I just got a hEX router and am having a hard time getting things configured correctly when it comes to ipv6. my setup is (Charter Spectrum ISP) > (Cable Modem) > (hEX) > (wired and wireless clients). My goal is for clients to get both a private IPv4 and IPv6 address. So far I have setup an IPv6 client, servers, and pools like so:
[admin@MikroTik] > /ipv6 dhcp-client print
Flags: D - dynamic, X - disabled, I - invalid
# INTERFACE STATUS REQUEST PREFIX ADDRESS
0 ether1-WAN error address 2600:6c5a:6580:16d5::/64, 4d17h20m3s 2600:6c5a:7004:200:4d76:235b:d12f:68d9, 4d17h20m3s
prefix
[admin@MikroTik] > /ipv6 dhcp-server print
Flags: D - dynamic, X - disabled, I - invalid
# NAME INTERFACE ADDRESS-POOL PREFERENCE LEASE-TIME
0 server-lan lan_bridge pool-lan 255 3d
1 server-guest guest-wifi pool-guest 255 3d
[admin@MikroTik] > /ipv6 pool print
Flags: D - dynamic
# NAME PREFIX PREFIX-LENGTH EXPIRES-AFTER
0 pool-lan fd21:72a3:c952:856b::/64 64
1 pool-guest fd16:e708:5d28:e964::/64 64
The client setup was largely based on https://www.netdaily.org/tag/mikrotik-ipv6-home-example/ On the server side, I saw some references online to also needing to setup ND but this was there by default:
[admin@MikroTik] > /ipv6 nd print
Flags: X - disabled, I - invalid, * - default
0 * interface=all ra-interval=3m20s-10m ra-delay=3s mtu=unspecified reachable-time=unspecified retransmit-interval=unspecified ra-lifetime=30m hop-limit=unspecified advertise-mac-address=yes
advertise-dns=no managed-address-configuration=no other-configuration=no
With this in place I do not get an IPv6 address on any of my clients.
Here’s a little more info that might help:
[admin@MikroTik] > /interface print
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE ACTUAL-MTU L2MTU MAX-L2MTU MAC-ADDRESS
0 R ether1-WAN ether 1500 1596 2026 B8:69:F4:91:1C:17
1 RS ether2-master ether 1500 1596 2026 B8:69:F4:91:1C:18
2 RS ether3 ether 1500 1596 2026 B8:69:F4:91:1C:19
3 RS ether4 ether 1500 1596 2026 B8:69:F4:91:1C:1A
4 RS ether5 ether 1500 1596 2026 B8:69:F4:91:1C:1B
5 R guest-wifi vlan 1500 1592 B8:69:F4:91:1C:18
6 R guest_bridge bridge 1500 65535 00:00:00:00:00:00
7 R lan_bridge bridge 1500 1596 B8:69:F4:91:1C:18
[admin@MikroTik] > /interface bridge print
Flags: X - disabled, R - running
0 R name="guest_bridge" mtu=auto actual-mtu=1500 l2mtu=65535 arp=enabled arp-timeout=auto mac-address=00:00:00:00:00:00 protocol-mode=rstp fast-forward=yes priority=0x8000 auto-mac=yes
admin-mac=00:00:00:00:00:00 max-message-age=20s forward-delay=15s transmit-hold-count=6 ageing-time=5m
1 R name="lan_bridge" mtu=auto actual-mtu=1500 l2mtu=1596 arp=enabled arp-timeout=auto mac-address=B8:69:F4:91:1C:18 protocol-mode=rstp fast-forward=yes priority=0x8000 auto-mac=yes
admin-mac=00:00:00:00:00:00 max-message-age=20s forward-delay=15s transmit-hold-count=6 ageing-time=5m
[admin@MikroTik] > /interface vlan print
Flags: X - disabled, R - running, S - slave
# NAME MTU ARP VLAN-ID INTERFACE
0 R guest-wifi 1500 enabled 16 ether2-master
In case it helps, the guest stuff is my take on an isolated network for guests and IoT devices. Its intended that devices on that network can access the internet but not anything on the standard lan or standard wired network.