Hi,
I try to setup IPv6 on Remote Access (currently SSL) VPN. Each user should get a static /64 subnet. First I searched for an option to put the IPv6 address in the user record but it seems as if there are only IPv4 addresses allowed. OK, maybe this function is still not completed then I'll have to route the network to the user. To achieve this I extended the SSL VPN-Pool with a /64 subnet so that each connection first will get a dynamic address (/64 is a little bit over sized but who cares ;-). After that I tried to setup a static route for each /64 subnet to the users VPN IP by using the definition "Known IP addresses of user '***'" as gateway. This does not to work because this record is a "network definition" which can't be used as a gateway. As I ran out of creative workarounds here are my questions:
1) Why is the definition "Known IP addresses of user '***'" a network and not a host object? As far as I know should this object simply represent the current IP of a remote user.
2) Has anyone a good and working idea how to assign each VPN user an IPv6 subnet? I'll also take suggestions for IPv4 subnets, I guess the solution should be transferable ;-)
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.