Hi All
Router: RT-AC88U, Firmware: Merlin 384.9
I am running into an issue with IPV6 and vpn client. Followed the following guide to setup my router.
My policy rules (strict) are setup to send 192.168.1.0/24 to VPN.
When i have ipv6 setup as native. VPN client is up and running but none of my clients end up going through the vpn. I used am.i.mullvad.net to determine if i was conncted. It showed an ipv6 IP as the ip connected on the page. Do the policy rules have to change for ipv6?
If i change ipv6 setup to passthrough all clients do end up going through vpn. The page above shows client is connected to vpn and ipv4 ip shows up on that page.
So i am not sure what is the correct/appropriate setup for ipv6. For now i have disabled ipv6 completely.
Here is my vpn client conf
Any suggestions/recommendations on how should ipv6 native + vpn client work?
Router: RT-AC88U, Firmware: Merlin 384.9
I am running into an issue with IPV6 and vpn client. Followed the following guide to setup my router.
My policy rules (strict) are setup to send 192.168.1.0/24 to VPN.
When i have ipv6 setup as native. VPN client is up and running but none of my clients end up going through the vpn. I used am.i.mullvad.net to determine if i was conncted. It showed an ipv6 IP as the ip connected on the page. Do the policy rules have to change for ipv6?
If i change ipv6 setup to passthrough all clients do end up going through vpn. The page above shows client is connected to vpn and ipv4 ip shows up on that page.
So i am not sure what is the correct/appropriate setup for ipv6. For now i have disabled ipv6 completely.
Here is my vpn client conf
Code:
client
dev tun
proto udp
remote us-ca.mullvad.net 1196
cipher AES-256-CBC
resolv-retry infinite
nobind
persist-key
persist-tun
verb 3
remote-cert-tls server
ping 10
ping-restart 60
sndbuf 524288
rcvbuf 524288
fast-io
auth-user-pass
reneg-sec 0
tun-ipv6
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA
Any suggestions/recommendations on how should ipv6 native + vpn client work?