Disabling IPv6 on *one* network interface in Debian

Frank Bulk - iName.com frnkblk at iname.com
Tue Feb 15 09:43:47 CET 2011 

After a server reboot this morning I did see link-local recreated, not being
wiped out by "post-up ip -6 addr flush eth0.100".  I've added a "up ip -6
addr flush eth0.100" and will see if that makes a difference in the future.

Frank

-----Original Message-----
From: Frank Bulk [mailto:frnkblk at iname.com]
Sent: Friday, February 04, 2011 12:05 PM
To: 'ipv6-ops at lists.cluenet.de'; 'ipv6-techsig at mailman.internetnz.net.nz'
Subject: RE: Disabling IPv6 on *one* network interface in Debian

Thanks for all the feedback on and off-list.  This is my final config
snippet:

=========================
iface eth0.100 inet static
        address a.b.c.d
        netmask 255.255.255.0
        network a.b.c.0
        broadcast a.b.c.255
        up sysctl -w net.ipv6.conf.eth0/100.autoconf=0
        up sysctl -w net.ipv6.conf.eth0/100.accept_ra=0
        post-up ip -6 addr flush eth0.100
=========================

The systcl's can apparently be done while the interface is up, which avoids
taking it down and up again like I had previously.  The last line removes
any link-local addresses.

Again, for those kernels which support
"net.ipv6.conf.<interface>.disable_ipv6 = 0", that is the better option.

Frank

-----Original Message-----
From: Frank Bulk [mailto:frnkblk at iname.com]
Sent: Friday, February 04, 2011 12:11 AM
To: 'ipv6-ops at lists.cluenet.de'; 'ipv6-techsig at mailman.internetnz.net.nz'
Subject: RE: Disabling IPv6 on *one* network interface in Debian

I'm use the 2.6.26-1-amd64 kernel, and it may be that
"net.ipv6.conf.<interface>.disable_ipv6 = 0" is only supported on newer
kernels.

Frank

-----Original Message-----
From: Frank Bulk [mailto:frnkblk at iname.com]
Sent: Thursday, February 03, 2011 8:42 PM
To: 'ipv6-ops at lists.cluenet.de'; 'ipv6-techsig at mailman.internetnz.net.nz'
Subject: Disabling IPv6 on *one* network interface in Debian

Due to our network setup I have asymmetric traffic occurring (post-IPv4 NAT
result) that can be resolved by disabling IPv6 on one of the server's VLANs.
I removed the IPv6 addresses manually using "ip -6 addr del <IPv address>
dev eth0.<VLAN number>" but that will only last until the next reboot.

Any ideas on how to disable IPv6 on *one* network interface in Debian?  My
google fu has failed me.

Frank

More information about the ipv6-ops mailing list