Temporary addresses cause interfaces to become anonymous, such as the interfaces of a host that needs to access public web servers. Temporary addresses implement IPv6 privacy enhancements as described in Privacy Extensions for Stateless Address Autoconfiguration in IPv6 (http://www.rfc-editor.org/rfc/rfc3041.txt).
Unlike a standard, autoconfigured IPv6 address, a temporary address consists of a 64-bit subnet prefix and a randomly generated 64-bit number. This random number becomes the interface ID segment of the IPv6 address. A link-local address is not generated with the temporary address as the interface ID.
You enable temporary addresses by configuring variables in the /etc/inet/ndpd.conf file, as shown in the following procedure.
The /etc/inet/ndpd.conf file contains statements that define values for the different time variables for the temporary addresses. Follow these general rules when adding statements in the file:
To apply a definition to all the interfaces in the system, use this statement syntax:
ifdefault variable value
To apply a definition to a specific interface, use this statement syntax:
if interface variable value
For the variables, the default unit of time is seconds. Simply provide the numeric value. To specify time in hours and days, use nh (40h) and nd (30d), respectively.
Before You Begin
Ensure that your role has the appropriate rights profile to perform this procedure. See Using Rights Profiles to Perform Network Configuration.
ifdefault|if interface TmpAddrsEnabled true
ifdefault|if interface TmpValidLifetime duration
The default valid lifetime is 7 days (7d).
ifdefault|if interface TmpPreferredLifetime duration
The default preferred lifetime is one day (1d).
ifdefault|if interface TmpRegenAdvance duration
The default value is 5 seconds (5).
$ svcadm restart ndp:default
$ ipadm show-addr -o all
The following example shows the output of the ipadm show-addr command after temporary addresses are created. The sample output here is an extract and only IPv6-related information is included.
$ ipadm show-addr -o all ADDROBJ TYPE STATE CURRENT PERSISTENT ADDR lo0/v4 static ok U------ U-- 127.0.0.1/8 net0/v4 dhcp ok U----D- U-- 203.0.113.225/24 lo0/v6 static ok U------ U-- ::1/128 net0/v6 addrconf ok U------ U-- 2001:db8:214:4fff:fef9:b1a9/32 net0/v6 addrconf ok U--t--S --- 2001:db8:414:60bb:815c:f4f7:8487:95c2/32
Temporary addresses are flagged with t under the CURRENT column. The D flag indicates an IP address that was configured as a result of DHCP negotiation. The S flag indicates an address that was configured as a result of IPv6 stateless address autoconfiguration.
To set up name service support for IPv6 addresses, see Administering Naming and Directory Services on an Oracle Solaris System.
To configure IPv6 addresses for a server, see How to Configure a User-Specified IPv6 Token.
To monitor activities on IPv6 nodes, see Chapter 1, Administering TCP/IP Networks in Administering TCP/IP Networks, IPMP, and IP Tunnels in Oracle Solaris 11.4.