NAT64/DNS64 – prva open-source implementacija na voljo.

Marc Blanchet iz podjetja Viagenie je na nekaj IPv6 mailing listah oznanil, da so obelodanili prvo odprtokodno implementacijo NAT64/DNS64 translacijskega mehanizma imenovano ECDSYS, ki naj bi prevajal med IPv6 in IPv4 protokolom…

Kolikor sem po hitrem branju razumel, ECDSYS deluje za promet iz IPv6 omrežja v IPv4, obratna funkcija pa ni omenjena (tudi ni logična, saj ne moremo mapirati 128bitnega naslovnega prostora v 32bitno). Do sedaj so vsi translacijski mehanizmi žalostno propadli, saj so se spopadali s precejšnjimi težavami. Morda tokrat ne bo tako, a nisem preveč optimističen. V naslednjih dneh bom mehanizem stestiral v go6labu in prve vtise boste izvedeli tu, na go6.

Izvorna koda, moduli in nekateri patchi so na voljo na strani ECDSYS.

Jan Žorž

Copy/paste Marcovega announce e-maila:

This is to announce the availability of two NAT64-DNS64 open-source
implementations by Viagenie, as follows:

this implementation of NAT64 is made by modifying the PF packet filter
available on BSD systems. A new ‘nat64’ statement is created in the
pf.conf file to enable the nat64 functionality.

Linux Netfilter:
The implementation of NAT64 for linux is available as a kernel module. It uses Netfilter’s facilities for packet interception. The
configuration is done with parameters provided at module insertion.

As announced in july 2009 during IETF Stockholm, the companion DNS64
functionality is also available in two implementations, as follows:

this implementation of DNS64 is made by modifying the BIND DNS server.
A new “dns64-prefix” statement in options is created in the named.conf
file to enable DNS64 functionality.

this implementation of DNS64 is made by adding a module to the Unbound
DNS server. To enable the DNS64 functionality, the module should be
declared and the dns64-prefix statement should be added in the
unbound.conf file.

The two functionalities (NAT64 and DNS64) make a complete system for
translating IPv6-IPv4 packets. The source code, some pre-compiled
packages and project description are available at:

This project was funded by NLNet foundation
and Viagenie.

We are looking for feedback, patches, suggestions from the community.


Marc Blanchet, Simon Perreault, Jean-Philippe Dionne

  1. jl79
    February 16th, 2010 | 09:08

    Se je ze kaj testiral ta NAT64 – IP Translator? Verjetno se kot DNS-ALG lahko uporabi totd.

  2. February 16th, 2010 | 09:15

    Testiram. Bizarne zadeve se dogajajo, sedaj se njihov support z njimi ukvarja. V milisekundi mi ga je uspelo spravit v taksno stanje, da ni nicemur podobno.

    DNS ALG so napisali svoj, deluje pa cisto enako oziroma podobno kot totd.

  3. March 10th, 2010 | 20:37

    Aja, tole ni Ecdsys ampak Ecdysis. 🙂

