DHCPv6 still feared and hated at Apple?, was Re: Mac OSX 10.7from Sabrina
Mark Kamichoff
prox at prolixium.com
Sat Aug 20 22:18:48 CEST 2011
On Thu, Aug 18, 2011 at 11:22:31PM +0300, Sabrina Friedman wrote:
> Sorry to come late to this thread, but I did some testing with a
> freshly-installed copy of Lion (clean install, not upgrade). DHCPv6
> does work as expected as you mention. I also noticed that
> privacy/temporary SLAAC addresses are enabled by default. Anyone else
> seeing that?
Indeed, and I can see this causing problems in certain environments,
such as enterprise networks. Doing the following:
% sudo sysctl -w net.inet6.ip6.use_tempaddr=0
... disables it. Originally this didn't work for me running 10.7.0, but
it seems to work correctly on 10.7.1. The temporary addresses are still
there after I set the sysctl, but they're not used for outgoing
connections anymore. I suspect they'll be purged after the lifetimes
expire. Although, I'm not sure how to set this on boot, since
/etc/sysctl.conf doesn't exist on OS X. A hacky rc.local script would
probably work, but there's got to be a better way.
- Mark
--
Mark Kamichoff
prox at prolixium.com
http://www.prolixium.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <https://lists.cluenet.de/pipermail/ipv6-ops/attachments/20110820/1bbc05f5/attachment.sig>
More information about the ipv6-ops
mailing list