IPv6 ACLs not working

IPv6 ACLs not working

IPv6 ACLs not working
IPv6 ACLs not working
3 weeks ago - last edited 2 weeks ago
Model: ER707-M2  
Hardware Version: V1
Firmware Version: 1.2.3

Hi,

 

I want to be able to reach a service on a server through IPv6.

The server is connected to a TL-SG3428MP v4.0 which is connected to an ER707-M2.

 

With no ACL configured I can reach it (and all other services).

I want to limit to exaclty one port and one IPv6.

 

On Gateway ACL Level neither IPv6 Group nor IPv6-Port Group are working. Both are just ignored.

 

On Switch ACL Level I can block the communication / accessibility in general through IPv6, but the Permit IPv6-Port Group Rule (which is before the Deny rule) is not hit. It is going straight to Deny.

It does not matter if I set an IPv6 within the IPv6-Port Group or just a port. It is being ignored.

 

 

  0      
  0      
#1
Options
4 Reply
Re:IPv6 ACLs not working
2 weeks ago

Hi @bsz 

Thanks for posting in our business forum.

If you could post screenshots of your config, that'd be helpful.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#2
Options
Re:IPv6 ACLs not working
2 weeks ago - last edited 2 weeks ago

  @Clive_A 

 

Gateway ACL.

I tried to deny Ports and IPs, but traffice goes through, even Permit Rules are disabled.

 

 

Switch ACL.

Deny works, but Permit not

 

 

Permit Rule Port (same for Gateway and Switch)

 

truenas IP = Plex IP 

 

 

  0  
  0  
#3
Options
Re:IPv6 ACLs not working
2 weeks ago

Hi @bsz 

bsz wrote

  @Clive_A 

 

Gateway ACL.

I tried to deny Ports and IPs, but traffice goes through, even Permit Rules are disabled.

 

 

 

Switch ACL.

Deny works, but Permit not

 

 

 

Permit Rule Port (same for Gateway and Switch)

 

 

truenas IP = Plex IP 

 

 

Require the following information:

WAN and LAN IPv6 details, screenshots. You can mosaic the last part of your v6 address.

Is it under the Passthrough mode?

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#4
Options
Re:IPv6 ACLs not working
2 weeks ago - last edited a week ago

  @Clive_A sure!

 

 

LAN 

 

  0  
  0  
#5
Options