From c6997f0ca98c628dd85f1789ce53e495e9a451bc Mon Sep 17 00:00:00 2001
From: Jernej Jakob <jernej.jakob@gmail.com>
Date: Wed, 22 Apr 2020 17:47:03 +0200
Subject: interfaces: T2362: sysctl to not generate IPv6 link-local addreses by
 default

---
 debian/vyos-1x.install                      |  1 +
 src/etc/sysctl.d/31-vyos-addr_gen_mode.conf | 14 ++++++++++++++
 2 files changed, 15 insertions(+)
 create mode 100644 src/etc/sysctl.d/31-vyos-addr_gen_mode.conf

diff --git a/debian/vyos-1x.install b/debian/vyos-1x.install
index dd8eebc0b..599f3f3f5 100644
--- a/debian/vyos-1x.install
+++ b/debian/vyos-1x.install
@@ -2,6 +2,7 @@ etc/dhcp
 etc/ppp
 etc/rsyslog.d
 etc/systemd
+etc/sysctl.d
 etc/udev
 etc/vyos
 lib/
diff --git a/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf b/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf
new file mode 100644
index 000000000..07a0d1584
--- /dev/null
+++ b/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf
@@ -0,0 +1,14 @@
+### Added by vyos-1x ###
+#
+# addr_gen_mode - INTEGER
+# 	Defines how link-local and autoconf addresses are generated.
+#
+# 	0: generate address based on EUI64 (default)
+# 	1: do no generate a link-local address, use EUI64 for addresses generated
+# 	   from autoconf
+# 	2: generate stable privacy addresses, using the secret from
+# 	   stable_secret (RFC7217)
+# 	3: generate stable privacy addresses, using a random secret if unset
+#
+net.ipv6.conf.all.addr_gen_mode = 1
+net.ipv6.conf.default.addr_gen_mode = 1
-- 
cgit v1.2.3