nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: IPv6 NPT and NAT for Linux

From: "Dale W. Carder" <dwcarder () wisc edu>
Date: Wed, 30 Nov 2011 14:29:54 -0600


On Nov 30, 2011, at 2:14 PM, Ray Soucy wrote:


For those who missed it, Linux is adding NAT for IPv6 to netfilter:

http://www.spinics.net/lists/netfilter-devel/msg19979.html

Along with tradition SNAT, and DNAT targets most of us are familiar
with, a new NETMAP target is included that implements NPT (network
prefix translation).

I for one am happy to see this; despite not wanting to see people NAT
IPv6 as the norm, having the NETMAP target will largely replace the
use of SNAT and MASQUERADE for many deployments, while keeping those
tools for the times when traditional NAT is desirable.



Regardless of what one thinks of v6 NAT, having a v6 REDIRECT target
in linux is long overdue.  (trying to do it with tproxy hackery is 
really a mess)

Dale
Previous By Date Next
Previous By Thread Next

Current thread: