I want to send my ssh via my low latency reliable connection, I want to route my...

sekh60 · 2026-01-02T21:34:02 1767389642

How is it not a routing rule with ipv6? Firewalls and routers typically support dynamic prefixes (even Vyos, pfSense, openSense do).

hdgvhicv · 2026-01-02T21:35:16 1767389716

How do I tell my phone that I want to send traffic to server A via isp1 and server B via isp2

sekh60 · 2026-01-02T21:36:27 1767389787

On your router?

edit Less flippantly, what are you wanting to base the routing rule on? What's your ipv4 routing rule?

DSCP is allowed in ipv6.

https://www.juniper.net/documentation/us/en/software/junos/c...

hdgvhicv · 2026-01-02T21:47:41 1767390461

Without nat, my understanding is the right way in v6 is to issue addresses of every network and then send a message to each end device asking it to use a specific ip address to route traffic and hope every client implements RFC 4191 in the right way.

sekh60 · 2026-01-03T01:22:07 1767403327

There's a few options I'm aware of.

The "proper" way would be to get your own ASN and use BGP to route the traffic.

If you're wanting to use a secondary WAN link as a backup for when the other goes down you could have the backup link's LAN have a lower priority. (So I guess hope everything implements RFC 4191 like you said).

You can use NAT66/NPTv6 if you want (though it's icky I guess).

How are you doing it currently?

hdgvhicv · 2026-01-03T23:06:02 1767481562

Nat 4, it’s trivial. But IPv6 tell me how terrible nat is despite it being the only solution in both the v6 and v4 world.

Sadly my 4g provider will not peer via bgp with me, even if I could provide an AS and Sufficiently large IP range.

I think my home ISP will actually peer with me, but I’d have to tunnel to them over my non-fibre connection, and there’s reduced resilience in that case.

At work that wouldn’t help at all, there are very few providers for many of our branch offices.

So once again ipv6 only works with “icky” nat, or on simple 1990s style connections, and not in the real world of multiple providers. Now sure I can do npt which means I don’t need to keep track of state, but then if I didn’t keep track of state I lose the benefits of a stateful firewall.

As such the only benefits of nat on v6 is that source ports will never need to change even if client 1 and client 2 both send to server 1 port 1234 from source port 5555. This helps with a handful of crappy protocols which embed the layer 4 data (port number) in a layer 6 or 7 protocol.

nine_k · 2026-01-03T00:57:04 1767401824

NAT66 is a thing.

hdgvhicv · 2026-01-03T23:06:23 1767481583

So is NAT44. Why is one bad and one good?