Date: Sun, 10 Jul 2011 07:38:36 +0000 From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: =?iso-8859-1?Q?R=E9my_Sanchez?= <remy.sanchez@hyperthese.net> Cc: freebsd-net@freebsd.org Subject: Re: RFC 6296 (NPT v6) Message-ID: <6ED7645C-6E24-41BB-B5AC-9858D5E94B10@lists.zabbadoz.net> In-Reply-To: <201107100513.47337.remy.sanchez@hyperthese.net> References: <201107100513.47337.remy.sanchez@hyperthese.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Jul 10, 2011, at 3:13 AM, Rémy Sanchez wrote:
> I was wondering if they were anyone currently implementing NPTv6 for FreeBSD ?
>
> If nobody is, since I need this feature and that the RFC is quite simple, I
> think I'll implement it (or run out of time trying to). However, it looks like
> you can't divert IPv6, and then I don't know what would be the best option to
> implement it: using netgraph might be a "cleaner" way to do it, however
> hacking directly into ipfw might be more direct.
>
> What do you think ?
pf allows you do do prefix rewriting with binat at least, like:
binat on $extif inet6 from $my_v6_ula_48 to !<my_v6_internal_networks> -> $my_v6_external_48
--
Bjoern A. Zeeb You have to have visions!
Stop bit received. Insert coin for new address family.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6ED7645C-6E24-41BB-B5AC-9858D5E94B10>