WAN (IPv6) <-> LAN(IPv4)?
mfelber
Newbie ✭
Hello Community
I have a TZ350 and a DS-light internet connection. Until recently my ISP gave me a modem with a 192.168.0.xx address range. I have my firewall configured to have an IPv4 address of 192.168.0.2 on the WAN side and 192.168.1.xx on the LAN side. Now I received a new modem with a 192.168.1.xx address range. Unfortunately, I cannot change this address range. However, the modem has an IPv4 and an IPv6 DHCP server. Having the same 192.168.1.xx address range on both the WAN and LAN side will not work.
My idea (as a newbie) is to disable IPv4 on the modem and use IPv6 between the modem and WAN side of the firewall, keeping IPv4 on the LAN side.
Question: Will my idea function? If yes, how would I set up the NAT rules? If not, what possibilities are there?
Thanks a lot in advance!
Answers
I suggest you just give up and change your LAN subnet to anything other than 192.168.1.0/24 :D
Are you sure you have DS-Lite? Never used it myself but everything I read implies that you do not get a v4 address on your WAN side with DS-Lite, that's handled by the tunnel:
https://www.sonicwall.com/support/knowledge-base/how-do-i-create-a-ds-lite-softwire-tunnel/190603141937966/
Maybe I don't get it, but 192.168.... addresses are Class C private addresses? Not something I would expect on the WAN side....
You can expect more and more of it as v4 IP addresses run out - private v4, global v6.
Thanks for your reply.
192.168.1... is on the LAN side of the modem and at the same time on the WAN side of the firewall.
Yes, I do have DS-Light, And yes I do not get a IPV4 address on the WAN side of the Modem. However, with a DS-Light Portmapper (https://www.feste-ip.net/dslite-ipv6-portmapper/allgemeine-informationen/) I still can access my IPV4 devices in my local network.
If your provider won't change the WAN-side addressing, then you will either have to change your LAN side addressing or change provider.
If you absolutely must use this provider and use 192.168.1.0/24 on your LAN, then put in another device between the Sonicwall WAN and the provider modem to handle the DS-Lite bit, that way your Sonicwall won't know about this network.