networking: change losurdo's IPv6 to addr_gen_mode=1

author Julien Moutinho <julm@sourcephile.fr>

Tue, 22 Sep 2020 14:19:36 +0000 (16:19 +0200)

committer Julien Moutinho <julm@sourcephile.fr>

Tue, 22 Sep 2020 14:20:22 +0000 (16:20 +0200)
author Julien Moutinho <julm@sourcephile.fr>
Tue, 22 Sep 2020 14:19:36 +0000 (16:19 +0200)
committer Julien Moutinho <julm@sourcephile.fr>
Tue, 22 Sep 2020 14:20:22 +0000 (16:20 +0200)
diff --git a/machines/losurdo/networking.nix b/machines/losurdo/networking.nix

index 9f9c1866bc9edd9e3897e6db44d63aa0d24a7771..08dc84e05810b10deb81a134c0378aadb6ccc42a 100644 (file)
--- a/machines/losurdo/networking.nix
+++ b/machines/losurdo/networking.nix
@@ -114,12 +114,14 @@ networking.nftables.ruleset = ''
    add rule inet filter output oifname "enp5s0" log level warn prefix "fw2net: " counter drop
    add rule inet filter fw2net ip daddr ${lanNet} log level info prefix "fw2net: lan: " counter accept comment "LAN"
  '';
-boot.kernel.sysctl."net.ipv6.conf.enp5s0.addr_gen_mode" = 3;
+boot.kernel.sysctl."net.ipv6.conf.enp5s0.addr_gen_mode" = 1;
+/*
  security.gnupg.secrets."ipv6/enp5s0/stable_secret" = {};
  # This is only active in stage2, the initrd will still use the MAC-based SLAAC IPv6.
  system.activationScripts.ipv6 = ''
    ${pkgs.procps}/bin/sysctl --quiet net.ipv6.conf.enp5s0.stable_secret="$(cat ${gnupg.secrets."ipv6/enp5s0/stable_secret".path})"
  '';
+*/
  networking.interfaces.enp5s0 = {
    useDHCP = true;
    #ipv4.addresses = [ { address = lanIPv4; prefixLength = 24; } ];
author	Julien Moutinho <julm@sourcephile.fr>
	Tue, 22 Sep 2020 14:19:36 +0000 (16:19 +0200)
committer	Julien Moutinho <julm@sourcephile.fr>
	Tue, 22 Sep 2020 14:20:22 +0000 (16:20 +0200)