Look for an ipfw example using NPTv6
Andrey V. Elsukov
bu7cher at yandex.ru
Fri Jun 21 11:19:06 UTC 2019
On 20.06.2019 17:35, Michael Sierchio wrote:
> Oh, the problem is simply that my ISP assigns me a ::/64 but there is no
> guarantee that it's mine for the duration.
>
> I'm in the process of securing my own IPv6 block, but was hoping for an
> interim solution.
>
> One that occurred to me is to use a public ::/56 that's allocated (but
> unused) to me in an AWS VPC. Route advertisements from them would make
> them unusable directly, but then NPTv6 would work.
>
> Open to any suggestions.... ;-)
You can use some own prefix with global IPv6 addresses in the internal
network, and use NPTv6 with "ext_if external_ifname" option. It will
automatically use configured on the external interface prefix.
This feature is available in stable/12+.
--
WBR, Andrey V. Elsukov
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 554 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-ipfw/attachments/20190621/4bc732dc/attachment.sig>
More information about the freebsd-ipfw
mailing list