I am trying to use ipv6 as my ISP doesn't have a direct IP4 for me to use, the public IP and WAN IP are different.
After doing reading at several locations I found that I have change the standard 192.168.1.x range to one which won't conflict with other ranges.
Like the bridge states guide I choose 192.168.8.x for the bridging.
When configuring I use a non-temp ipv6 address assigned to my interface.
I can confirm that I am using the correct IP address because after opening the ICMP port in the firewall on the computer I am able to ping the device from another external network.
I have also opened the required port for the vpn connection, and just for testing purposes I tried disabling the firewall to see if I can connect (I can't).
I am using Windows 11 and OpenVPN 2.6.8.
server.ovpn
# TCP/UDP port
port 22222
proto udp6
local <my public ipv6 (which is pingable)>
dev tap # use for bridging
# Windows TAP-Win32 adapter name
dev-node tap-bridge
# Clients should be able to see each other
client-to-client
# Diffie hellman parameters.
# Generate your own with:
# openssl dhparam -out dh2048.pem 2048
dh "C:\\Program Files\\OpenVPN\\config\\dh.pem"
# maintain record of client-ip's for reconnecting.
ifconfig-pool-persist ipp.txt
# Ethernet bridge 1) bridge ip, 2) subnet, 3) start ip range, 4) end ip range
server-bridge 192.168.8.4 255.255.255.0 192.168.8.8 192.168.8.16
keepalive 10 120
cipher AES-256-CBC
# The persist options will try to avoid
# accessing certain resources on restart
# that may no longer be accessible because
# of the privilege downgrade.
persist-key
persist-tun
client.ovpn
# Specify that we are a client
client
# tap - bridge, tun - route
dev tap
remote-cert-tls server
proto udp6
# Remote host IP
remote <my public ipv6 (which is pingable)> 22222
resolv-retry infinite
# Most clients don't need to bind to
# a specific local port number.
nobind
# Try to preserve some state across restarts.
persist-key
persist-tun
cipher AES-256-CBC
# Do not cache passwords
auth-nocache
I literally spend hours and hours of tweaking and searching, I really can't find the solution.
I'd really appreciate if someone would be able to help me.
Thanks!
edit: I also disabled the firewall on my router while testing