[sdnog] Temporary IPv6 Address

Sara Alamin sara.alamin at sudren.edu.sd
Thu Jan 29 08:26:56 SAST 2015

Thanks Nishal for the clear explanation.

but I still wondering why the internet see the temporary address , is that mean the temporary address has a high priority than static/DHCP address?  

>remember that with IPv6, you can have multiple addresses on the same interface at the same time. 
yes! honestly I cannot understand how that can be done? the interface use all the IP addresses on the same time ? and what is the benefit of that? 
نعم!  بصراحة لا أستطيع أن أفهم كيف يمكن أن يتم ذلك؟ كيف يمكن ان يستخدم اكثر من عنوان لواجهه واحدة  في نفس الوقت؟ وما هي الفائدة من ذلك؟

--Sara Alamin--

----- Original Message -----
From: "Nishal Goburdhan" <nishal at controlfreak.co.za>
To: "Tarig Yassin" <tariq198487 at hotmail.com>
Cc: sdnog at sdnog.sd
Sent: Wednesday, January 28, 2015 3:35:46 PM
Subject: Re: [sdnog] Temporary IPv6 Address

On 28 Jan 2015, at 10:57, Tarig Yassin <tariq198487 at hotmail.com> wrote:

> And is it necessary for every device? (this is the 1st time to hear about it Lol ) 

i'd have to check, but i don't think it's a *requirement* for IPv6 hosts.

sometimes, you might prefer not to use this.  for example, if you were the sysadmin of a corporate network, then you might be tempted to think that privacy addresses would be a nightmare, because you would not know which IPv6 address belonged to which host (since there is no correlation between mac address and IPv6 adddress).  in that case, using some sort of enterprise policy manager, you would probably want to disable this (remember i showed you some of the OS flags in my earlier message).

personally, i think that there are other ways to solve this;  ie. use some other way to match user <-> IP address so that you could do network auditing.  for example, you could use DHCP6 and force people to login, and capture their user-ids and tie that to a unique uuid for the device they login from...there are multiple ways to solve this problem   ;-)

as an individual, i prefer my privacy, so i generally like this feature.  so i do not suggest that you turn it off, because there are always smart-users who'd look for other ways around this...

Sdnog mailing list
Sdnog at sdnog.sd

More information about the sdnog mailing list