Sophos Ideas / XG Firewall

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

← XG Firewall

Add options for IPv6 DHCPv6-PD

My ISP supports native IPv6, they support prefix delegation using DHCPv6-PD to assign a /56 subnet. They do not assign the WAN interface an IPv6 address (i.e. no IA-NA) and only provide a prefix delegation (IA-PD). Currently XG (and UTM9) doesn't work with my ISP to get a PD because there are no options to request IA-PD only. My ISP edge router will respond to a solicit message with a IA-NA and IA-PD request but it would appear that the XG doesn't conform to RFC7550 when it sends a IA-NA message and receives a "NoAddrsAvail" from my ISP edge router.

279 votes
Sign in Sign in with Log in with your Sophos ID
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

LG shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

35 comments

Sign in Sign in with Log in with your Sophos ID
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Markus Heilgemeier commented  ·   ·  Flag as inappropriate

    Dear Sophos,

    it is not acceptable in 2020 having lot of surely powerful but also expensive devices from Sophos XG Range.
    In Germany we have a lot of providers which are not offering an static ipv6 praefix. With the Sophos XG it is not possible to use native IPV6 without manually adjusting the praefix each 24h.

  • Thomas commented  ·   ·  Flag as inappropriate

    I watch the idealist (sorted by top) since May 2018. Over this time, DHCPv6-PD was always on position 20 or 21 and is right now on position 21. It looks like Sophos has noting implemented from the top 20 ideas over the last year.

  • ljbe commented  ·   ·  Flag as inappropriate

    Sophos, it would be out of character for you to do this but since this request has been open for almost 3 years, can you at least comment if this is something that you are even considering. Major releases have come and gone with nothing. And with v18 on the horizon with no mention of support for DHCPv6-PD, can you at least re-review the request and let us know so we can stop holding our breath.

  • Dean commented  ·   ·  Flag as inappropriate

    Hello
    I really need dhcp-pd fuction. When will you be adding this feature?

  • Anonymous commented  ·   ·  Flag as inappropriate

    This is really necessary.... Now we have to put another router in front of the XG in order to make this work...

  • P Fist commented  ·   ·  Flag as inappropriate

    Sophos XG is a great product, but implementing it with deprecated IPv4 only is a shame.

    Take a Engineer and 2 days worktime to implement this feature to finally make all your clients happy!

    It is so annoying.

  • Chris commented  ·   ·  Flag as inappropriate

    Will be replacing XG Firewalls with pfSense next year due to the lack of progress on comprehensive IPv6 support.
    Pretty sad that nearly 3 years on since this was requested, along with being #21 in the Top Voted list, that nothing has been done on this.

  • E commented  ·   ·  Flag as inappropriate

    Yes, same situation in The Netherlands with KPN (XS4ALL, Telfort etc.).

    Sophos really needs to implement this feature and don't forget PPPoE support.

  • E commented  ·   ·  Flag as inappropriate

    We have reached the point DHCPv6 Prefix Delegation is an essential feature and a simple requirement. It's almost 2019. The largest ISP in my country requires DHCPv6-PD over PPPoE.

    "Take my money" and implement this feature please so that we can get rid of pfSense.

  • Mario Polenz commented  ·   ·  Flag as inappropriate

    It is now one year later and sophos xg is still not able to suppport this well documented RFC feature in his new xg firewall. 172 Votes from interested customers are not enough? It is a shame!

  • P Fist commented  ·   ·  Flag as inappropriate

    I had to stop a business migration from WG to SOPHOS because of this lack. Now I run for pfsense, because of this lag.

  • Rafael Rossetto commented  ·   ·  Flag as inappropriate

    It would be great to know if it would be included in a new version (Roadmap).

    In spite of beeing a home user / SMB feature, it should be included.

  • Silvio commented  ·   ·  Flag as inappropriate

    Currently, we are planning the restructuring of our firewall infrastructure. We also plan a migration to Sophos XG firewalls. With the lack of support for IPv6-PD, I ask my self if this is the right decision for us.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Here it is the day before 2018 and Sophos has still not implemented this. Shows a complete lack of listening to customers and the needs of businesses today.

    Except for free home use on the UTM version, I will never recommend Sophos FW products to any of my customers due to Sophos' disregard of today's needs.

← Previous 1

XG Firewall: Base System + General UI

Categories

Feedback and Knowledge Base

(thinking…)
icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.