[142902] in North American Network Operators' Group
Re: best practices for management nets in IPv6
daemon@ATHENA.MIT.EDU (Dave Hart)
Mon Jul 18 13:34:46 2011
In-Reply-To: <aeada2da-1815-482e-af28-b42bac96ebe0@jennyfur.pelican.org>
From: Dave Hart <davehart@gmail.com>
Date: Mon, 18 Jul 2011 17:34:16 +0000
To: Tim Franklin <tim@pelican.org>
Cc: nanog@nanog.org
Reply-To: davehart_gmail_exchange_tee@davehart.net
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mon, Jul 18, 2011 at 13:12, Tim Franklin <tim@pelican.org> wrote:
>> You can also use IPv6 privacy extensions (by default on Windows 7),
>> see rfc4941. For Linux, you can also enable it, which is not a
>> default.
>
> In the context of "addresses I'm using to manage kit", having devices
> randomly renumber themselves at regular intervals does *not* sound
> like it's going to make my life easy :(
Remember, every interface has multiple addresses in IPv6. While I
don't know if Linux behaves similarly, for Windows, the privacy
address is primarily used for outbound connections. The MAC-derived
IPv6 address is also still active, and is the one registered
automatically in DNS, so you would still reach your kit via stable
addresses (well, as stable as the physical network interface).
Cheers,
Dave Hart
_____
NANOG mailing list
NANOG@nanog.org
https://mailman.nanog.org/mailman/listinfo/nanog
