IPv6 NPT and NAT for Linux
Dale W. Carder
dwcarder at wisc.edu
Wed Nov 30 20:29:54 UTC 2011
On Nov 30, 2011, at 2:14 PM, Ray Soucy wrote:
> For those who missed it, Linux is adding NAT for IPv6 to netfilter:
>
> http://www.spinics.net/lists/netfilter-devel/msg19979.html
>
> Along with tradition SNAT, and DNAT targets most of us are familiar
> with, a new NETMAP target is included that implements NPT (network
> prefix translation).
>
> I for one am happy to see this; despite not wanting to see people NAT
> IPv6 as the norm, having the NETMAP target will largely replace the
> use of SNAT and MASQUERADE for many deployments, while keeping those
> tools for the times when traditional NAT is desirable.
Regardless of what one thinks of v6 NAT, having a v6 REDIRECT target
in linux is long overdue. (trying to do it with tproxy hackery is
really a mess)
Dale
More information about the NANOG
mailing list