Hello all.
We have a dual stack network, i.e. both IPv4 and IPv6.
The SRX sits as a perimeter firewall, between Internet and LAN.
I can pass IPv4 traffic through it just fine.
But cannot pass IPv6 traffic through at all.
The weird thing is:
1. The SRX itself can ping and access IPv6 content on the Internet just fine.
2. A computer situated on the "Internet" side, can also access IPv6 content just fine.
So, IPv6 access from ISP is allright, it's just not passing the SRX.
IPv6 is enabled and set to flow based.
The lan is segregated into vlans, and port trunked into port 0.
Internet is on port 7,
My setup is in attached file, but a couple of primers below:
routing-options {
rib inet6.0 {
static {
route ::/0 next-hop 2001:a:b:c::1;
}
}
static {
route 0.0.0.0/0 next-hop 83.xxx.yyy.249;
}
}
security {
forwarding-options {
family {
inet6 {
mode flow-based;
}
}
}
}
what are we doing wrong?
Hopeful for tips
Henrik