On Tue, Jan 10, 2012 at 12:00 PM, <nullv@xxxxxxx> wrote: > Hi, > > I've been using radvd to set up a group of clients using RA broadcasts. I also have a group of client PCs using static IPv6 in a different ::/64 subnet altogether but on the same physical network. The two networks have to remain separate for security reasons. > > The problem I'm having is that clients on the two separate networks can still "see" each other through the automatic link-local (fe80::) addresses. I've added the line IPv6_AUTOCONF=no to network & my ifcfg-* files but I can't seem to stop this behaviour. > > Any hints, tricks, hacks, gotchas? > > Thanks Two steps: 1. Create a file named /etc/sysctl.d/disable-ipv6.conf in /etc/sysctl.d/ that will contain: net.ipv6.conf.all.disable_ipv6=1 This will disable IPv6 in all future reboots. In the mean time (current boot), type: sysctl -w net.ipv6.conf.all.disable_ipv6=1 2. Gotchas: sshd will continue to bind to IPv6 socket, breaking X11 forwarding [1]. The solution to the problem is to add the following line to /etc/sysconfig/sshd: OPTIONS=-4 - Gilboa [1] https://bugzilla.redhat.com/show_bug.cgi?id=735889 -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
