Add options for IPv6 DHCPv6-PD
My ISP supports native IPv6, they support prefix delegation using DHCPv6-PD to assign a /56 subnet. They do not assign the WAN interface an IPv6 address (i.e. no IA-NA) and only provide a prefix delegation (IA-PD). Currently XG (and UTM9) doesn't work with my ISP to get a PD because there are no options to request IA-PD only. My ISP edge router will respond to a solicit message with a IA-NA and IA-PD request but it would appear that the XG doesn't conform to RFC7550 when it sends a IA-NA message and receives a "NoAddrsAvail" from my ISP edge router.
I would love to have upgraded to XG, but am stuck on UTM due to lack of IPV6 DHCP-PD support. HOW is this most basic of all IPv6 functionality not even on the radar? With no support for this functionality in XG, and mostly broken/unreliable support in non-PPPoE IPv6 configurations on UTM (due to a very old bug with RADVD that has still not been fixed) - it's very hard to recommend a Sophos firewall to anyone who needs even the most basic functionality of IPv6 which, let's face it, is necessarily becoming commonplace.
this is absurd to not be supporting PD. Come on Sophos, get off your slack a...
Since a very long time, customers craving for this functionality - even low priced entry routers are able to handle this. But Sophos' equipment is not able to - oh sorry utm9 can, so the knowledge how it works is available so go ahead implement it. What's wrong - waiting for IPv10.....?
DHCPv6-PD is necessary to deploy!
We need DHCPv6-PD to deploy IPv6 to customer sites. Devices behind the firewall can not receive public addresses without this. Please consider this request.
Markus Heilgemeier commented
it is not acceptable in 2020 having lot of surely powerful but also expensive devices from Sophos XG Range.
In Germany we have a lot of providers which are not offering an static ipv6 praefix. With the Sophos XG it is not possible to use native IPV6 without manually adjusting the praefix each 24h.
DHCPv6-PD is necessary to deploy devices. Period.
I watch the idealist (sorted by top) since May 2018. Over this time, DHCPv6-PD was always on position 20 or 21 and is right now on position 21. It looks like Sophos has noting implemented from the top 20 ideas over the last year.
Sophos, it would be out of character for you to do this but since this request has been open for almost 3 years, can you at least comment if this is something that you are even considering. Major releases have come and gone with nothing. And with v18 on the horizon with no mention of support for DHCPv6-PD, can you at least re-review the request and let us know so we can stop holding our breath.
I really need dhcp-pd fuction. When will you be adding this feature?
Please add this feature
This is really necessary.... Now we have to put another router in front of the XG in order to make this work...
P Fist commented
Sophos XG is a great product, but implementing it with deprecated IPv4 only is a shame.
Take a Engineer and 2 days worktime to implement this feature to finally make all your clients happy!
It is so annoying.
Sold my XG 85 today and will using pfSense
End of 2018 and no PD on XG?
Will be replacing XG Firewalls with pfSense next year due to the lack of progress on comprehensive IPv6 support.
Pretty sad that nearly 3 years on since this was requested, along with being #21 in the Top Voted list, that nothing has been done on this.
Yes, same situation in The Netherlands with KPN (XS4ALL, Telfort etc.).
Sophos really needs to implement this feature and don't forget PPPoE support.
Main ISP Telenet in Belgium needs Prefix delegation on ipv6 ....
We have reached the point DHCPv6 Prefix Delegation is an essential feature and a simple requirement. It's almost 2019. The largest ISP in my country requires DHCPv6-PD over PPPoE.
"Take my money" and implement this feature please so that we can get rid of pfSense.
Mario Polenz commented
It is now one year later and sophos xg is still not able to suppport this well documented RFC feature in his new xg firewall. 172 Votes from interested customers are not enough? It is a shame!