Operational Defect Database
BugZero found this defect 797 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA16S000000O6lCSAS
DHCPv6 packets are not forwarded between member interfaces of an external VLAN
Last update date:
3/17/2022
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
11.x
11.1.x
11.10.x
11.10
11.10.1
11.10.2
11.10.3
11.10.4
11.10.5
11.10.6
Fixed releases:
v12.8.1
Description:
Issue
In Fireware v12.8, if you configure an untagged or tagged external VLAN, and the VLAN includes more than one member interface, DHCPv6 traffic is not forwarded between member interfaces. For example, you configure an external untagged or tagged VLAN on your Firebox that includes two member interfaces, eth0 and eth1. You configure a router connected to eth0 as a DHCPv6 server. User computers connected to eth1 cannot receive DHCPv6 IP addresses from the DHCPv6 server.
Workaround/Solution
Fireware Web UI and Policy ManagerIn the VLAN settings, clear the Disable the apply firewall policies to intra-vlan traffic check box. For more information about this setting, see Define a New VLAN in Fireware Help.WatchGuard CloudThere is no workaround at this time for cloud-managed Fireboxes. You cannot configure intra-VLAN traffic settings in WatchGuard Cloud.
