I've followed the advice on this topic: viewtopic.php?t=136994#p674995 and had some "partial success".
Describing my scenario:
2 ISPs connected to my Mikrotik and one LAN.
I'm using bridges for LAN and also each ISP (WAN-1 and WAN-2). Only WAN-2 is working with ipv6.
Code: Select all
RouterOS 6.48.2
/ipv6 dhcp-client
add add-default-route=yes interface=WAN-2 pool-name=wan2-poolv6 rapid-commit=no request=prefix
/ipv6 address
add address=::1 advertise=yes from-pool=wan2-poolv6 interface=LAN
/ipv6 settings print
forward: yes
accept-redirects: yes-if-forwarding-disabled
accept-router-advertisements: yes
max-neighbor-entries: 8192
/ipv6 nd print
Flags: X - disabled, I - invalid, * - default
0 * interface=LAN ra-interval=3m20s-10m ra-delay=3s mtu=unspecified reachable-time=unspecified retransmit-interval=unspecified ra-lifetime=30m
hop-limit=unspecified advertise-mac-address=yes advertise-dns=yes managed-address-configuration=no other-configuration=yes
/ipv6 route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, o - ospf, b - bgp, U - unreachable
# DST-ADDRESS GATEWAY DISTANCE
0 ADS ::/0 fe80::1%WAN-2 1
1 ADC 2804:aaaa:bbbb:f400::/64 LAN 0
2 DSU 2804:aaaa:bbbb:f400::/64 1
/ipv6 firewall filter
add action=accept chain=forward
After some testing, I noticed the following (all ipv6 related):
- My lan devices are able to ping each other
- When I try to ping an outside host, I receive timeout.
- I tried to ping google's dns, and watched the result, using torch on LAN interface, I can see my computer sending the ping packets. If I try to run torch on WAN-2 interface, there is no trace of the ping there.
- I've checked the gateway fe80::1%WAN-2 and it does answer correctly on this interface.
- my ipv6 firewall was empty, just in case, I've added an accept to forward and watched the packet count increase after each ping.
Any ideas of where to look?
Thank you!!