vpp icon indicating copy to clipboard operation
vpp copied to clipboard
verified publisher icon FDio

[VPP-2104] NAT66 1:1

Open vvalderrv opened this issue 10 months ago • 1 comments

Description

A NAT66 mechanism implemented as an VPP plugin sitting in the input feature arc or as a DPO.

Similar to VPP-2103, but instead of having bindings between inside /64s and outside /64s, binds individual inside host addresses to outside host addresses. Very similar in function to the traditional NAT44 (not NAPT44). The translation can still be done in a checksum neutral way, meaning that the mechanism is transport layer agnostic. No per-session state is kept, but a binding per inside host/address is required. So a binding database with an LRU function is required. This allows for a N:1 mapping of a large inside address space to e.g. a single outside /64. Supports multiple tenants and instances. E.g. each tenant can be given a reserved /64.

More state that is more dynamic, although it's not per-session state. Still possible to synchronise between instances, but may be less attractive than NPTv6 or NAT66 /64.

Assignee

Ole Trøan

Reporter

Ole Trøan

Comments

No comments.

Original issue: https://jira.fd.io/browse/VPP-2104

vvalderrv avatar Feb 02 '25 16:02 vvalderrv