Re: [sunset4] [IPsec] ietf-nat64 - Internet VPN clients

You'll need to play DNS games if the VPN server if IPv4-only (or if your VPN config gives you a server IPv4 address to connect to). In that case you'll need to query the DNS64 server for the NAT64 prefix. Apple's IKEv2 client uses an OS-provided API to synthesize an IPv6 address from the

Re: [sunset4] [IPsec] ietf-nat64 - Internet VPN clients

Thanks for this, very useful. Is the vpn client also discovering the well known prefix for v6 address synthesis itself, or relying on the OS to provide that? Original message From: Tommy Pauly Date: 09/12/2016 17:32 (GMT+00:00) To: "Heatley, Nick"

Re: [sunset4] [IPsec] ietf-nat64 - Internet VPN clients

With our push to support NAT64 networks (without 464xlat) for Apple's devices, we added support for NAT64 networks to both our IKEv1 and IKEv2 clients a few releases ago. It was a fairly straightforward change. The main parts are making sure any IPv4 literals meant to be use outside the tunnel

Re: [sunset4] [IPsec] ietf-nat64 - Internet VPN clients

> On 9 Dec 2016, at 18:32, Bjoern A. Zeeb > wrote: > > On 9 Dec 2016, at 16:07, Bill Fenner wrote: > >> On Fri, Dec 9, 2016 at 8:41 AM, Heatley, Nick wrote: >> >>> Hi All, >>> >>> The sunset4 minutes suggest NAT64 SSID to become the