This article provides guidance on provisioning a UniFi Security Gateway (USG) and internal networks with basic IPv6 functionality with UniFi version 5.4.11+ for DHCPv6 WANs with prefix delegation.
|Note: This can only be done with a config.gateway.json file in stable release versions. Read this article for more information on the config.gateway.json file.|
Table of Contents
The USG WAN interface will be assigned an IPv6 address from DHCPv6, and the LAN will be assigned an IPv6 subnet from the ISP-provided Prefix Delegation (PD). This requires the user's ISP to have an IPv6 infrastructure as well as providing IPv6 to the user as a service, including with PD.
On the LAN side, SLAAC (Stateless Address Autoconfiguration) will be used. This enables autoconfiguration of IPv6 addresses on connected clients. Stateless autoconfiguration or SLAAC is where the host is assigned a 64-bit prefix, and then the last 64 bits of their address are obtained with help of the EUI-64 process, or obtained randomly for hosts with privacy-addressing enabled.
Steps - How to Implement IPv6 on a USG
- Download the corresponding config.gateway.json files here: USG or USG Pro
- Make the appropriate changes to the file if needed (see note below)
- Copy the config.gateway.json file to the UniFi controller and force a provision on the USG. Need help? reference our Related Articles for more information.
|Note: If you have a VLAN-tagged WAN, the WAN interface will need to be changed accordingly in the file.|