[136514] in North American Network Operators' Group
Re: quietly....
daemon@ATHENA.MIT.EDU (Iljitsch van Beijnum)
Thu Feb 3 12:11:09 2011
From: Iljitsch van Beijnum <iljitsch@muada.com>
In-Reply-To: <Pine.LNX.4.61.1102031133450.5148@soloth.lewis.org>
Date: Thu, 3 Feb 2011 17:49:44 +0100
To: Jon Lewis <jlewis@lewis.org>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 3 feb 2011, at 17:40, Jon Lewis wrote:
>> Hm, if you turn off the NAT66 function, wouldn't the traffic pass =
through unhindered, too?
> Outbound traffic would. Inbound, if on the inside, you're using IPv6 =
space that's not globally routed, won't. Just like what happens now =
with NAPT with rfc1918 space on the inside when you stop doing =
translation...private IP traffic leaks out...but nothing comes back =
because there is no return path.
Don't be so sure. Just like I can set my Airport base station up for NAT =
or bridge mode now, in a NAT66 future there would be a choice between =
"obtain addresses from ISP and advertise them on the LAN side" and =
"obtain addresses from ISP, advertise ULAs on the LAN side and =
translate". So if the setting gets flipped from the latter to the former =
you're still wide open.=
