IPv6 Interview Questions and critic
Peter John Hill
peterjhill at cmu.edu
Tue Aug 27 21:34:13 UTC 2002
On Tuesday, August 27, 2002, at 05:07 PM, Marshall Eubanks wrote:
> On Tue, 27 Aug 2002 14:43:38 -0400
> Peter John Hill <peterjhill at cmu.edu> wrote:
>>
>>
>> On Tuesday, August 27, 2002, at 10:41 AM, Joe Baptista wrote:
>>
>> Since it so easy for a host (relative to ipv4) to have multiple ip
>> addresses, I like what Microsoft has done. If told by a router, a Win
>> XP box will assign itself a global unicast address using EUI-64. It
>> will also create a global unicast anonymous address. This will not be
>> tied to the hardware, and the OS will also limit how long it uses that
>
> Wasn't this described in an Internet draft ? Do you know what the
> status is -
> I cannot seem to find it.
http://www.ietf.org/rfc/rfc3041.txt
Abstract
Nodes use IPv6 stateless address autoconfiguration to generate
addresses without the necessity of a Dynamic Host Configuration
Protocol (DHCP) server. Addresses are formed by combining network
prefixes with an interface identifier. On interfaces that contain
embedded IEEE Identifiers, the interface identifier is typically
derived from it. On other interface types, the interface identifier
is generated through other means, for example, via random number
generation. This document describes an extension to IPv6 stateless
address autoconfiguration for interfaces whose interface identifier
is derived from an IEEE identifier. Use of the extension causes
nodes to generate global-scope addresses from interface identifiers
that change over time, even in cases where the interface contains an
embedded IEEE identifier. Changing the interface identifier (and the
global-scope addresses generated from it) over time makes it more
difficult for eavesdroppers and other information collectors to
identify when different addresses used in different transactions
actually correspond to the same node.
> Marshall
>
>> address before deprecating that address and creating a new preferred
>> anonymous address. I can see servers using the EUI-64 address, while
>> clients use the anonymous address. It will allow servers to narrow
>> down
>> who is accessing their servers to a 64 bit subnet. That will be good
>> enough for most statistics, but will make it more difficult to do the
>> scarier tracking of users.
>>
>> I have noticed that the Linux and Mac OS X ipv6 implementations so not
>> create the private addresses automatically.
>> Peter Hill
>> Network Engineer
>> Carnegie Mellon University
>>
>
>
More information about the NANOG
mailing list