What is NAT64? Understand and Configure NAT64
Learn what NAT64 is, how it enables IPv6-only clients to reach IPv4 services, and what is required to deploy it effectively.
NAT64 Basics
NAT64 is a translation mechanism that allows IPv6-only clients to communicate with IPv4-only servers. It works in conjunction with DNS64, which synthesizes AAAA records from IPv4 A records so IPv6 clients can initiate connections.
At the NAT64 gateway, IPv6 packets are translated into IPv4 packets with appropriate address and header adjustments, and responses are translated back into IPv6.
When NAT64 Is Useful
NAT64 is particularly useful in environments that want to run IPv6-only access networks while still supporting legacy IPv4 content on the internet. Mobile carriers and large enterprises sometimes adopt this model to simplify internal addressing while maintaining compatibility.
For applications that are fully IPv6-ready end to end, NAT64 is not needed. It is mainly a bridge for legacy services that have not yet migrated.
Deployment Considerations for NAT64
Implementing NAT64 requires DNS64 support, careful prefix planning, and consideration of how logging and troubleshooting will work across protocol boundaries. Some protocols that embed IP literals or rely on non-TCP/UDP traffic may not work seamlessly through NAT64.
Testing critical applications and monitoring performance are essential when rolling out NAT64, especially in production environments where outages would have broad impact.