It works! - small step forward.

A number of virtual hosts are supported on this web server. The host (non-virtual) web content is this single file with a brief note on the addressing.

A long term goal is to transition to an IPv6 only web server but allow IPv4 access to the server via NAT46. The transition steps are:

  1. Dual stack web server with globally routable IPv4 and IPv6 addresses.
  2. Dual stack web server with globally routable IPv6 address and private (RFC 1918) IPv4 address. NAT4 using pf on a gateway host for IPv4 access.
  3. IPv6 only web server with globally routable IPv6 address. NAT46 using pf on a gateway host for IPv4 access.

We are now at step 2. This allows removal of a globally routable IPv4 address from the orleans.occnc.com domain while still running the web server within a FreeBSD jail for security reasons.

Step 3 is a further improvement, a step toward eliminating IPv4 in at least one of the local subnets leaving more hosts IPv6-only. This is going to have to wait until changes to pf to support NAT46 and NAT64 are ported from OpenBSD to a FreeBSD release. It might be that only the af-to support is needed, but af-to works with a different pf code base and af-to alone may not be easy to patch into the FreeBSD pf.