[c-nsp] Off-Topic VPNv6 design concern
omar parihuana
omar.parihuana at gmail.com
Sun Aug 10 17:38:46 EDT 2014
Hi Folks,
Traditionally the service MPLS/VPNv4 use private IPv4 address (based on
RFC1918) the VPN could across many cities even countries and each country
could to have an Internet provider, one firewall running NAT (Private to
Public IPv4) and each country could surf on the Internet, meanwhile the
private address is used to corporate communications (mail servers, ERP,
etc, etc).
However my concern is with IPv6 addressing. If one company receive one /48
from local ISP the company could addressing (if it afford it) all the
branch in the world through subnettting. so my question is what should I do
if one branch need to surf on the internet independently? Request one new
/48 or /52 in each branch (or country) ? how works the VPNv6 service for
internal services, will be my company transit for IPv6 public subnets? or
should I use ULA IPv6 Address for corporate communications through VPNv6?
but what about if my internal private server need to surf on the internet?
(NAT66??) please your inputs will be appreciated...
Rgds.
--
Omar E.P.T
-----------------
Certified Networking Professionals make better Connections!
More information about the cisco-nsp
mailing list