Help with IPv6 / hostname problems when connecting from internet to local server

Soldato
Joined
19 Oct 2002
Posts
2,742
Location
Auckland, New Zealand
Hi

I have my Synology NAS running various things and I'm looking to get an SSL via Lets Encrypt. I have a static IPv4 and a static /56 IPv6 address. The IPv4 is used for another aspect on 80/443 so I'm attempting to get lets encrypt through IPv6 but it keeps failing.

I've got Cloudflare DNS setup for my domain (IPv4 is working fine), my unifi setup has the firewall setup to allow connections via 80/443 to the NAS on the IPv6 address so all should be good.. but its not.

If I use an external checker such as https://www.subnetonline.com/pages/ipv6-network-tools/online-ipv6-port-scanner.php to check via the IPv6 address 80/443 show as open as expected but if I use the hostname (storage.domain.com) then the ports are shown as either filtered or closed.

Is there something I need to do either in cloudflare, Unifi or the Synology Control Panel to get this working? Note that I am running an Active Directory setup and the DNS servers have both IPv4/6 address in the DNS list and internal routing via the hostname works fine.

Any thoughts?

Thanks,

Chris
 
What IP address is the hostname resolving to? You've done it as a AAAA rather than an A record I take it?
 
What IP address is the hostname resolving to? You've done it as a AAAA rather than an A record I take it?

Yep I've got AAAA records pointing to the IPv6 address, the USG-3P is set to allow the ports to be open..

It maybe an actual issue with the synology unit and the lack of challenge folder but the network is the easy bit to resolve as I don't know where the challenge folder would be located on a synology unit!
 
Back
Top Bottom