From nobody Mon Mar 31 19:39:30 2025 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4ZRM0R25gsz5sSbB for ; Mon, 31 Mar 2025 19:39:51 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.95.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4ZRM0Q32Dmz3Z7M for ; Mon, 31 Mar 2025 19:39:50 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=relay.distal.com header.s=mail header.b=JUzv6Ddm; dmarc=none; spf=pass (mx1.freebsd.org: domain of cross+freebsd@relay.distal.com designates 168.235.95.80 as permitted sender) smtp.mailfrom=cross+freebsd@relay.distal.com dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding; bh=51bdxN4sZ16/dB8xEPAK4aZMV7D+HTaw0Hfp+JKtMvY=; b=JUzv6Ddmoqz1UCgPC9ZACSIF0A56tGc7MMmCNHVe5r97DDQkg9ozJ9TPjxqZs3OBRuzoaOSOO7bK5bPLnC8hRqX9TlkX5UeVr/akkCB52m0DCQL/JsyS/h3Vxi0uQ3cIuIn8SgGQYF4rIgqOcHEoABXWyrePIOv7UgH9Xn47wtUCtASZUw/oxOrkCL+sUOqlTc2buxSKrkXFt1JrbjAQiUUl3gcllHNqszeR/1sg/IL8nIKwT69KRpeNSQ A4v6LAe12WXUzMRYhfVPmn9cCmS3qSuvMubIH+xTXXEe7++/cCKXQvVwwm7CF3Qj3QFtwnonvD0mIx4PCkLssFKHL++Q== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Mon, 31 Mar 2025 19:39:43 +0000 Received: from smtpclient.apple ( [2603:5004:2002:a:aa56:85c9:1707:81a9]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id 0a310967 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO) for ; Mon, 31 Mar 2025 15:39:41 -0400 (EDT) From: Chris Ross Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.400.131.1.6\)) Subject: RFC4941 IPv6 privacy knobs and how to set them Message-Id: Date: Mon, 31 Mar 2025 15:39:30 -0400 To: freebsd-net@freebsd.org X-Mailer: Apple Mail (2.3826.400.131.1.6) X-Spamd-Result: default: False [-3.29 / 15.00]; RBL_SENDERSCORE_REPUT_9(-1.00)[168.235.95.80:from]; NEURAL_HAM_MEDIUM(-1.00)[-0.997]; NEURAL_HAM_LONG(-0.85)[-0.849]; NEURAL_HAM_SHORT(-0.75)[-0.748]; MV_CASE(0.50)[]; FORGED_SENDER(0.30)[cross@distal.com,cross@relay.distal.com]; R_SPF_ALLOW(-0.20)[+a:relay.dynu.com]; R_DKIM_ALLOW(-0.20)[relay.distal.com:s=mail]; MIME_GOOD(-0.10)[text/plain]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[relay.distal.com:+]; ARC_NA(0.00)[]; RCVD_TLS_ALL(0.00)[]; TAGGED_FROM(0.00)[freebsd]; DMARC_NA(0.00)[distal.com]; RCPT_COUNT_ONE(0.00)[1]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_NEQ_ENVFROM(0.00)[cross@distal.com,cross@relay.distal.com]; ASN(0.00)[asn:3842, ipnet:168.235.92.0/22, country:US]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; RWL_MAILSPIKE_POSSIBLE(0.00)[168.235.95.80:from]; FROM_HAS_DN(0.00)[] X-Rspamd-Queue-Id: 4ZRM0Q32Dmz3Z7M X-Spamd-Bar: --- Hello all. Looking at some changes I made to configure my new gw router last year but failed to document and check in, I find in my sysctl.conf: + # Use and prefer the RFC 4941 temporary addresses + net.inet6.ip6.use_tempaddr: 2 + net.inet6.ip6.prefer_tempaddr: 2 Looking across the interwebs, I see information about setting these to = 1, and on using `ipv6_privacy` in /etc/rc.conf (which set them to 1), which I did not do. Is there documentation about what these variables mean, and if =E2=80=9C2=E2= =80=9D is a useful value different than =E2=80=9C1=E2=80=9D? If so, how are they = different? Thanks. - Chris