Quoterange6 2001:db8:1:7fff:0:0:0:0 2001:db8:1:7fff:ffff:ffff:ffff:ffff;you don't have to define absolute network boundaries anymore, it's not v4, just take the range that you gonna be working with, but first you need to delegate prefix inside that subnet6 /48 statement, any number in quad 4 is a network, so, first you trim that number to whatever you need.. so for example, 16 networks would make it /60
subnet6 2001:db8:1::/48 {
prefix6 2001:db8:1:000[0]:: 2001:db8:1:000[f]::/60; # I put network range here in brackets
range6 2001:db8:1:000[0]:: 2001:db8:1:000[f]::; # nice starting range for the routers yeah
# don't have routers? no problem, you can skip network division by commenting out two lines above and jump
# straight to address-space by delegating # /64 instead, you'd still need to pick network for that space.
# Understand the address-range you working with here:
# let's say you picked network "f",
prefix6 2001:db8:1:000[f]::0 2001:db8:1:000[f]:ffff:ffff:ffff:ffff/64; # that'd be one
# [ /64 ] # /64 of the 000f/60 network
#[ /48 ] # ..or one of 65535 in /48
range6 2001:db8:1:000f::a8:[0000] 2001:db8:1:000f::a8:[ffff]; # you can narrow it down further
#[/112] # for convenience (/112 in this example,
# or 65535 addresses)
};
I think that's about right. 26-Feb-2025 02:20:16.332 security: info: client @0x7fb5c854e2c0 fe80::d3af:9874:b7bb:2fd7%2#59703 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
26-Feb-2025 02:20:16.500 security: info: client @0x7fb5b0490a60 fe80::d3af:9874:b7bb:2fd7%2#54335 (dns.msftncsi.com): query (cache) 'dns.msftncsi.com/A/IN' denied
26-Feb-2025 02:20:56.911 security: info: client @0x7fb5c457aaf0 2001:470:0:11e::2#23632 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 08:58:39.686 security: info: client @0x7f11bc4d7670 2001:470:0:11e::2#25167 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 08:58:39.690 security: info: client @0x7f11c853f7d0 216.66.80.90#23548 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 08:58:39.706 security: info: client @0x7f11c854b740 2001:470:0:11e::2#28185 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 08:58:39.706 security: info: client @0x7f11cc65a2b0 2001:470:0:11e::2#61861 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 08:58:39.726 security: info: client @0x7f11bc56ee10 2001:470:0:11e::2#52237 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 08:58:39.726 security: info: client @0x7f11c44f6c20 2001:470:0:11e::2#17834 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 09:21:45.448 security: info: client @0x7f11c854ed90 2001:470:0:11e::2#5745 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 09:21:45.456 security: info: client @0x7f11c853f7d0 216.66.80.90#50366 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 09:21:45.468 security: info: client @0x7f11cc681580 2001:470:0:11e::2#34186 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 09:21:45.476 security: info: client @0x7f11c854ed90 2001:470:0:11e::2#11063 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 09:21:45.484 security: info: client @0x7f11bc4f9e10 2001:470:0:11e::2#17678 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 09:21:45.492 security: info: client @0x7f11c4537930 2001:470:0:11e::2#40996 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied
24-Feb-2025 09:21:45.504 security: info: client @0x7f11c853f7d0 216.66.80.90#39871 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/AAAA/IN' denied
24-Feb-2025 09:21:45.512 security: info: client @0x7f11bc4f9e10 2001:470:0:11e::2#53345 (wpad.lan.kaillera.ru): query 'wpad.lan.kaillera.ru/A/IN' denied