Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 13 replies
  • Subscribers 29 subscribers
  • Views 9639 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to add FQDN in IPv6

rfcat_vk

Hi,

today I have been trying out varies features in an attempt to fix a site that is throwing a temper tantrum. I created an IP4 rule which allows the use of FQDNs and then tried the same for IPv6, but could not create an FQDN only IPv6 addresses.

I added a FQDN for the site which has mix of IP4 and IPv6 addresses, but only the IP4 addresses show.

Please advise how to overcome this limitation and when will it be added to the XG as a standard GUI feature?

Without being able to add the FQDN I cannot get the speed test to work, latency errors. I suppose I can add the IPv6 addresses to the rule, but ....

Ian

 

To add a little more fuel to the fire, there is a major ISP in Australia that will only be issuing IPv6 addresses to businesses because the cost of buying extra IP4 addresses has become prohibitive.



This thread was automatically locked due to age.
Parents
  • 0

    Hey Ian,

    Thanks for raising this thread. I was also able to find this suggestion on our Sophos Ideas page.
    I'll inquire with our team and reply back with any feedback I receive.

    Regards,

  • 0 in reply to FloSupport

    Hi Flo,

    further on IPv6 and settings. I do not believe that IPv6 on the XG knows what to do with WEB exceptions.

    I have been doing extensive testing using a couple of sites and putting in a web exception does not appear to work, where as if I put in a open access rule the IPv6 site works.

    W10 seems to use IPv6 by default, whereas the MBP (Mojave) still uses IP4 by default.

    Ian

  • 0 in reply to rfcat_vk

    A warning to all MAC users who are planning to upgrade to Mojave and using IPv6, the new App store does not work through the XG because access now is via IPv6.

    I tried using the hotspot on my phone and was able to connect using IP4, but back on the XG, the connections show as going through, but the App screen shows a failed attempt, also iCloud does not appear to work through the XG. Protocol is 443. So next test another rule in IPv6 but without sites because of the missing FQDN function.

    Ian

    So, I now have an almost open rule at the top of IPv6 to allow the MBPs to access the update/app servers.

Reply
  • 0 in reply to rfcat_vk

    A warning to all MAC users who are planning to upgrade to Mojave and using IPv6, the new App store does not work through the XG because access now is via IPv6.

    I tried using the hotspot on my phone and was able to connect using IP4, but back on the XG, the connections show as going through, but the App screen shows a failed attempt, also iCloud does not appear to work through the XG. Protocol is 443. So next test another rule in IPv6 but without sites because of the missing FQDN function.

    Ian

    So, I now have an almost open rule at the top of IPv6 to allow the MBPs to access the update/app servers.

Children
  • 0 in reply to rfcat_vk

    Being a bit of a bloodhound, I thought I would create IP pools instead of FQDN lists for IPv6 rules, failed because I cannot find a list of IPv6 addresses used by apple.

    I can find the 3 main IP4 addresses, but nothing more, obviously looking in the wrong places, just not sure where to go to from here?

    Any help would be good, thank you.

    Ian