NAT66 and 2nd interface IPv6 IP option for ULA [SOLVED]
-
@Zermus said in NAT66 support is needed and 2nd interface IPv6 IP option for ULA would be nice:
It would also be nice to have the option for interfaces to have a 2nd IPv6 address, like for ULA addresses and subnets. Say you want to use that ULA subnet over VPNs or whatnot.
You can certainly do that. I have both ULA & global addresses on my network.
-
You do it with Virtual IP?
-
I would expect to be able to do that using IPAliases, yes.
-
Yeah can't route stuff through an IP Alias though.
-
Hmm, to do what? You can source traffic from it. You can add a ULA gateway on it and route through that.
-
Interesting ok, well back to the original point, we need NAT66 lol.
-
@Zermus said in NAT66 support is needed and 2nd interface IPv6 IP option for ULA would be nice:
we need NAT66 lol.
I think pfSense already does that. But who is we?
-
If I understand it correctly you can't use NPt because the translation prefix conflicts with the assigned prefix on the WAN?
-
Yes sir, NPt is no joy.
-
You can just add a 1:1 NAT rule between the VIP and the ULA address. I tested that here and it works as expected.
-
Oh excellent I didn't realize that covered NAT66!
-
Checks out! I'm up and working with NAT66.
I feel so dirty..... Already doing NAT66 on IPv6 lol....
-
Ha, yup. NATing IPv6.... yikes!
-
@Zermus said in NAT66 and 2nd interface IPv6 IP option for ULA [SOLVED]:
You do it with Virtual IP?
I have both global and unique local addresses on my LAN.
-
@JKnott Well aren't you special? Some of us are not as privileged who want to run our servers behind a pfSense frontend over at Vultr lol.
