I was reading a lot about different IPv6 transition technologies, but it's most about tunneling or providing an access to IPv4 Internet from IPv6 only host.
What I need is other way around.
There is a IPv6 only hosting services, with many services running only IPv6. Some of these services should visible from IPv4 Internet, they could be a normal Web or Mail server, or some P2P protocols.
With a technologies like NAT64 we can easily provide access from those IPV6 server to Internet, but other direction is difficult.
The only way I can see it's a static NAT64 mapping, but as you can imaging in hosting environment it's quite impossible. Assigning servers an additional (private) IPv4 and doing a normal NAT44 is not an option.
1:1 mapping is not very interesting also, we'd like to use a rather small IPv4 pool to share it between all IPv6 services.
Is there any existing solution?
Just an idea how it could look like. It's kind of reverse NAT64/DNS64:
- IPv4 clients sends an "A" DNS request for a certain service
- DNS server together with NAT device tries to create a NAT mapping between a IPv4 address from the pool and real IPv6 address for that service (NAT device should check if the IPv4:Port pair is available for mapping)
- DNS answer with that IPv4 address
- after some time the NAT mapping is deleted and IPv4:port is now available for other IPV6 service.
I don't know if it makes any sense, but to me it looks quite interesting possible solution.
One can achieve fully stateless approach using SIIT - which has the drawback that one must inject /128s into the IPv6 routing table - or using the statically defined translation based on stateful NAT64. I've used the latter variant on some lightly loaded servers, and it worked rather nicely (though only ASR1k at the moment).
ASA9.0 should also be able to do this using its NAT64 capabilities.
Is this something you are considering for your deployments ?
Today I'm going to talk about SD-wan including SD-WAN advanced lab ,, first thing let's take a small brief about the SD_WAN. What is SD-WAN? SD-WAN is Software define wide area network and SD-WAN is key part of the technology o...
Leopold Fisher, Cisco Meraki IoT specialist, will introduce you to new and innovative additions to the Meraki portfolio coming in April 2021.
Meraki Vision Session
MV smart camera range is getting big...
To participate in this event, please use the button to ask your questions
Dynamic Routing Protocols & IPv6
Have any questions on dynamic routing protocols with IPv6?
In this event we will answer all your questions related to dynamic routing pro...
Today I'm going to talk about SD-wan including SD-WAN advanced , first thing let's take a small brief about the SD_WAN.What is SD-WAN? SD-WAN is Software define wide area network and SD-WAN is key part of the technology of software-definednetworking ...
The cat's out of the bag! In October 2020, Cisco announced the Next Generation of Enterprising Routing Platforms: the Catalyst 8000 Edge Platforms Family including the Catalyst 8200, Catalyst 8300, Catalyst 8500, and Catalyst 8000V. The new family of Cats...