Hi and Happy New Year! Finally I've managed to find time to play with tayga. It works pretty nice providing gateway from my IPv6-only local network to IPv4 Internet. Version from packages repository is a bit outdated, I promise to send patches soon.
However, one problem still exists - how to configure access from IPv4 Internet to local IPv6 hosts? There's an option that ties real IPv6 address to IPv4 address taken from pool. If you want to redirect a port to IPv6 host you create NAT44 and firewall rules and tayga will provide address tranlations after NAT and filtering. Question is - where to put these rules? I believe it should be somewhere around Network > Firewall > Redirections tab. For normal redirections two firewall rules are generated: 1. DNAT rule that translates given packets no new destination IP 2. FORWARD rules that allows access from given hosts/networks to this IP For NAT46 you'll also need to: -1. Select unused address from tayga IPv4 pool (this address will be "new destination IP") 0. Create static IPv4-IPv6 mapping in tayga configuration 1, 2 - as in IPv4 DNAT 3. Create FORWARD rule that allows access from 4-to-6 translated addresses (as in 2.) to your IPv6 address. These steps can be performed either by firewall scripts or by user. If anyone is interested in hacking firewall in such way, I'll put tayga mapping rules in /etc/config/firewall in, say, "redirect46" sections, this wont affect current configuration and make life a little easies in future. -- Regards, -- Sir Raorn. --- http://thousandsofhate.blogspot.com/
signature.asc
Description: Digital signature
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
