7
Votes

NAT66 / IPv6 local unicast support for Omada-Gateways

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
 
7
Votes

NAT66 / IPv6 local unicast support for Omada-Gateways

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
NAT66 / IPv6 local unicast support for Omada-Gateways
NAT66 / IPv6 local unicast support for Omada-Gateways
2022-08-12 05:33:25

Currently it is only possible to use a pass-through prefix from one ISP in your network, or to have a static global unicast prefix yourself. But because there is no BGP-support, it is not possible to advertise this prefix to multiple ISP, therefore only one ISP will work at a time.

 

For Load-Balancing to become active, the router must create an internal local-unicast network and translate the addresses into global-unicast-addresses. Therefore this feature-request is about implementing NAT66 into the Omada-Gateways.

#1
Options
2 Reply
RE:NAT66 / IPv6 local unicast support for Omada-Gateways
2023-01-21 00:37:29
I would be interested in some of this as well. One thing I would say might make it more interesting would be to have Network Prefix Translation support to allow load balancing between two IPv6 prefixes(https://en.wikipedia.org/wiki/IPv6-to-IPv6_Network_Prefix_Translation).
#2
Options
RE:NAT66 / <span class='search-highlight'>IPv6</span> local unicast support for Omada-Gateways
2023-04-27 03:42:33
Hello, I would like to request to add support for more IPv6 features for TP-Link ER605 v2. It would be important to be able to control for "IP Group"/"IP Address", "Virtual Servers", "Load Balancing", "Static Route", "Policy Routing" and "Access Control" (Firewall ACLs) as it exists for IPv4 addresses. Currently, my environment is set up with private IPv4 address and uplinks from two ISPs with NAT configured for local network. My ER605 is "Load Balancing + Failover" features enabled, when one of the uplinks is unavailable, the other WAN interface will continue routing traffic to the Internet automatically. I don't have the budget for fancy links with SLA and BGP support. So I think my own RIPE-NCC IPv6 subnet will not work. On the other hand, having two independent links is more than enough. However, when I get an IPv6 prefix (prefixlen 64) from my ISP, I need to have one IP address facing the Internet (so I can forward packets to my ISP) and a second one facing my LAN. In IPv6, both must be routable. What do I do when I only get a single /64 prefix from my two ISPs? After researching I found the possibility to use Unique Local Addresses (ULA) known as the "Private Networks for IPv6". Network Prefix Translation (NPT) - RFC6296 - which might be called "NAT for IPv6". So I need to assign an internal IPv6 ULA to my LAN, and then enable NPt on each WAN interface, providing my internal ULA and each provider's IPv6 prefix to NPt. NPT has worked quite well for me on Linux + IPTABLES SNPT/DNPT environment. My intention was only to provide independence between my internal IPv6 addressing scheme and that of my ISP so that if I switch ISPs only the ISP prefixes need to change, not my entire network configuration.
#3
Options