From owner-freebsd-net@freebsd.org Sun Jul 9 19:32:26 2017 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4CF22D938E2 for ; Sun, 9 Jul 2017 19:32:26 +0000 (UTC) (envelope-from list+net.freebsd@io7m.com) Received: from mail.io7m.com (mail.io7m.com [IPv6:2001:19f0:5:752:f000::]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.io7m.com", Issuer "arc7 CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 2AEAB6A88C for ; Sun, 9 Jul 2017 19:32:26 +0000 (UTC) (envelope-from list+net.freebsd@io7m.com) Received: from copperhead.int.arc7.info (cust187-dsl61.idnet.net [212.69.61.187]) by mail.io7m.com (Postfix) with ESMTPSA id 8BBE68681 for ; Sun, 9 Jul 2017 19:32:17 +0000 (UTC) Date: Sun, 9 Jul 2017 19:32:16 +0000 From: Mark Raynsford To: freebsd-net@freebsd.org Subject: Preventing the acquisition of IPv6 addresses Message-ID: <20170709193216.02b1c098@copperhead.int.arc7.info> Organization: io7m.com OpenPGP: id=8168DAE22B15D3EDC722C23D0F15B7D06FA80CB8; url=http://io7m.com/pgp/8168_DAE2_2B15_D3ED_C722_C23D_0F15_B7D0_6FA8_0CB8.key MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; boundary="Sig_/.YtIiX=LY+BV27J=ArV.+=z"; protocol="application/pgp-signature" X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Jul 2017 19:32:26 -0000 --Sig_/.YtIiX=LY+BV27J=ArV.+=z Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable Hello. My VPS provider gives me a /64, within which I'm expected to either use SLAAC to acquire IP addresses, or statically assign them myself. My provider does, however, require me to use router solicitation in order to learn routes. I choose to statically assign addresses on my instances. I'm doing the following: 1. I execute the following on boot: /sbin/ifconfig vtnet0 inet6 2001:19f0:0005:0752:f000:0000:0000:0000 prefi= xlen 64 accept_rtadv 2. I run the rtsold service: /usr/sbin/rtsold -f -F vtnet0 This allows me to acquire a proper route, but it also seems to mean that I acquire spurious IP addresses on the vtnet0 interface that I don't want=20 or need. I filter outgoing traffic, so nothing gets in or out on those=20 addresses, but I'd prefer if they just weren't there at all. Is it possible to acquire routes without also getting addresses assigned? M --Sig_/.YtIiX=LY+BV27J=ArV.+=z Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEgWja4isV0+3HIsI9DxW30G+oDLgFAllihMAACgkQDxW30G+o DLjZjBAAm4+fO5wKIGI0PI8daJOtcyEuZumXRLFYAgQkI3qaZBmZo9ENi2VXr20a 61YliRPMocZw0Jvtr1JJlvKdkf2zYprui6rhEsU3UMtgS4XlpwxYoSnHlmasO/+P JGQHpkmSOBHFDEvo8YQ8BwQhWkHH+/1WK5XmEi7xc4lvAxDweUqBDw5UOHR7RdRq ryOwp0+/IB3zk6uGcWYDm3Lpy01eRasZapIojU7s+G48LMDPauBXG6/pb5jpJ+fH uQF/9y3wkovisifdyLOa/on9hcq+vVMQS5cN0AJrODepqbmI+wssH6I7B0I+qSE7 rbQoWg/5vVtWbcT2ver/hHezgjIYRtt87698lcg8+uZQbBBFL05xrAMvHuoCe0zt XFp7GB8sq6cSdKnbs3W6jQHRRoRSF4Qdf/nLiy0kxnw2Y4NEU1Brj13mLA0JCJud L0gEIfC6IJXEpqD1dQSZiAiFasv5yKIoO2RfctzkX2Lwd2vC84XHedqoyfs4g3n1 kyPfczi3PAJMFbMbiua3qrEjg0PBqoSXp67WWYFzIMAG2O369zJSyutt9F8HwHcF hlgITcghZLvR+/zHiey4r6+yXwBlarIvRbOuTDHPVlDlx7O83vUV/F72Thf7JntV 6Drc6j8dhYKLqOMV9oBWD8L2eeOwfhgEb/VCzFoyiHMHkp2DT2I= =wEWH -----END PGP SIGNATURE----- --Sig_/.YtIiX=LY+BV27J=ArV.+=z--