[RFE]Support NAT64
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Invalid
|
Wishlist
|
Unassigned |
Bug Description
Currentlly, Neutron FIP just support NAT v4 to v4. But the ipv6 is the future, we must face it sooner or later.
I check the old related RFE and BPs[1], seems many customers or developers want it.
In our country, goverment push to use ipv6 internally, so we can quickly move from internal ipv4 network to ipv6 network. But the infrastructure can't keep up with the ipv6 transition, so maybe the external(public) ip address is still ipv4. So for NAT64, we want internal ipv4 nat to extenal ipv6, and internal ipv6 nat to extenal ipv4(eventhough this is a not valid case in theory, but this is a real issue need to be considered.)
Also we found the midonet already support more NAT cases, including part of above mentioned, so we need a standard one in Neutron can fix the issue.
[1] https:/
https:/
https:/
https:/
tags: | added: api rfe |
Changed in neutron: | |
importance: | Undecided → Wishlist |
Our experience with midonet with NAT64 is that is hard to scale, FIP addresses work as a 1-1 mapping (IPv4 FIP <--> internal IPv6. ) and because of the huge difference between the IPv6 and IPv4 network address space is not a great solution in the long term. I think that for that scenario will make more sense to implement a lbaas service that allows you to use an IPv4 FIP and use ipv6 hosts as backends.
I really think that for the cloud use base is better to configure a dual stack environment, so you can have VMs using ipv4, ipv6 or both. If is not possible to create an IPv6 uplink in your datacenter you always can create it using a 6in4 tunnel. I think that it could be useful to add a feature to neutron that allows us to create an IPv6 uplink using a 6in4 tunnel against a tunnel broker or other router.