Community discussions

MikroTik App
 
mikehhhhhhh
just joined
Topic Author
Posts: 10
Joined: Tue Apr 27, 2021 10:47 am

Override DHCPv6-PD supplied DNS server

Mon May 10, 2021 1:12 pm

I'm currently getting my v6 delegation from my ISP via PD.

Is it possible to somehow dispense a different DNS server to v6 clients?

Everything I've read seems to suggest that DHCPv6 Server doesn't work / is undesirable? But I haven't touched anything IPv6 since playing with tunnels probably 15-20 years ago.

Here's my current v6 config
[admin@MikroTik] > /ipv6 export
# may/10/2021 11:08:28 by RouterOS 6.48.2
# software id = Y7QR-K6J3
#
# model = RB4011iGS+
# serial number = D4460DEE27EA
/ipv6 address
add from-pool=poolIPv6ppp interface=bridge
/ipv6 dhcp-client
add add-default-route=yes interface=pppoe-out1 pool-name=poolIPv6ppp pool-prefix-length=48 request=prefix
/ipv6 firewall address-list
add address=fe80::/16 list=allowed
add address=2a02:****:****::/48 list=allowed
add address=ff02::/16 comment=multicast list=allowed
/ipv6 firewall filter
add action=accept chain=input comment="DHCPv6 server reply" port=547 protocol=udp
add action=accept chain=input comment="allow established and related" connection-state=established,related
add action=accept chain=input comment="accept ICMPv6" protocol=icmpv6
add action=accept chain=input comment="defconf: accept UDP traceroute" port=33434-33534 protocol=udp
add action=accept chain=input comment="accept DHCPv6-Client prefix delegation." dst-port=546 protocol=udp src-address=fe80::/16
add action=accept chain=input comment="allow allowed addresses" src-address-list=allowed
add action=drop chain=input
add action=accept chain=forward comment=established,related connection-state=established,related
add action=accept chain=forward comment="local network" in-interface-list=LAN src-address-list=allowed
add action=drop chain=input in-interface=pppoe-out1 log=yes log-prefix=dropLL_from_public src-address=fe80::/16
add action=accept chain=forward comment=icmpv6 protocol=icmpv6
add action=drop chain=forward comment=invalid connection-state=invalid log=yes log-prefix=ipv6,invalid
add action=drop chain=forward log-prefix=IPV6
/ipv6 nd
add interface=bridge managed-address-configuration=yes other-configuration=yes
/ipv6 settings
set accept-router-advertisements=yes
 
mikehhhhhhh
just joined
Topic Author
Posts: 10
Joined: Tue Apr 27, 2021 10:47 am

Re: Override DHCPv6-PD supplied DNS server

Mon May 10, 2021 3:25 pm

Ok, it seems I just needed to set some ipv6 DNS resolvers in dns and they are now passed with ra.

I'm curious why it supplies the configured DNS servers instead of caching and supplying the router's IP as it does with v 4.

Who is online

Users browsing this forum: Bing [Bot], johnson73, mhn6868, TeWe and 95 guests