2.8 KiB
| layout | title | description | date | tags | draft | extra | |||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| page | How I set up NAT64 | Working towards single-stack inside AS54041 | 2023-06-16 | networking | true |
|
Somewhere along the way of setting up AS54041 over the past few years I stumbled across a reference to NAT64.
As with most things IPv6 related, Google searches surface a bunch of hand-wave-y information about possible implementations, but not much in the way of useful tutorials for anyone wanting to try it out themselves (without expensive enterprise routers that is).
A quick overview of NAT64
Firstly, traditional NAT (technically NAT44) refers to the process of mapping one IPv4 address range to another.
For example, residential networks generally NAT something like 192.168.1.0/24 to a single public IPv4 address. Every time an internal host wants to send a packet out to the other side of the NAT, a temporary port is allocated on the public address, the router keeps track of this mapping, and the packet is masqueraded from the public address.
Now, if you are familiar with NAT44 (aka, NAT), NAT64 shouldn't be a crazy leap:
Doesn't look like anything changed? Well, that's because the only difference is that the private network is IPv6 instead of 4.
Building on this idea of cross-protocol NAT, the next logical progression (and only way I've ever seen this implemented in practice) is to NAT between the whole IPv6 Internet and the whole IPv4 Internet. Like this:
I'm pretty sure NAT64 was originally intended to be used in an Anycast configuration, but I've yet to learn of anybody doing this in practice.