I'm "the" networking guy for my group but not "a" networking guy. Also, my little experience is mostly on Dell switches, not Cisco routers. Please keep this in mind while I butcher this request for help.
I have a domain controller on an IPv6 network with a switch and a router (ISR 4321). I have a server on the IPv4 side of the router that needs to join the domain. I'm setting up the router from scratch, so everything is default. In this current environment, there are no firewalls or ACLs. DHCP is not utilized anywhere. Below is the best I can do for a visualization. Not actual IPs, IPv6 is /64, IPv4 is /24. The domain controller is a blade server, so it must connect to that first switch before it can go anywhere else.
I have no control over the two IPv4 networks, I'm not allowed to have a DC on the front-end, no OS based 6to4 tunneling.
Basically I want any server on the 192net side to be able to talk to the domain controller on the IPv6 side well enough to join the domain. The original plan was skip the router and have the DC connect different NICs to each network, but it turns out multi-homing domain controllers is not recommended for several reasons. I thought NAT64 was the way around this, but I can't get it to work (hopefully due to my incompetence).
Option A: Get this to work. NAT64?
Option 3: Switch back to IPv4. We have several reasons for moving to IPv6 that I won't get into. IPv6 is preferred, but if it turns out it's not possible, we can go back to IPv4. Still need to deal with crossing the security networks using NAT or dropping the router and doing some VLAN routing.
So, is what I'm wanting to do possible? Is NAT64 the way to do it? How many licks does it take to get to the center of a tootsie roll pop?
No comments:
Post a Comment