I try to limit the traffic translated by NAT64.
For this I set a fwmark to relevant traffic using "policy route6" and then try to match the fwmark in the nat64 rule.
vyos@vyos# show nat64 source rule 10 +match { + mark 1064 +} source { prefix 64:ff9b::/96 } translation { } [edit] vyos@vyos# commit [ nat64 ] VyOS had an issue completing a command. Report time: 2024-08-27 19:42:56 Image version: VyOS 1.5-rolling-202408231729 Release train: current Built by: [email protected] Built on: Fri 23 Aug 2024 17:29 UTC Build UUID: 1ce1f64b-ed7e-452f-b640-c2a6a5da8d4a Build commit ID: c5c6a1347c1533 Architecture: x86_64 Boot via: installed image System type: KVM guest Hardware vendor: QEMU Hardware model: Standard PC (Q35 + ICH9, 2009) Hardware S/N: Hardware UUID: ba602e12-5842-4508-bfb9-22720c542a94 Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/nat64.py", line 220, in <module> verify(c) File "/usr/libexec/vyos/conf_mode/nat64.py", line 73, in verify if is_node_changed(config, base_src + [f"instance-{num}", "mode"]): ^^^^^^ NameError: name 'config' is not defined [[nat64]] failed Commit failed