30 Nov
2011
30 Nov
'11
3:29 p.m.
On Nov 30, 2011, at 2:14 PM, Ray Soucy wrote:
For those who missed it, Linux is adding NAT for IPv6 to netfilter:
http://www.spinics.net/lists/netfilter-devel/msg19979.html
Along with tradition SNAT, and DNAT targets most of us are familiar with, a new NETMAP target is included that implements NPT (network prefix translation).
I for one am happy to see this; despite not wanting to see people NAT IPv6 as the norm, having the NETMAP target will largely replace the use of SNAT and MASQUERADE for many deployments, while keeping those tools for the times when traditional NAT is desirable.
Regardless of what one thinks of v6 NAT, having a v6 REDIRECT target in linux is long overdue. (trying to do it with tproxy hackery is really a mess) Dale