Hello,
Setup is as follows, two IAP205 running 6.5.3.1.
IAPs have vlans tagged to them, I use 802.1x for authentication with NPS, so users authenticate and gets dynamic vlan assignment - This works like a charm. I did setup a vlan (72) with dual stack L3-configuration, parallell setup of ipv4/6 with SLAAC on ipv6. It works.
However.... It seems the other wireless networks also gets SLAAC addresses from vlan 72?!
When checking with wireshark on the clients, I can see the router advertisments/solicitation between the router on vlan 72 and the clients on vlan 440/441. What gives?
The problem doesn't exist on the wired network, only on the wireless. I have also tried to route the networks in different routers (Fortigate, Juniper srx, Ubiquiti), but the behaviour is the same. The addresses that belong to vlan 72 obviously doesn't work on the other vlans - It isn't possible to reach the router on 72 from 440/441.
From what I can tell, it looks like the IAP leaks icmpv6 between the vlans, but not much else.
Is this a known bug?