From owner-freebsd-net@FreeBSD.ORG Sat Aug 28 22:25:10 2010 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A674C10656A5 for ; Sat, 28 Aug 2010 22:25:10 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from mail2.fluidhosting.com (mx21.fluidhosting.com [204.14.89.4]) by mx1.freebsd.org (Postfix) with ESMTP id 36AD78FC16 for ; Sat, 28 Aug 2010 22:25:09 +0000 (UTC) Received: (qmail 15476 invoked by uid 399); 28 Aug 2010 22:25:07 -0000 Received: from localhost (HELO ?192.168.0.142?) (dougb@dougbarton.us@127.0.0.1) by localhost with ESMTPAM; 28 Aug 2010 22:25:07 -0000 X-Originating-IP: 127.0.0.1 X-Sender: dougb@dougbarton.us Message-ID: <4C798CC4.1060904@FreeBSD.org> Date: Sat, 28 Aug 2010 15:25:08 -0700 From: Doug Barton Organization: http://SupersetSolutions.com/ User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.8) Gecko/20100802 Thunderbird/3.1.2 MIME-Version: 1.0 To: ticso@cicely.de References: <20100828220844.GE82417@cicely7.cicely.de> In-Reply-To: <20100828220844.GE82417@cicely7.cicely.de> X-Enigmail-Version: 1.2a1pre OpenPGP: id=1A1ABC84 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, Bernd Walter Subject: Re: Problem with link-local addresses on USB interfaces X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 28 Aug 2010 22:25:10 -0000 On 8/28/2010 3:08 PM, Bernd Walter wrote: > Only the PCI and loopback interface responds to their own link local > address. > > I'm also puzzled about what I need to configure on an interface > to get an link-local address. > I've finally put ifconfig_ue0/1="UP" into rc.conf. You haven't said what version of FreeBSD you're using, but I'm assuming -current. The security officer asked to have the default changed so that link-local addresses are not accessible by default. I implemented a version of this such that the interface comes up with "ifdisabled" by default, which prevents all IPv6 traffic, but does not prevent you from configuring the interface. You can read in the ifconfig man page how to clear that flag, which will allow traffic to flow. There are also examples in /etc/defaults/rc.conf that demonstrate how to set up an ifconfig line to do nothing but establish a link-local if that's how you want the interface to be configured. hth, Doug