I'm not sure I believe in the need for topology hiding. But if I did,
on v6 I'd just allocate a separate subnet or group of subnets for
external access. If really necessary, have such hosts set up IP over
IP or L2TP tunnels to a concentrator; that will make this external
access net look flat.
That idea has been advanced quite a few times, but there is not a whole lot of
code written or products deployed. There are a few interesting issues, e.g. the
cost of tunneling versus in terms of overhead or management, or the deployment
of adequate source address selection policies.
Actually, rather than tunneling, have we seriously consider flat host based
routing in a corporate network? A combination of DHT and caching technologies
ought to make that quite scalable.
Of course, Iljitsch points an interesting issue. If NAT66 behaves
exactly like, say, NAT 64, then why would the organization bother to
use IPv6 rather than sticking with net 10?
Services like Microsoft DirectAccess?
Direct Access certainly does not require that enterprises deploy NAT66...
-- Christian Huitema
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf