IPv6 6in4: lan clients can't ping

Following up to How to add 6in4? → The 6in4 tunnel is working. I can ping from the turris omnia easily:

root@turris:~# ping6 hetzner.de
PING hetzner.de(2a01:4f8:0:5176::3) 56 data bytes
64 bytes from 2a01:4f8:0:5176::3: icmp_seq=1 ttl=56 time=22.0 ms
64 bytes from 2a01:4f8:0:5176::3: icmp_seq=2 ttl=56 time=22.2 ms
64 bytes from 2a01:4f8:0:5176::3: icmp_seq=3 ttl=56 time=22.0 ms

Other lan clients also have ipv6 address now, but whenever I try to ping, I get the error “destination unreachable; port unreachable”

root@servi:~# ping6 hetzner.de
PING hetzner.de (2a01:4f8:0:5176::3): 56 data bytes
64 bytes from 2001:470:26:1b4::1: Destination unreachable: Port unreachable
64 bytes from 2001:470:26:1b4::1: Destination unreachable: Port unreachable
64 bytes from 2001:470:26:1b4::1: Destination unreachable: Port unreachable

This happens on linux clients as well as windows clients.

What could the cause be?

It looks to be a firewall problem. How did you set the zones? Do you have the 6in4 tunnel in the WAN zone?

/etc/config/network

config interface 'wan6in4'
        option proto '6in4'
        option mtu '1480'
        option 'peeraddr' '216.66.80.98'
        option 'ip6addr' '2001:470:25:xxx::2/64'
        option 'ip6prefix' '2001:470:26:xxx::/64'
        # The following parameters are only necessary if Turris has a dynamic IPv4 address
        option 'tunnelid' 'xxx'
        option 'username' 'xxx'
        option 'password' 'xxx'

/etc/config/firewall

config rule
        option name 'wan6in4'
        option family 'ipv4'
        option src 'wan'
        option src_ip '216.66.80.98'            #Server IPv4 address
        option proto '41'
        option target 'ACCEPT'

It’s setup like this according to the wiki.

Send a screenshot of the Interfaces tab

It was unspecified interface. I set it now to the WAN zone and ping now works.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.