Manualshelf

Technical data

ManualsBrandsApplication Systems ManualsComputer equipmentADX-64
11121314151617181920
ServerIron ADX NAT64 Configuration Guide 3
53-1002288-02
Implementation Details
1
DRAFT: BROCADE CONFIDENTIAL
Disadvantages of NAT64
It involves translating addresses between IPv4 and IPv6, resulting in potential loss of
originating client IP addresses unless they are captured through some other means such as
client ip insertion available on the ServerIron ADX.
Implementation Details
This section describes the components required for a NAT64 implementation as well as
information that is common to the IPv6-only client to IPv4 resource configuration as described in
Chapter 2, “IPv6-only client to IPv4 resource”and the IPv4-only client to IPv6 resource configuration
as described in Chapter 3, “IPv4-only client to IPv6 resource”.
NOTE
The NAT64 gateway can't be combined to other ServerIron ADX features such as SLB, GSLB, TCS,
FWLB etc. This guide includes all features that can be enabled with a NAT64 gateway.
Requirements for all NAT64 configurations
The following are required in a IPv6-only client to IPv4 resource configuration:
The NAT64 mechanism is implemented on a ServerIron ADX that has (at least) two interfaces:
an IPv4 interface connected to the IPv4 network, and an IPv6 interface connected to the IPv6
network. IPv6 must be enabled on the ServerIron ADX.
The DNS64 resolver provides AAAA responses for any resource that has an IPv4 address but
not an IPv6 address. It generates the IPv6 address for the resource by concatenating a NAT64
prefix to its IPv4 address. When an IPv6 client queries DNS for the address of an IPv4-only
resource, it receives the IPv6 address generated by the DNS64 resolver. Since you can
optionally configure your DNS servers with these IPV6 addresses manually, this component is
not required
IPv6-only client to IPv4 components
The following is required in a IPv6-only client to IPv4 resource configuration:
NAT64 gateway
The NAT64 gateway receives the IPv6 packet whose Destination IPv6 address was generated by
the DNS64 resolver. It then translates the IPv6 address to an IPv4 address used by the resource.
Return IPv4 packet from the IPv4 resource is then mapped back to the destination IPv6 address
from the client's request. NAT64 is stateful meaning that the NAT64 device keeps track of all the
connections between the IPv6 clients and the IPv4 resource.
IPv4-only client to IPv6 components
The following is required in a IPv6-only client to IPv4 resource configuration: