From c6997f0ca98c628dd85f1789ce53e495e9a451bc Mon Sep 17 00:00:00 2001 From: Jernej Jakob Date: Wed, 22 Apr 2020 17:47:03 +0200 Subject: interfaces: T2362: sysctl to not generate IPv6 link-local addreses by default --- src/etc/sysctl.d/31-vyos-addr_gen_mode.conf | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 src/etc/sysctl.d/31-vyos-addr_gen_mode.conf (limited to 'src') diff --git a/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf b/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf new file mode 100644 index 000000000..07a0d1584 --- /dev/null +++ b/src/etc/sysctl.d/31-vyos-addr_gen_mode.conf @@ -0,0 +1,14 @@ +### Added by vyos-1x ### +# +# addr_gen_mode - INTEGER +# Defines how link-local and autoconf addresses are generated. +# +# 0: generate address based on EUI64 (default) +# 1: do no generate a link-local address, use EUI64 for addresses generated +# from autoconf +# 2: generate stable privacy addresses, using the secret from +# stable_secret (RFC7217) +# 3: generate stable privacy addresses, using a random secret if unset +# +net.ipv6.conf.all.addr_gen_mode = 1 +net.ipv6.conf.default.addr_gen_mode = 1 -- cgit v1.2.3