Hello,
I have been using policy routing with ipv6 for a while, but I can no longer get it to work. There has been a lot of commits regarding policy routing lately. Might be due to that?
Unfortunately I don't know at which commit it stopped working. I tried it with todays daily iso.
My config is:
# show interfaces ethernet eth2 address 172.21.50.111/23 address 2c06:25:f1cd:11:1::1/80 hw-id f6:29:d0:f0:2f:0c policy { route6 src-route } # show policy route6 src-route { rule 1 { destination { address ::/0 } set { table 1 } source { address 2c06:25:f1cd:11:1::/80 } } } # show nat66 source { rule 1 { outbound-interface wg01 source { prefix 2c06:25:f1cd:11:1::/80 } translation { address masquerade } } } # show protocols static table 1 route6 ::/0 { interface wg01 { } }
I cannot get it working on ipv6 despite the same config worked a while back. From a client, ping6 and traceroute6 just times out.
(ipv4 pbr works fine via the same tunnel and table)
It does also work locally on vyos with the wg01 tunnel via table 1 if I use local-route6.
Any ideas?