From owner-freebsd-net@FreeBSD.ORG Sun Jan 30 23:54:00 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0AEDD16A4CE for ; Sun, 30 Jan 2005 23:54:00 +0000 (GMT) Received: from 153-bem-1.acn.waw.pl (153-bem-1.acn.waw.pl [62.121.80.153]) by mx1.FreeBSD.org (Postfix) with SMTP id 9D3DD43D2D for ; Sun, 30 Jan 2005 23:53:58 +0000 (GMT) (envelope-from lukasz.stelmach@k.telmark.waw.pl) Received: (qmail 73307 invoked by uid 1000); 30 Jan 2005 23:53:57 -0000 Date: Mon, 31 Jan 2005 00:53:57 +0100 From: Lukasz Stelmach To: freebsd-net@freebsd.org Message-ID: <20050130235357.GA72888@tygrys.k.telmark.waw.pl> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="envbJBWh7q8WU6mo" Content-Disposition: inline User-Agent: Mutt/1.4.2.1i X-Mail-Editor: nvi X-GPG-Fingerprint: 68B8 6D4F 0C5E 291F C4E0 BBF4 35DC D8F2 C9BD 2BDC X-GPG-Key: http://www.ee.pw.edu.pl/~stelmacl/gpg_key.txt Subject: if_stf and rfc1918 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Lukasz Stelmach List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 30 Jan 2005 23:54:00 -0000 --envbJBWh7q8WU6mo Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Greetings All. Once I've discussed this matter with Hajimu UMEMOTO and he posted a patch that made it possible to run 6to4 router behind a nat (FreeBSD 4.x). Soon I will probably be upgrading my old system to 5.x release so I checked if newer stf code allows such operation and to my disapointment I've found out that it doesn't (or at least it seems so). The comment in the code says that it is a requirement of RFC3056. I've check it and in fact it says that RFC1918 addresses MUST NOT be used as NLAs in 6to4 addresses. But IMHO it does not mean that I can't run my 6to4 router behind a NAT at all. In such a situation the IPv6 address contains valid public IPv4 address and the private one in the IPv4 header is substitutet by NAT. So after the packets leave my site they are completly valid 6to4 packets. Also when 6to4 packets come to me they are handeled properly. My question now is why FreeBSD is so restrictive about it. Best regards, =A3ukasz Stelmach. PS. Please cc: the answer, thank you. --=20 |/ |_, _ .- --, Ju=BF z ka=BFdej strony pe=B3zn=B1, potworne =BF= =B1dze |__ |_|. | \ |_|. ._' /_. B=EAd=EA uprawia=B3 nierz=B1d, za pieni= =B1dze --envbJBWh7q8WU6mo Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFB/XOVNdzY8sm9K9wRAo8dAKCBlISxioK4RPJKupFuR30jInyIfQCdGpQw c5wUTATZRrdD8lXPNjseT20= =N6fR -----END PGP SIGNATURE----- --envbJBWh7q8WU6mo--