From 188d8f9ae428aa160b482b1a338f7a92f35f26c5 Mon Sep 17 00:00:00 2001
From: Karl Grube <karl@hudlergrube.com>
Date: Wed, 8 Nov 2023 07:43:05 +0100
Subject: [PATCH] fixed nat64 now correctly

---
 templates/frr_conf.j2 | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/templates/frr_conf.j2 b/templates/frr_conf.j2
index be40d2c..74f0425 100644
--- a/templates/frr_conf.j2
+++ b/templates/frr_conf.j2
@@ -79,7 +79,7 @@ router bgp {{bgp_asn}}
   network ::/0
   neighbor nat activate
   neighbor nat prefix-list internet out
-  neighbor nat prefix-list none in
+  neighbor nat prefix-list nat64 in
   neighbor firewalls activate
   neighbor firewalls prefix-list all out
   neighbor firewalls prefix-list internal in
@@ -150,12 +150,12 @@ ipv6 prefix-list my-networks seq {{(loop.index|int)*10+10}} deny any
 {%   endif %}
 {% endfor %}
 !
-ipv6 prefix-list internal seq 10 permit 64:ff9b::/96
+ipv6 prefix-list nat64 seq 10 permit 64:ff9b::/96
 {% for range in dc_ranges + anycast_ranges %}
-ipv6 prefix-list internal seq {{(loop.index|int)*20}} permit {{range}}
-ipv6 prefix-list internal seq {{(loop.index|int)*20+10}} permit {{range}} ge {{((range|regex_replace('.*/',''))|int)+1}}
+ipv6 prefix-list internal seq {{(loop.index|int)*20-10}} permit {{range}}
+ipv6 prefix-list internal seq {{(loop.index|int)*20}} permit {{range}} ge {{((range|regex_replace('.*/',''))|int)+1}}
 {%   if loop.last %}
-ipv6 prefix-list internal seq {{(loop.index|int)*20+20}} deny any
+ipv6 prefix-list internal seq {{(loop.index|int)*20+10}} deny any
 {%   endif %}
 {% endfor %}
 !
-- 
GitLab