Hi,
We are implementing an CGNAT + IPv6 firewall project for a mobile service provider.
One of the project goals is to support scale out all active deployment of the stateful devices.
One of the challenges of inserting these stateful devices into the network is the requirement that all packets of the same flow will be routed through the same device,
while maintaining multi homing of the stateful device.
There are few ways to achieve this in the network, but there is also an option to work around this requirement by using NPTv6 on each device or even NAPT66 on each device.
I’m trying to understand if this option is deployed anywhere.
I’m trying to get feedback on possible technical issues with this approach.
Please no “NAT is bad and should be avoided with IPv6” argument, but if you have solid technical objections I’m very interested.
Cheers,
Amos