Das mit dem sich ändernden Prefix habe ich auch bei der Telekom...
Das Äußert sich bei mir wie folgt;
IPV6 läuft gut, bis es zu einer Trennung der DSL Verbindung kommt, bei der ein neues Präfix vergeben wird. Die Clients kommen die neu zusammengebastelte IP zwar per RA mit, aber verwerfen die alte Adresse nicht...
So sammeln die Geräte nicht mehr gültige IP Adressen ab, und versuchen leider auch damit zu Kommunizieren, was dann zu Verbindungsproblem führt...
Nur ein Neustart der Geräte hilft, oder das Zurücksetzen des entsprechenden LAN- Interfaces auf der Firewall...
Der Hersteller schreibt folgendes dazu:
We simulated PD changes from ISP prefix delegation in HQ lab, the issue also can be seen at local lab test.
But this is not USG gateway issue. Here is our lab test procedure.
Topology:
ISP router <----------------> USG-110 <------------------> switch ----------PC1 windows 10 |
----------------PC2 Linux Ubuntu
ISP router: it's lab ISP router. we simulate prefix delegation changed from 2001:b030:7036:5::/64 to 2001:b030:7036:9::/64(from 5 to 9) Those PD are real prefix and can be routed to Internet V6.
USG-110 : 465AAPH1ITS-WK32-2021-03-210900175.bin
PC1 : Windows 10 version 1803
PC2 : Ubuntu 16.04.7 LTS
Test procedure:
1) In the first time, USG110 get PD 2001:b030:7036:5::/64 from ISP router, and delegated to lan sides hosts.
PC1 IP address PD is 2001:b030:7036:5::, it can access to IPv6 Internet.
PC2 IP address PD is 2001:b030:7036:5::, it can access to IPv6 Internet.
2) We adjust ISP router PD setting, Now it have new prefix 2001:b030:7036:6::/64 delegated to USG-110. We check that USG already get latest PD 2001:b030:7036:6::/64 from ISP router, and it indeed send to clients by RA.
PC1 IP have multiple IPv6 address 2001:b030:7036:5::/64 and 2001:b030:7036:6::/64, it cannot access to IPv6 Internet. because it access Internet with OLD PD ip address 2001:b030:7036:5::
PC2 IP have multiple IPv6 address, 2001:b030:7036:5::/64 and 2001:b030:7036:6::/64, it can access to IPv6 Internet with new PD 2001:b030:7036:6::/64 IP address .
We repeated same test procedure to change PD from ISP router from time to time, we found out that the PC1 clients always send out V6 traffic with old PD IP address.
The only way to make it work is to disable/enable windows IPv6 interface. in this way, PC1 can access Internet with new PD ip address.
At the beginning, we thought it was gateway IOP issue, but we replace USG110 to another Router > , it is still have same issue on windows clients.
This issue most likely on clients OS behavior when PD changes; which IP address need to be used when it have multiple IP address binding to NIC>
This is not USG110 gateway issue.