[c-nsp] IPv6 routing vs IPv4 Nating
Mikael Abrahamsson
swmike at swm.pp.se
Tue Aug 23 11:30:39 EDT 2016
On Mon, 22 Aug 2016, Scott Voll wrote:
> I'm not really able to wrap my mind around what best practice would be.
>
> Currently I have two exit points in my network. BGP / iBGP. Two Firewalls
> behind those. Each Firewall has a IPv4 Class C to NAT to.
>
> With publicly Routed IPv6 not nat'ing how do I setup the firewalls / bgp to
> route correctly? Do I have to leak all IPv6 routes to the internal network
> to make sure the IPv6 address comes back to the correct Firewall? Also
> thinking about redundancy if one ISP / BGP router / Firewall goes down, I
> need it to dynamically reroute to the other side. See attached.
>
> Thank for your input..... maybe I'm just missing something easy.
Doesn't the below IETF I-D match your setup?
https://tools.ietf.org/html/draft-bowbakova-rtgwg-enterprise-pa-multihoming-00
The fact that you don't have multiple ISPs shouldn't matter for the
problem description?
--
Mikael Abrahamsson email: swmike at swm.pp.se
More information about the cisco-nsp
mailing list