Hi,

 

We are implementing an CGNAT + IPv6 firewall project for a mobile service provider.

One of the project goals is to support scale out all active deployment of the stateful devices.

 

One of the challenges of inserting these stateful  devices into the network is the requirement that all packets of the same flow will be routed through the same device, while maintaining multi homing of the stateful device.

There are few ways to achieve this in the network, but there is also an option to work around this requirement by using NPTv6 on each device or even NAPT66 on each device.

 

I’m trying to understand if this option is deployed anywhere.

 

I’m trying to get feedback on possible technical issues with this approach.

Please no “NAT is bad and should be avoided with IPv6” argument, but if you have solid technical objections I’m very interested.

 

Cheers,

 

Amos

 

If you have received this e-mail in error, please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the content of this information is strictly prohibited.