Cameron Kerr
On 26/02/2005, at 1:25 PM, Philip D'Ath wrote:
I'm trying to get NAT-PT support working on a Cisco DSL router to support native ipv6 clients behind it. I've done a lot of searching, and can't find the answers to what I'm doing wrong. I have two problems.
Why are you using NAT with IPv6? There is very little reason pros for using IPv6 with NAT, and many cons. Afterall, NAT is just a hack for IPv4 to prevent address exhaustion. IIRC, ISPs are not to give out single IP addresses, but rather /64 allocations.
Anyone care to correct me on this?
"NAT-PT (Network Address Translation - Protocol Translation) is an IETF RFC specification for an IPv4 to IPv6 protocol translator." - RFC2766 apparently. In answer to your specific question, some people also like DNAT for security reasons because it makes it harder to connect to internal hosts from the Internet than having routable IP addresses with no NAT, or static NAT. But I'm sure that's not what Philip's main aim is here. -- James Riden / j.riden(a)massey.ac.nz / Systems Security Engineer Information Technology Services, Massey University, NZ. GPG public key available at: http://www.massey.ac.nz/~jriden/