On 6 Sep 2013, at 04:58, Lorenzo Colitti <[email protected]> wrote: > On Fri, Sep 6, 2013 at 1:38 AM, David Magda <[email protected]> wrote: > This would be why I would lean towards an DHCP-based solution: you > configure certain subnets/prefixes to have "random" addresses assigned and > others to have MAC-based ones (or 'static-y' reservations). You'd keep the > assignment logs around for some period of time. > > You don't need to do this by giving the host different addresses in different > prefixes. What you want to do is pick different source addresses based on > what destination you're talking to.
Indeed, I agree it's a source address selection thing. > For example, suppose a given host has both 2001:db8:0:1::12 (static) and > 2001:db8:0:1:d723:fa68:bb1a:0743 (privacy). You would want to tell the host > to use the static address for your prefixes and the privacy address for > everything else. > > You can do that using the privacy preference flag defined in > draft-ietf-6man-addr-select-opt-11. I'll have to go back and look now it's been around the IESG, but from memory the privacy flag in that spec is global, not per prefix. In an earlier version it was per prefix, e.g. to 'forbid' privacy addresses on ULAs, but I recall that was reverted based on WG feedback. There was an I-D proposing a privacy flag for RAs, which was per prefix, but that was dismissed quite quickly by the WG, see http://tools.ietf.org/html/draft-gont-6man-managing-privacy-extensions-01. > Whenever you feel yourself wanting to use ULA and DHCP, bear in mind that's > almost always the wrong answer. :) Which is a different thread :) Tim
