Rework internal LAN #23

New issue

Open

opened 2023-01-25 22:03:50 +01:00 by raito · 1 comment

raito commented 2023-01-25 22:03:50 +01:00 (Migrated from git.rz.ens.wtf)

Copy link

We have been using 3500 VLAN as an internal LAN, providing basic NAT.

Now, we have proper public IPv4 in certain scenarios, making this internal LAN redundant.

In order to remove the NAT feature from this internal LAN, we have to deploy 464XLAT on our network and disable a public v4 route for 3500 VLAN.

• Deploy 464XLAT on router.
• Undeploy internal LAN interface on IPv6-only hosts
• Remove NAT from 3500 VLAN on the router
• Undeploy internal LAN interfaces and deprecate this VLAN.

We have been using 3500 VLAN as an internal LAN, providing basic NAT. Now, we have proper public IPv4 in certain scenarios, making this internal LAN redundant. In order to remove the NAT feature from this internal LAN, we have to deploy 464XLAT on our network and disable a public v4 route for 3500 VLAN. - [ ] Deploy 464XLAT on router. - [ ] Undeploy internal LAN interface on IPv6-only hosts - [ ] Remove NAT from 3500 VLAN on the router - [ ] Undeploy internal LAN interfaces and deprecate this VLAN.

raito commented 2023-01-25 22:06:51 +01:00 (Migrated from git.rz.ens.wtf)

Copy link

• TAYGA is already available in NixOS.
• Jool is not.

- TAYGA is already available in NixOS. - Jool is not.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serveur-photo

mrf-whitelist

deploy_dokuwiki

headscale

public-cof

rm-HackENS-keys

raito/add-remote-builders

remote-builder-01

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Klub-RZ/infrastructure#23

No description provided.