PacketFence - BTS - PacketFence
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0001145PacketFencecorepublic2010-12-21 15:272015-03-04 11:18
Reporterfgaudreault 
Assigned Tolmunro 
PrioritylowSeverityfeatureReproducibilityN/A
StatusacknowledgedResolutionopen 
PlatformOSOS Version
Product Version 
Target VersionFixed in Version 
fixed in git revision
fixed in mtn revision
Summary0001145: IPv6 Support
DescriptionSince we all know that it's inevitable IPv6 will come into real production soon (well in 2 to 5 years), I guess it would be a wise idea to start looking at it, just to be ahead of the wave.
Steps To Reproduce
Additional Information
TagsNo tags attached.
Relationships
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2010-12-21 15:27fgaudreaultNew Issue
2010-12-21 15:28fgaudreaultTarget Version => 3
2010-12-21 15:28fgaudreaultDescription Updated
2011-09-21 22:08obilodeauTarget Version3.0.0 => +2
2011-12-21 13:52obilodeauNote Added: 0002475
2011-12-29 08:32chiwawa_42Note Added: 0002486
2012-02-29 10:58obilodeauCategoryfuture => core
2013-07-22 21:01Xen0PhageNote Added: 0003344
2014-01-24 11:33neptuneISNote Added: 0003493
2015-02-16 18:29swittstNote Added: 0003844
2015-03-04 11:18lmunroAssigned To => lmunro
2015-03-04 11:18lmunroStatusnew => acknowledged

Notes
(0002475)
obilodeau   
2011-12-21 13:52   
places needing fixing:
pf::config's _fetch_virtual_ip()
(0002486)
chiwawa_42   
2011-12-29 08:32   
required IPv6 feature set :
- Implement NDP / RA filtering on switches supporting PACL but not RA-Guard (RFC 6105)
- Use NDPMon (similar to ARPWatch) for monitoring
- Enforce loose (counter-RA) or strict (+port shutdown) policy on rogue-RA detection
- Implement DHCPv6 snooping and/or stateless option server (coupled to 802.1x auth process)
- OS validation for IPv6 capabilities to eventually disable IPv6 trafic for incapable hosts (DHCPv6 only on 7 and Lion, RA-flood bug on XP...)
(0003344)
Xen0Phage   
2013-07-22 21:01   
Adding a ping here. IPv6 is a reality for some of us and our NAC solution needs to be v6 aware. Is there a roadmap for v6 support?
(0003493)
neptuneIS   
2014-01-24 11:33   
+1

We are now in active R&D phase for our new network control infrastructure, and pf is our 1st candidate.
However, the lack of ipv6 support is a serious issue for us.

We would be glad to contribute, if there is any ongoing tasks on the subject.
(0003844)
swittst   
2015-02-16 18:29   
Adding my 2cents. Packetfence is our NAC of the future... depending on an IPv6 solution. We've been monitoring and testing Packetfence since Dec. '09, the regular feature development work has been impressive. The lack of IPv6 information though is a head scratcher. IPv6 is gaining serous momentum in North America, now that the IPv4 space has been exhausted.