DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 3rd April 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default Work being done to add NAT64 to OpenBSD pf

NAT64 is one of the transition mechanisms from IPv4 to IPv6.

From http://en.wikipedia.org/wiki/NAT64#NAT64

Quote:
NAT64 is an mechanism to allow IPv6 hosts to communicate with IPv4 servers. The NAT64 server is the endpoint for at least one IPv4 address and a IPv6 network segment of 32-bits (64:FF9B::/96). The IPv6 client embeds the IPv4 address it wishes to communicate with using these bits, and sends its packets to the resulting address. The NAT64 server then creates a NAT-mapping between the IPv6 and the IPv4 address, allowing them to communicate
According to http://marc.info/?l=openbsd-tech&m=130168007430450&w=2 NAT 64 is being worked on in OpenBSD's pf packet filter.

Quote:
The pfctl(8) grammar we conceived is based on the style of nat-to, so
if vr0 is your incoming interface then the ipv4-to-ipv6 translation
rule looks like:

pass in on vr0 inet af-to inet6 (2001::1 2001::/96)

and in a short form, considering a 1:1 mapping of the ipv4 address
inside the last 32 octets of an ipv6 address (allowed by the /96
prefix):

pass in on vr0 inet af-to inet6 2001::1

where 2001::1 is a *source* address of the target ipv6 capable interface.
It can also be specified in a (int0) notation. Source and destination
addresses don't need to be on the same subnet. 1:1 (or "af-to binat")
configurations are supported to.

The same applies to the ipv6-to-ipv4 translation. Unfortunately man page
bits for pfctl are still in development
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
Reply

Tags
ipv6, nat64

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Can anybody recommend a book for learning how to work with OpenBSD firewalls? jepettrey OpenBSD Security 6 24th November 2010 02:28 PM
has anyone successfully gotten an HP or Canon scanner to work w/OpenBSD? tetrodozombie OpenBSD General 3 7th September 2010 04:42 AM
ATI Catalyst.... Does it work? echoblack OpenBSD Installation and Upgrading 10 17th June 2009 09:04 AM
Crossplatform UI Work Turophile Programming 9 21st October 2008 11:56 PM
Getting Qt4 to work on FreeBSD enpey FreeBSD Ports and Packages 6 6th May 2008 07:20 AM


All times are GMT. The time now is 03:26 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick