: pf.conf,v 1.55 2017/12/03 20:40:04 sthen Exp $
#
# See pf.conf(5) and /etc/examples/pf.conf

set skip on lo

block return    # block stateless traffic
pass            # establish keep-state

# By default, do not permit remote connections to X11
#block return in on ! lo0 proto tcp to port 6000:601
block return in on ! lo0
# Port build user does not need network
block return out log proto {tcp udp} user _pbuild
x500# ^D

Script done on Tue Nov  5 09:48:47 2024

-- 
Christian

Reply via email to