I run a he.net tunnel that arrives in my LAN on a dedicated Raspberry Pi that acts as the end point of the tunnel. On the Pi I then run radvd across my LAN to assign other devices an IPv6 address.
I have a Debian buster box that I have assigned a static IPv6 address in the GUI config and from a terminal can ping -6 google.co.nz from the box just fine.
I can also run BinkD and poll out to an IPv6 address fine also.
The problem is getting incoming IPv6 connections to BinkD etc. to work.
I have UFW as the firewall, I have enabled IPv6 in the UFW config settings and added ports like 24554 which when I check the status I can see the port is enabled for both IPv4 and IPv6
My router has port forwarding enabled from the WAN to the static IPv4 on the Debian box and certainly for IPv4 traffic all is good.
I'm stuck as to know why I can't seem to get ports open for my IPv6 address when I have UFW seemingly enabled.
Now the Pi that acts as the end point of the tunnel has a static IPv4 and IPv6 address perhaps I need to enable something in UFW for that address(ess)?
I'm also wondering if it's something to do with the tunnel stuff.
But it feels like I'm 90%+ sorted as I know the Debian box can happily poll outbound BinkD traffic without issue.