From owner-freebsd-net@freebsd.org Sat May 28 06:38:16 2016 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 53191B4DFD3; Sat, 28 May 2016 06:38:16 +0000 (UTC) (envelope-from stdin@niklaas.eu) Received: from box-fra-01.niklaas.eu (box-fra-01.niklaas.eu [IPv6:2a00:c98:2200:af07:6::1]) by mx1.freebsd.org (Postfix) with ESMTP id 1D4051F0F; Sat, 28 May 2016 06:38:15 +0000 (UTC) (envelope-from stdin@niklaas.eu) Received: by box-fra-01.niklaas.eu (Postfix, from userid 1001) id 1717161FEC; Sat, 28 May 2016 08:38:13 +0200 (CEST) Date: Sat, 28 May 2016 08:38:13 +0200 From: Niklaas Baudet von Gersdorff To: "freebsd-net@freebsd.org" , tinc@tinc-vpn.org, Mailinglists FreeBSD Subject: Re: IPv6, ULAs and FreeBSD Message-ID: <20160528063813.GE11877@box-fra-01.niklaas.eu> Mail-Followup-To: "freebsd-net@freebsd.org" , tinc@tinc-vpn.org, Mailinglists FreeBSD MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="FN+gV9K+162wdwwF" Content-Disposition: inline In-Reply-To: <58c1e30b-a39f-3faf-2a7c-f3ab8cb42fed@seacom.mu> User-Agent: Mutt/1.6.1 (2016-04-27) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 28 May 2016 06:38:16 -0000 --FN+gV9K+162wdwwF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Mark Tinka [2016-05-27 23:57 +0200] : > On 27/May/16 21:02, Kevin Oberman wrote: >=20 > > This is fine, but why not use link-local for the VPN links? That's > > the primary reason for them. >=20 > That's really not good advice. >=20 > I'd caution against using link-local addresses for any type of > service. >=20 > Link-local addresses are used for host-to-host communications on the > same Layer 2 segment. Routers will not forward traffic with link-local > addresses. >=20 > Besides, link-local addresses are automatically created. They cannot > be guaranteed to be unique anymore than they can be guaranteed to be > constant. Thanks for repeating that. That's how I understood it as a novice too. :-) And that's why I thought I should not go for them. Because I don't have many GUAs available, I thought I should go for ULAs then. Niklaas --FN+gV9K+162wdwwF Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJXSTzJAAoJEG2fODeJrIU/VogP/2fP2bq+FbsdyA/IcYSIQMgT psqrrMs7G/9CfS8CDSNI44PCe1Ja7ugk6P18W4gYH7t2ZLNaDABdz7NCThYQed1p 0bhVUFaZWyGvDmZV5H8CfAzZmJSyM5ikhfIUmw/rhRo8UfsWBIzNANOhBu739zrH 6Mmmb+tr3ToA35l+dmh0oR8+MHF80dbGnZ6Fj5id2R4aWVea2W2HhWCAoXX3sS2L uUGyXcdPaS63Y8G4p02v4uwSk7SrBEVMluDOi2d0Ds7aKAqYo0GcXfx9Llb/NruD DYYhgSlVeXqPMMNeaxCXHCJ2iWKoGqNulCoZmYlpTrP4w6J3POH4OoUtWa3MrP4r 0hf5ZuQKYt2wJSdkj3qlMq6utRT6IVT69hlB85aFpPRPFiFmMkRmfqyiye5I1jDB 7Qrrwi91IFNkbZLzy+u6LMEbcbwwdFxYJzOZcamC3VvLN2pNXZRg8HNJ/MsLAOP/ Vjk2QfD/pIaGDLiVn44jYBRC22EulWVYbTXhGc8DTZjaCiIMokZwJKH18AuFUf+N 4h83atlXQ6G8RmObptqiJPlsUUIunY7Qj/CuihMCekdtP73+mDrnfiGolwsVFor2 4b7KCvi2BSPDmTmFsgeIhkSrfVFTQinGSL7cf+HsRkAx8OiGlfxODhTspTmyzex7 xhKWZoGNhjnHpVsGaCHn =05TO -----END PGP SIGNATURE----- --FN+gV9K+162wdwwF--