Re: Default value of net.ipv6.bindv6only should revert to 0

To: debian-devel@lists.debian.org
Subject: Re: Default value of net.ipv6.bindv6only should revert to 0
From: Wouter Verhelst <wouter@debian.org>
Date: Sun, 11 Apr 2010 12:42:01 +0200
Message-id: <[🔎] 20100411104200.GB11370@celtic.nixsys.be>
In-reply-to: <[🔎] 20100409141457.GB10058@bongo.bofh.it>
References: <[🔎] 87r5msss71.fsf@molech.giraffy.jp> <[🔎] 4BBC2435.5050106@free.fr> <[🔎] 20100408090530.GA24674@nic.fr> <[🔎] 201004081145.47234.tiposchi@tiscali.it> <[🔎] 20100408120926.jmdmfqpthc0w8o4g@v1539.ncsrv.de> <[🔎] 20100409141457.GB10058@bongo.bofh.it>

On Fri, Apr 09, 2010 at 04:14:57PM +0200, Marco d'Itri wrote:
> On Apr 08, Hendrik Sattler <post@hendrik-sattler.de> wrote:
> 
> > I also don't really see the issues with bindv6only=0. If you listen on  
> > all interfaces, it makes is easier. If you only listen on specific  
> > interfaces, it's not in the way.
> This is not true, the big problem with bindv6only=0 is that you will get
> IPv4 connections mapped in IPv6 so applications need to convert the
> addresses everywhere (logs, ACLs processing, etc).

They don't *need* to do that. It can just be documented that if you use
IPv6, you need to use the v4-in-v6-mapped syntaxis.

Granted, that's a bit ugly, but it does work.

-- 
The biometric identification system at the gates of the CIA headquarters
works because there's a guard with a large gun making sure no one is
trying to fool the system.
  http://www.schneier.com/blog/archives/2009/01/biometrics.html

Reply to:

Follow-Ups:
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Salvo Tomaselli <tiposchi@tiscali.it>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: md@Linux.IT (Marco d'Itri)

References:
- Default value of net.ipv6.bindv6only should revert to 0
  - From: Kazuo Oishi <oishi@giraffy.jp>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Vincent Danjean <vdanjean.ml@free.fr>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Salvo Tomaselli <tiposchi@tiscali.it>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Hendrik Sattler <post@hendrik-sattler.de>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: md@Linux.IT (Marco d'Itri)

Prev by Date: Bug#577270: ITP: postfix-cluebringer -- Policydv2 (cluebringer) is a rewrite of the policyd anti-spam plugin for Postfix.
Next by Date: Bug#577413: ITP: ttf-thabit -- fixed width OpenType Arabic fonts
Previous by thread: Re: Default value of net.ipv6.bindv6only should revert to 0
Next by thread: Re: Default value of net.ipv6.bindv6only should revert to 0
Index(es):
- Date
- Thread