I'm just a developer so these networking hacks struggle to stay in my memory, but I understand this problem is typical of services implemented as virtual interfaces (which we're emulating by enclosing the translator in a separate namespace).
So... I can't give you any details, but I hope I can kick-start you by mentioning that I have seen people do this in two different ways: 1. proxy-nd: https://github.com/NICMx/Jool/issues/177#issuecomment-144648229 2. Give some private IPv6 address to Jool, then once the packet reaches the host, IPv6 NAT (NAT66) it into the proper public IPv6 address. A lot of people dislike NAT66 as a concept, so maybe try option 1 first. And I'm not sure if proxy-nd is the same as "bridging the two interfaces," but if not, that would be another option. This mailing list doesn't see much traffic. Nowadays we have a chat going on at https://matrix.ungleich.ch/#/room/#jool:ungleich.ch, and you can probably find much more knowledgeable people there. In fact, we recently touched the subject last Friday. On Tue, Feb 6, 2024 at 6:44 AM Mosbeck Martin via Jool-list <[email protected]> wrote: > > Hello everyone, > > thanks for this great tool and the amazingly good documentation! > > I have a question regarding node-based translation (as described in > https://nicmx.github.io/Jool/en/node-based-translation.html). I would > like to > use this for a router which has a public IPv6 LTE connection and clients > connected to it via a private IPv4 LAN. Both router and clients have > applications with hardcoded IPv4 addresses. > > I’m wondering what to choose as the "proxy address for the private Jool's > traffic" (2001:db8:1::3 in the example). From first experiments - which > worked > nicely - I understand, this address is not really private, but used in > packets > sent via the Internet. From my LTE provider I get an IPv6 address with a /64 > prefix. Can I just pick any address inside this /64 subnet without risking > address collisions with someone else? Can I be sure that any IPv6 LTE > provider > always offers me some range of addresses rather than only a single one? > > Thank You & Best > > Martin > > _______________________________________________ > Jool-list mailing list > [email protected] > https://mail-lists.nic.mx/listas/listinfo/jool-list _______________________________________________ Jool-list mailing list [email protected] https://mail-lists.nic.mx/listas/listinfo/jool-list
