In my search for the perfect site-to-site setup for me, I am experimenting with a remote VPS with psSense.
I have three separate pfSense installs at three different locations I want to connect with eachother via site-to-site OpenVPN. The VPS is the server, the other two are clients. I use SSL/TLS.
I have setup the IPv4 part and it works great. Every install gets his own IP and via client specific overrides I gave them a fixed ip in the 10.0.5.0 zero range. Works like a charm.
Now I want to setup IPv6 between the installs, so I went to the serversettings and I added an IPv6 tunnelnetwork: fdef:830b:a6d6:f085::/64. But now I see that all the installs get the same IPv6 address, ending on ::1000.
Is there something I miss here?
Thanks in advance!
Not sure this helps, but “MOST” privacy vpn setups don’t use IPv6.
The following explanation is from PIA:
"This has led websites that support IPv6 to adapt to a dual-tiered approach. When connected to an address that only supports IPv4, they will serve up an IPv4 address, but when connected from an address that supports IPv6, they will serve up an IPv6 address.
Unfortunately, most VPN software fails to direct IPv6 traffic through the VPN tunnel, so when you connect to an IPv6 enabled website, your browser will make an IPv6 DNS request outside the VPN, which is therefore handled by your ISP.
Private Internet Access offers IPv6 Leak Protection by automatically disabling IPv6 traffic while connected to the VPN. This ensures that no IPv6 traffic leaks out over your standard Internet connection when you are connected to the VPN. This includes 6to4 and Teredo tunneled IPv6 traffic. This will not block IPv6 on Windows XP if you have manually enabled it.
To protect our users from any compromises in their privacy and security, we have made it so that the new client (v1.0 and up) has IPv6 Leak Protection enabled by default and removed the option to disable it. "
Thanks for your reply!
I am not trying to setup a privacy VPN, but I am trying to setup a site-to-site connection between three pfSense installs I own myself. I want to tunnel traffic between them via a v4 and a v6 tunnel.