Skip to main content
ocastillocoopelessca
ocastillocoopelessca
New Member
February 21, 2025
Solved

Help Needed with IPv6 Configuration on FortiWiFi 40F

  • February 21, 2025
  • 4 replies
  • 2254 views

Hi everyone,

I'm facing an issue that I need help resolving. I'm trying to configure a FortiWiFi 40F to distribute the IPv6 ::/56 prefix provided by my Starlink High Performance connection. I believe you might know how to set this up

I’ve checked some resources(https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/37673/ipv6-prefix-delegation), but they haven’t helped me successfully propagate IPv6 on the FortiWiFi 40F. I’ll attach the configuration script for your reference.

 

I really appreciate any assistance you can provide.

 

Best regards 

Octavio

 

 

 

 

FortiWiFi-40F-3G4G (interface) # edit wan

FortiWiFi-40F-3G4G (wan) # config ipv6

FortiWiFi-40F-3G4G (ipv6) # show
config ipv6
set ip6-mode dhcp
set ip6-allowaccess ping
set dhcp6-prefix-delegation enable
config dhcp6-iapd-list
edit 1
set prefix-hint ::/56
next
end
end

FortiWiFi-40F-3G4G (ipv6) # get
ip6-mode : dhcp
nd-mode : basic
ip6-address : ::/0
ip6-allowaccess : ping
icmp6-send-redirect : enable
ra-send-mtu : enable
ip6-reachable-time : 0
ip6-retrans-time : 0
ip6-hop-limit : 0
dhcp6-prefix-delegation: enable
delegated-prefix iaid 1 : 2605:59c8:727a:100::/56
preferred-life-time : 150
valid-life-time : 300
delegated-DNS1 : 2606:4700:4700::1111
delegated-DNS2 : 2001:4860:4860::8888
delegated-domain :
cli-conn6-status : 1
vrrp-virtual-mac6 : disable
vrip6_link_local : ::
ip6-dns-server-override: enable
Acquired DNS1 : ::
Acquired DNS2 : ::
dhcp6-iapd-list:
== [ 1 ]
iaid: 1 prefix-hint: ::/56 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

FortiWiFi-40F-3G4G (ipv6) # end

FortiWiFi-40F-3G4G (wan) # end
FortiWiFi-40F-3G4G (internal) # conf ipv6

FortiWiFi-40F-3G4G (ipv6) # show
config ipv6
set ip6-mode delegated
set ip6-delegated-prefix-iaid 1
set dhcp6-prefix-delegation enable
set ip6-send-adv enable
set ip6-manage-flag enable
set ip6-other-flag enable
set ip6-upstream-interface "wan"
set ip6-subnet 2605:59c8:727a:101::/56
config dhcp6-iapd-list
edit 1
set prefix-hint 2605:59c8:727a:100::/64
next
end
end

FortiWiFi-40F-3G4G (ipv6) # get
ip6-mode : delegated
nd-mode : basic
ip6-address : 2605:59c8:727a:101::/56
ip6-allowaccess :
icmp6-send-redirect : enable
ra-send-mtu : enable
ip6-reachable-time : 0
ip6-retrans-time : 0
ip6-hop-limit : 0
ip6-prefix-mode : dhcp6
ip6-delegated-prefix-iaid: 1
dhcp6-prefix-delegation: enable
delegated-prefix iaid 1 : ::/0
preferred-life-time : 0
valid-life-time : 0
delegated-DNS1 : ::
delegated-DNS2 : ::
delegated-domain :
cli-conn6-status : 3
vrrp-virtual-mac6 : disable
vrip6_link_local : ::
ip6-dns-server-override: enable
Acquired DNS1 : ::
Acquired DNS2 : ::
ip6-send-adv : enable
ip6-manage-flag : enable
ip6-other-flag : enable
ip6-max-interval : 600
ip6-min-interval : 198
ip6-link-mtu : 0
ip6-default-life : 1800
ip6-upstream-interface: wan
ip6-subnet : 2605:59c8:727a:101::/56
ip6-prefix-list:
ip6-delegated-prefix-list:
dhcp6-iapd-list:
== [ 1 ]
iaid: 1 prefix-hint: 2605:59c8:727a:100::/64 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

FortiWiFi-40F-3G4G (ipv6) # end

FortiWiFi-40F-3G4G (internal) # next
FortiWiFi-40F-3G4G (interface) # edit port3.657

FortiWiFi-40F-3G4G (port3.657) # confi ipv6

FortiWiFi-40F-3G4G (ipv6) # show
config ipv6
set ip6-mode delegated
set ip6-allowaccess ping
set ip6-delegated-prefix-iaid 1
set dhcp6-prefix-delegation enable
set ip6-send-adv enable
set ip6-manage-flag enable
set ip6-other-flag enable
set ip6-upstream-interface "wan"
config dhcp6-iapd-list
edit 1
set prefix-hint 2605:59c8:727a:101::/64
next
end
end

FortiWiFi-40F-3G4G (ipv6) # get
ip6-mode : delegated
nd-mode : basic
ip6-address : 2605:59c8:727a:100::/56
ip6-allowaccess : ping
icmp6-send-redirect : enable
ra-send-mtu : enable
ip6-reachable-time : 0
ip6-retrans-time : 0
ip6-hop-limit : 0
ip6-prefix-mode : dhcp6
ip6-delegated-prefix-iaid: 1
dhcp6-prefix-delegation: enable
delegated-prefix iaid 1 : ::/0
preferred-life-time : 0
valid-life-time : 0
delegated-DNS1 : ::
delegated-DNS2 : ::
delegated-domain :
cli-conn6-status : 3
vrrp-virtual-mac6 : disable
vrip6_link_local : ::
ip6-dns-server-override: enable
Acquired DNS1 : ::
Acquired DNS2 : ::
ip6-send-adv : enable
ip6-manage-flag : enable
ip6-other-flag : enable
ip6-max-interval : 600
ip6-min-interval : 198
ip6-link-mtu : 0
ip6-default-life : 1800
ip6-upstream-interface: wan
ip6-subnet : ::/0
ip6-prefix-list:
ip6-delegated-prefix-list:
dhcp6-iapd-list:
== [ 1 ]
iaid: 1 prefix-hint: 2605:59c8:727a:101::/64 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

 

 

FortiWiFi-40F-3G4G # diagnose ipv6 route list
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:::1/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=004c0000 prio=256 dst:2605:59c8:7240:3411::/64 dev=6(wan) pmtu=1500
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:2605:59c8:727a:100::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:2605:59c8:727a:100::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:2605:59c8:727a:101::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:2605:59c8:727a:100::/56 dev=25(port3.657) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00400000 prio=256 dst:2605:59c8:727a:100::/56 dev=18(internal) pmtu=1500
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::2ff:ebff:feec:fd57/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::eaed:d6ff:fe54:7120/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::eaed:d6ff:fe54:7124/128 dev=14(root) pmtu=16436
vf=0 tbl=254 type=07(unreachable) protocol=2(kernel) flag=00200000 prio=256 dst:fe80::/64 dev=14(root) pmtu=16436
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=15(naf.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=16(l2t.root) pmtu=1300
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=17(ssl.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=29(VPN_Info) pmtu=1420
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=18(internal) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=27(lan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=19(wqt.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=23(wqtn.14.guestwi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=24(wqtn.12.wifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=10(a) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=7(lan1) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=8(lan2) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=9(lan3) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=13(modem) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=25(port3.657) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=26(port3.659) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=6(wan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=28(wwan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=21(guestwifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=20(wifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=0(unspec) flag=01000200 prio=0 dst:ff02::1:2/128 dev=18(internal) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=15(naf.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=16(l2t.root) pmtu=1300
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=17(ssl.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=29(VPN_Info) pmtu=1420
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=18(internal) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=27(lan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=19(wqt.root) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=23(wqtn.14.guestwi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=24(wqtn.12.wifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=10(a) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=7(lan1) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=8(lan2) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=9(lan3) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=13(modem) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=25(port3.657) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=26(port3.659) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=6(wan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=28(wwan) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=21(guestwifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=20(wifi) pmtu=1500
vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00450000 prio=1024 gwy:fe80::200:5eff:fe00:101 dev=6(wan) pmtu=1500
vf=0 tbl=0 type=07(unreachable) protocol=2(kernel) flag=00200000 prio=-1 dev=14(root) pmtu=16436

 

 

 

FortiWiFi-40F-3G4G # diagnose ipv6 address list
dev=6 devname=wan flag=P scope=253 prefix=64 addr=fe80::eaed:d6ff:fe54:7120 preferred=4294967295 valid=4294967295 cstamp=8321 tstamp=8321
dev=14 devname=root flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=4987 tstamp=4987
dev=18 devname=internal flag= scope=0 prefix=56 addr=2605:59c8:727a:101:: preferred=141 valid=291 cstamp=1526929 tstamp=1585190
dev=18 devname=internal flag=P scope=253 prefix=64 addr=fe80::2ff:ebff:feec:fd57 preferred=4294967295 valid=4294967295 cstamp=7123 tstamp=7123
dev=25 devname=port3.657 flag= scope=0 prefix=56 addr=2605:59c8:727a:100:: preferred=141 valid=291 cstamp=1534933 tstamp=1585190
dev=25 devname=port3.657 flag=P scope=253 prefix=64 addr=fe80::eaed:d6ff:fe54:7124 preferred=4294967295 valid=4294967295 cstamp=1001592 tstamp=1001592
dev=30 devname=vsys_ha flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=7646 tstamp=7646
dev=32 devname=vsys_fgfm flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=8324 tstamp=8324

Best answer by funkylicious

From the guide, i think you missed step 5 configuring the dhcp6 server.

4 replies

Stephen_G
Moderator
Stephen_G
Moderator
February 23, 2025

Hello,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Stephen_G - Fortinet Community Team
    ocastillocoopelessca
    ocastillocoopelesscaAuthor
    New Member
    February 24, 2025

    Yes, thank you for your response. That’s exactly what I want to do.

    funkylicious
    SuperUser
    funkylicious
    SuperUser
    February 24, 2025

    hi,

    just to make sure that i understand correctly what you are trying to achieve.

    do you want this FWF-40F-3G4G to assign ipv6 prefixes from the /56 prefix provided by Starlink to downstream devices connected to it?

    "jack of all trades, master of none"
      ocastillocoopelessca
      ocastillocoopelesscaAuthor
      New Member
      February 24, 2025

      Yes, thank you for your response. That’s exactly what I want to do.

      funkylicious
      SuperUser
      funkyliciousAnswer
      SuperUser
      February 24, 2025

      From the guide, i think you missed step 5 configuring the dhcp6 server.

      "jack of all trades, master of none"
        tatereal
        tatereal
        Visitor III
        February 24, 2025
        @ocastillocoopelessca wrote:

        Hi everyone,

        I'm facing an issue that I need help resolving. I'm trying to configure a FortiWiFi 40F to distribute the IPv6 ::/56 prefix provided by my Starlink High Performance connection. I believe you might know how to set this up

        I’ve checked some resources(https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/37673/ipv6-prefix-delegation), but they haven’t helped me successfully propagate IPv6 on the FortiWiFi 40F. I’ll attach the configuration script for your reference.

         

        I really appreciate any assistance you can provide.

         

        Best regards 

        Octavio

         

         

         

         

        FortiWiFi-40F-3G4G (interface) # edit wan

        FortiWiFi-40F-3G4G (wan) # config ipv6

        FortiWiFi-40F-3G4G (ipv6) # show
        config ipv6
        set ip6-mode dhcp
        set ip6-allowaccess ping
        set dhcp6-prefix-delegation enable
        config dhcp6-iapd-list
        edit 1
        set prefix-hint ::/56
        next
        end
        end

        FortiWiFi-40F-3G4G (ipv6) # get
        ip6-mode : dhcp
        nd-mode : basic
        ip6-address : ::/0
        ip6-allowaccess : ping
        icmp6-send-redirect : enable
        ra-send-mtu : enable
        ip6-reachable-time : 0
        ip6-retrans-time : 0
        ip6-hop-limit : 0
        dhcp6-prefix-delegation: enable
        delegated-prefix iaid 1 : 2605:59c8:727a:100::/56
        preferred-life-time : 150
        valid-life-time : 300
        delegated-DNS1 : 2606:4700:4700::1111
        delegated-DNS2 : 2001:4860:4860::8888
        delegated-domain :
        cli-conn6-status : 1
        vrrp-virtual-mac6 : disable
        vrip6_link_local : ::
        ip6-dns-server-override: enable
        Acquired DNS1 : ::
        Acquired DNS2 : ::
        dhcp6-iapd-list:
        == [ 1 ]
        iaid: 1 prefix-hint: ::/56 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

        FortiWiFi-40F-3G4G (ipv6) # end

        FortiWiFi-40F-3G4G (wan) # end
        FortiWiFi-40F-3G4G (internal) # conf ipv6

        FortiWiFi-40F-3G4G (ipv6) # show
        config ipv6
        set ip6-mode delegated
        set ip6-delegated-prefix-iaid 1
        set dhcp6-prefix-delegation enable
        set ip6-send-adv enable
        set ip6-manage-flag enable
        set ip6-other-flag enable
        set ip6-upstream-interface "wan"
        set ip6-subnet 2605:59c8:727a:101::/56
        config dhcp6-iapd-list
        edit 1
        set prefix-hint 2605:59c8:727a:100::/64
        next
        end
        end

        FortiWiFi-40F-3G4G (ipv6) # get
        ip6-mode : delegated
        nd-mode : basic
        ip6-address : 2605:59c8:727a:101::/56
        ip6-allowaccess :
        icmp6-send-redirect : enable
        ra-send-mtu : enable
        ip6-reachable-time : 0
        ip6-retrans-time : 0
        ip6-hop-limit : 0
        ip6-prefix-mode : dhcp6
        ip6-delegated-prefix-iaid: 1
        dhcp6-prefix-delegation: enable
        delegated-prefix iaid 1 : ::/0
        preferred-life-time : 0
        valid-life-time : 0
        delegated-DNS1 : ::
        delegated-DNS2 : ::
        delegated-domain :
        cli-conn6-status : 3
        vrrp-virtual-mac6 : disable
        vrip6_link_local : ::
        ip6-dns-server-override: enable
        Acquired DNS1 : ::
        Acquired DNS2 : ::
        ip6-send-adv : enable
        ip6-manage-flag : enable
        ip6-other-flag : enable
        ip6-max-interval : 600
        ip6-min-interval : 198
        ip6-link-mtu : 0
        ip6-default-life : 1800
        ip6-upstream-interface: wan
        ip6-subnet : 2605:59c8:727a:101::/56
        ip6-prefix-list:
        ip6-delegated-prefix-list:
        dhcp6-iapd-list:
        == [ 1 ]
        iaid: 1 prefix-hint: 2605:59c8:727a:100::/64 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

        FortiWiFi-40F-3G4G (ipv6) # end

        FortiWiFi-40F-3G4G (internal) # next
        FortiWiFi-40F-3G4G (interface) # edit port3.657

        FortiWiFi-40F-3G4G (port3.657) # confi ipv6

        FortiWiFi-40F-3G4G (ipv6) # show
        config ipv6
        set ip6-mode delegated
        set ip6-allowaccess ping
        set ip6-delegated-prefix-iaid 1
        set dhcp6-prefix-delegation enable
        set ip6-send-adv enable
        set ip6-manage-flag enable
        set ip6-other-flag enable
        set ip6-upstream-interface "wan"
        config dhcp6-iapd-list
        edit 1
        set prefix-hint 2605:59c8:727a:101::/64
        next
        end
        end

        FortiWiFi-40F-3G4G (ipv6) # get
        ip6-mode : delegated
        nd-mode : basic
        ip6-address : 2605:59c8:727a:100::/56
        ip6-allowaccess : ping
        icmp6-send-redirect : enable
        ra-send-mtu : enable
        ip6-reachable-time : 0
        ip6-retrans-time : 0
        ip6-hop-limit : 0
        ip6-prefix-mode : dhcp6
        ip6-delegated-prefix-iaid: 1
        dhcp6-prefix-delegation: enable
        delegated-prefix iaid 1 : ::/0
        preferred-life-time : 0
        valid-life-time : 0
        delegated-DNS1 : ::
        delegated-DNS2 : ::
        delegated-domain :
        cli-conn6-status : 3
        vrrp-virtual-mac6 : disable
        vrip6_link_local : ::
        ip6-dns-server-override: enable
        Acquired DNS1 : ::
        Acquired DNS2 : ::
        ip6-send-adv : enable
        ip6-manage-flag : enable
        ip6-other-flag : enable
        ip6-max-interval : 600
        ip6-min-interval : 198
        ip6-link-mtu : 0
        ip6-default-life : 1800
        ip6-upstream-interface: wan
        ip6-subnet : ::/0
        ip6-prefix-list:
        ip6-delegated-prefix-list:
        dhcp6-iapd-list:
        == [ 1 ]
        iaid: 1 prefix-hint: 2605:59c8:727a:101::/64 prefix-hint-plt: 604800 prefix-hint-vlt: 2592000

         

         

        FortiWiFi-40F-3G4G # diagnose ipv6 route list
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:::1/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=004c0000 prio=256 dst:2605:59c8:7240:3411::/64 dev=6(wan) pmtu=1500
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:2605:59c8:727a:100::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:2605:59c8:727a:100::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:2605:59c8:727a:101::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:2605:59c8:727a:100::/56 dev=25(port3.657) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00400000 prio=256 dst:2605:59c8:727a:100::/56 dev=18(internal) pmtu=1500
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=00300000 prio=0 dst:fe80::/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::2ff:ebff:feec:fd57/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::eaed:d6ff:fe54:7120/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=02(local) protocol=0(unspec) flag=80200000 prio=0 dst:fe80::eaed:d6ff:fe54:7124/128 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=07(unreachable) protocol=2(kernel) flag=00200000 prio=256 dst:fe80::/64 dev=14(root) pmtu=16436
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=15(naf.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=16(l2t.root) pmtu=1300
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=17(ssl.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=29(VPN_Info) pmtu=1420
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=18(internal) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=27(lan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=19(wqt.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=23(wqtn.14.guestwi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=24(wqtn.12.wifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=10(a) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=7(lan1) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=8(lan2) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=9(lan3) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=13(modem) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=25(port3.657) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=26(port3.659) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=6(wan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=28(wwan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=21(guestwifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00000000 prio=256 dst:fe80::/64 dev=20(wifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=0(unspec) flag=01000200 prio=0 dst:ff02::1:2/128 dev=18(internal) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=15(naf.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=16(l2t.root) pmtu=1300
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=17(ssl.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=29(VPN_Info) pmtu=1420
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=18(internal) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=27(lan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=19(wqt.root) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=23(wqtn.14.guestwi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=24(wqtn.12.wifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=10(a) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=7(lan1) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=8(lan2) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=9(lan3) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=13(modem) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=25(port3.657) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=26(port3.659) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=6(wan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=28(wwan) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=21(guestwifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=3(boot) flag=00000000 prio=256 dst:ff00::/8 dev=20(wifi) pmtu=1500
        vf=0 tbl=254 type=01(unicast) protocol=2(kernel) flag=00450000 prio=1024 gwy:fe80::200:5eff:fe00:101 dev=6(wan) pmtu=1500
        vf=0 tbl=0 type=07(unreachable) protocol=2(kernel) flag=00200000 prio=-1 dev=14(root) pmtu=16436

         

         

         

        FortiWiFi-40F-3G4G # diagnose ipv6 address list
        dev=6 devname=wan flag=P scope=253 prefix=64 addr=fe80::eaed:d6ff:fe54:7120 preferred=4294967295 valid=4294967295 cstamp=8321 tstamp=8321
        dev=14 devname=root flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=4987 tstamp=4987
        dev=18 devname=internal flag= scope=0 prefix=56 addr=2605:59c8:727a:101:: preferred=141 valid=291 cstamp=1526929 tstamp=1585190
        dev=18 devname=internal flag=P scope=253 prefix=64 addr=fe80::2ff:ebff:feec:fd57 preferred=4294967295 valid=4294967295 cstamp=7123 tstamp=7123
        dev=25 devname=port3.657 flag= scope=0 prefix=56 addr=2605:59c8:727a:100:: preferred=141 valid=291 cstamp=1534933 tstamp=1585190
        dev=25 devname=port3.657 flag=P scope=253 prefix=64 addr=fe80::eaed:d6ff:fe54:7124 preferred=4294967295 valid=4294967295 cstamp=1001592 tstamp=1001592
        dev=30 devname=vsys_ha flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=7646 tstamp=7646
        dev=32 devname=vsys_fgfm flag=P scope=254 prefix=128 addr=::1 preferred=4294967295 valid=4294967295 cstamp=8324 tstamp=8324

        Check if your WAN interface is set to dhcp for IPv6 and has prefix delegation enabled. Check if the FortiGate is receiving a valid prefix from Starlink by running get system interface wan. Next, configure your LAN interfaces to use set ip6-mode delegated and assign the received prefix using set ip6-upstream-interface "wan".

         

        Also, enable set ip6-send-adv enable so devices on your network can receive IPv6 addresses. If your prefix shows ::/0, remove and re-add the prefix hint (2605:59c8:727a:101::/56). Finally, verify IPv6 routing with diagnose ipv6 route list to confirm the correct delegation. If the issue persists, reboot the FortiGate and check the settings again.

        tatereal
        tatereal
        Visitor III
        February 24, 2025

        I don't get it 

        Terms & ConditionsAccessibility statement