Description | This article describes how to prevent one or more IPv6 addresses from using the NAT64 firewall policy. |
Scope | All versions of FortiOS. |
Solution |
There are 2 options to prevent IPv6 addresses from using NAT64 policies
config firewall policy All IPv6 addresses will be allowed except for 2001:ab::20.. It is possible to have a range or a list of IPv6 addresses.
Related article: Simplify NAT46 and NAT64 policy and routing configurations - FortiGate documentation. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.