m0n0wall Forum - b512 - IPv6 + RA doesn't seem to work

I have a PPPoE WAN interface (on vr0) LAN on em0 and OPT1 on em1, sixxs tunnel is gif0 (but it seems I can't even get local IPv6 communication to work)

fe80::211:aff:fe55:efc6 is m0n0wall, fe80::345d:8ca0:b3a1:99b6 a Win7 client

Code:

$ ping6 -I em0 -S fe80::211:aff:fe55:efc6%em0 -c 3 fe80::345d:8ca0:b3a1:99b6
ping6: sendmsg: No route to host
ping6: sendmsg: No route to host
ping6: sendmsg: No route to host
PING6(56=40+8+8 bytes) fe80::211:aff:fe55:efc6%em0 --> fe80::345d:8ca0:b3a1:99b6
ping6: wrote fe80::345d:8ca0:b3a1:99b6 16 chars, ret=-1
ping6: wrote fe80::345d:8ca0:b3a1:99b6 16 chars, ret=-1
ping6: wrote fe80::345d:8ca0:b3a1:99b6 16 chars, ret=-1

--- fe80::345d:8ca0:b3a1:99b6 ping6 statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss

Pinging m0n0wall from Win7 fails too. Win7 can ping Win2003.

Code:

em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=98<VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM>
ether 00:11:0a:55:ef:c6
inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255
inet6 fe80::211:aff:fe55:efc6%em0 prefixlen 64 scopeid 0x2
inet6 2a01:1*****::1 prefixlen 70
nd6 options=41<PERFORMNUD,NO_RADR>
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active

Code:

Internet6:
Destination Gateway Flags Netif Expire
::/96 ::1 UGRS lo0 =>
default 2a01:198:200:831::1 UGS gif0
::1 ::1 UH lo0
::ffff:0.0.0.0/96 ::1 UGRS lo0
2002::/24 ::1 UGRS lo0
2002:7f00::/24 ::1 UGRS lo0
2002:e000::/20 ::1 UGRS lo0
2002:ff00::/24 ::1 UGRS lo0
2a01:1*****::1 2a01:1*****::2 UH gif0
2a01:1*****::/70 link#2 U em0
2a01:1*****::1 link#2 UHS lo0
2a01:1*****:1234::/70 link#3 U em1
2a01:1*****:1234::1 link#3 UHS lo0
fe80::/10 ::1 UGRS lo0
fe80::%vr0/64 link#1 U vr0
fe80::240:63ff:fedc:b2ad%vr0 link#1 UHS lo0
fe80::%em0/64 link#2 U em0
fe80::211:aff:fe55:efc6%em0 link#2 UHS lo0
fe80::%em1/64 link#3 U em1
fe80::211:aff:fe55:efc7%em1 link#3 UHS lo0
fe80::%lo0/64 link#4 U lo0
fe80::1%lo0 link#4 UHS lo0
fe80::%ngwan0/64 link#6 U ngwan0
fe80::240:63ff:fedc:b2ad%ngwan0 link#6 UHS lo0
fe80::%gif0/64 link#8 U gif0
fe80::240:63ff:fedc:b2ad%gif0 link#8 UHS lo0
ff01:1::/32 fe80::240:63ff:fedc:b2ad%vr0 U vr0
ff01:2::/32 fe80::211:aff:fe55:efc6%em0 U em0
ff01:3::/32 fe80::211:aff:fe55:efc7%em1 U em1
ff01:4::/32 ::1 U lo0
ff01:6::/32 fe80::240:63ff:fedc:b2ad%ngwan0 U ngwan0
ff01:8::/32 fe80::240:63ff:fedc:b2ad%gif0 U gif0
ff02::%vr0/32 fe80::240:63ff:fedc:b2ad%vr0 U vr0
ff02::%em0/32 fe80::211:aff:fe55:efc6%em0 U em0
ff02::%em1/32 fe80::211:aff:fe55:efc7%em1 U em1
ff02::%lo0/32 ::1 U lo0
ff02::%ngwan0/32 fe80::240:63ff:fedc:b2ad%ngwan0 U ngwan0
ff02::%gif0/32 fe80::240:63ff:fedc:b2ad%gif0 U gif0

Generated filter rules:

Code:

@1 pass out quick on lo0 all
@2 pass out quick on em0 from fe80::/10 to fe80::/10
@3 pass out quick on em1 from fe80::/10 to fe80::/10
@4 pass out quick proto ipv6-icmp from any to any
@5 pass out quick proto ipv6-icmp from any to any
@6 pass out quick proto ipv6-icmp from any to any
@7 pass out quick proto ipv6-icmp from any to any
@8 pass out quick proto ipv6-icmp from any to any
@9 pass out quick proto ipv6-icmp from any to any
@10 pass out quick proto ipv6-icmp from any to any
@11 pass out quick on gif0 proto udp from any port = dhcpv6-client to any port = dhcpv6-server
@12 pass out quick proto ipv6-icmp from 2a01:198:200:831::2/128 to any
@13 pass out quick on em0 all keep state
@14 pass out quick on gif0 all keep state
@15 pass out quick on em1 all keep state
@16 block out log quick all
@1 pass in quick on lo0 all
@2 pass in quick on em0 from fe80::/10 to fe80::/10
@3 pass in quick on em0 proto udp from any port = dhcpv6-client to ff02::1:2/128 port = dhcpv6-server
@4 pass in quick on em1 from fe80::/10 to fe80::/10
@5 pass in quick on em1 proto udp from any port = dhcpv6-client to ff02::1:2/128 port = dhcpv6-server
@6 pass in quick proto ipv6-icmp from any to any
@7 pass in quick proto ipv6-icmp from any to any
@8 pass in quick proto ipv6-icmp from any to any
@9 pass in quick proto ipv6-icmp from any to any
@10 pass in quick proto ipv6-icmp from any to any
@11 pass in quick proto ipv6-icmp from any to any
@12 pass in quick proto ipv6-icmp from any to any
@13 pass in quick on gif0 proto udp from any to any port = dhcpv6-client
@14 pass in quick proto ipv6-icmp from any to 2a01:198:200:831::2/128
@15 block in log quick on gif0 from 2a01:1*****::/70 to any
@16 block in log quick on gif0 from 2a01:1*****:1234::/70 to any
@17 block in log quick on em0 from !2a01:1*****::/70 to any
@18 block in log quick on em1 from !2a01:1*****:1234::/70 to any
@19 block in log quick on gif0 from fec0::/10 to any
@20 block in log quick on gif0 from any to fec0::/10
@21 block in log quick on gif0 from ::ffff:0.0.0.0/96 to any
@22 block in log quick on gif0 from any to ::ffff:0.0.0.0/96
@23 block in log quick on gif0 from ::224.0.0.0/100 to any
@24 block in log quick on gif0 from any to ::224.0.0.0/100
@25 block in log quick on gif0 from ::127.0.0.0/104 to any
@26 block in log quick on gif0 from any to ::127.0.0.0/104
@27 block in log quick on gif0 from ::/104 to any
@28 block in log quick on gif0 from any to ::/104
@29 block in log quick on gif0 from ::255.0.0.0/104 to any
@30 block in log quick on gif0 from any to ::255.0.0.0/104
@31 block in log quick on gif0 from ::/96 to any
@32 block in log quick on gif0 from any to ::/96
@33 block in log quick on gif0 from 2002:e000::/20 to any
@34 block in log quick on gif0 from any to 2002:e000::/20
@35 block in log quick on gif0 from 2002:7f00::/24 to any
@36 block in log quick on gif0 from any to 2002:7f00::/24
@37 block in log quick on gif0 from 2002::/24 to any
@38 block in log quick on gif0 from any to 2002::/24
@39 block in log quick on gif0 from 2002:ff00::/24 to any
@40 block in log quick on gif0 from any to 2002:ff00::/24
@41 block in log quick on gif0 from 2002:a00::/24 to any
@42 block in log quick on gif0 from any to 2002:a00::/24
@43 block in log quick on gif0 from 2002:ac10::/28 to any
@44 block in log quick on gif0 from any to 2002:ac10::/28
@45 block in log quick on gif0 from 2002:c0a8::/32 to any
@46 block in log quick on gif0 from any to 2002:c0a8::/32
@47 block in log quick on gif0 from ff05::/16 to any
@48 block in log quick on gif0 from any to ff05::/16
@49 skip 1 in proto tcp from any to any flags S/FSRA
@50 block in log quick proto tcp from any to any
@51 block in log quick on em0 all head 10100
@52 block in log quick on gif0 all head 10200
@53 block in log quick on em1 all head 10300
@54 block in log quick all
# Group 10100
@1 pass in quick from 2a01:1*****::/70 to 2a01:1*****::1/128 keep state group 10100
@2 pass in quick from any to any keep state keep frags group 10100
# Group 10200
@1 pass in quick proto ipv6-frag from any to any keep state keep frags group 10200
@2 pass in quick proto ipv6-icmp from any to any keep state group 10200
@3 pass in quick proto tcp/udp from any to any port >= 1050 keep state keep frags group 10200
# Group 10300
@1 pass in quick from any to any keep state keep frags group 10300

Pinging etc. doesn't show any entries in the firewall logs.

Also as said before, I don't see any RAs in wireshark on the client computer. However, the rtadvd.conf on m0n0wall looks fine, and generating the status information via kill -USR1 rtadvd reveals that the daemon at least tries to send an advertisement every few seconds.
My wireshark session ran for about 25 minutes, and I received exactly one RA with very high lifetime information (something like 259500)