Description of problem: NETWORKING_IPV6 is not able to disable IPv6 Version-Release number of selected component (if applicable): initscripts-8.31.1-1 [techie@erazim ~]$ uname -a Linux erazim.local.lab.devnull.cz 2.6.17-1.2139_FC5 #1 Fri Jun 23 12:40:16 EDT 2006 i686 athlon i386 GNU/Linux How reproducible: add following lines to /etc/sysconfig/network: NETWORKING_IPV6=no IPV6INIT=no and reboot Steps to Reproduce: 1. try to disable IPv6 via /etc/sysconfig/network 2. reboot Actual results: IPv6 addresses are still assigned to Ethernet interfaces (via IPv6 autoconfiguration) Expected results: IPv6 should be disabled after reboot if /etc/sysconfig/network says so. Additional info: As a workaround IPv6 can be disabled by putting following lines into /etc/modprobe.conf: alias net-pf-10 off alias ipv6 off Without those lines in /etc/modprobe.conf NETWORKING_IPV6=no in /etc/sysconfig/network has no effect on the system (after reboot).
*** Bug 134471 has been marked as a duplicate of this bug. ***
*** Bug 125587 has been marked as a duplicate of this bug. ***
I wonder if it's simpler to deprecate NETWORKING_IPV6=no; I'm not sure that dynamically modifying the module config at runtime is the right answer.
And what about keeping NETWORKING_IPV6=no; and make it add ipv6 disable entries to be added to /etc/modprobe.conf upon boot ?
Please re-read comment #3. :)
When ntps loads, it creates a PF_INET6 socket. At this time, ipv6 module is automatically loaded unless /etc/modules.conf contains net-pf-10 off. NETWORKING_IPV6=no is not concerned since it doesn't impact the kernel & modules behavior. Maybe Anaconda installer should ask if ipv6 has to be enabled in order to remove a new by-default net-pf-10 off. Or maybe NETWORKING_IPV6=no should makes rc.sysinit to add a net-pf-10 off if it's not already present in modules.conf, and its absence or =yes do the contrary.
I think this should handle rc.sysinit When NETWORKING_IPV6=no is found in /etc/sysconfig/network, then rc.sysinit should create or modify a file like /etc/modprobe.d/ipv6 with the content alias net-pf-10 off and alias ipv6 off
... and if your entire root FS is readonly? This should be something configured at the same time as NETWOKRING_IPV6, IMO.
Can someone tell me why after adding: to /etc/modprobe.conf: alias net-pf-10 off alias ipv6 off to /etc/sysconfig/network: NETWORKING_IPV6=no and reboot, ipv6 is still being loaded? lsmod shows ipv6. Named barfs all the time on AAAA records (and causes "host" to output SERVFAILs). How can I definitively disable ipv6? Each rev of the OS this gets harder and harder to do...
Ignore my last post comment #11, my dunce cap was still on. Looks like the box I was testing is ignoring reboot -f commands and so I thought it was rebooted but it wasn't! Another box I tested shows that the above solution does indeed work. Now to solve why a box ignores reboot -f!!
Created attachment 145855 [details] silly modprobe rules Try the attached - it's rather inefficient in that it has modprobe reading shell config files, but it should work.
(In reply to comment #13) These modprobes rules work here.
OK. This may be in a future FC6 update, however, this is not going in future releases. as sourcing a config file every time the ipv6 module is attempted to be loaded is rather inefficient.
Can I ask what the current status of this bug is? We've got an FC7 machine with this same issue. Also, are the modprobe lines mentioned in the opening comment still the preferred workaround? Thanks.
If you want to unilaterally disable it, you want: install ipv6 /bin/true in /etc/modprobe.d/<whatever> If you want it to read NETWORKING_IPV6, something like comment #13 could work. However, that's so inefficient for the common case that it's not really practical for large scale deployment. As this config option no longer exists in Fedora 7, closing.
1. I had already made following entries in ifcfg-eth0 : IPv6INIT=NO IPV6AUTOCONF=NO 2. Following entries were made in /etc/modprob.conf” : alias net-pf-10 off alias ipv6 off 3. These entries in /etc/sysconfig/network : IPV6INIT=NO NETWORKING_IPV6=NO 4. This line is added to /etc/modprobe.d/blaclist : blacklist ipv6 5. Also I did one more in /etc/sysctl.conf : 6. `net.ipv6.conf.all.autoconf = 0` 7. `net.ipv6.conf.accept_ra = 0` Still I am unable to disable IPV6 on linux, any thought please
(In reply to IgnitedMind from comment #18) > Still I am unable to disable IPV6 on linux, any thought please It's not worth fighting any more. Just give in to the dark side and allow IPv6. The main reasons for disabling it (many daemons buggy) are mostly gone now. What I do is leave it alone, do it the "Fedora way", and block all I/O on 6 with ip6tables: $ip6tables -P INPUT DROP $ip6tables -P FORWARD DROP $ip6tables -P OUTPUT DROP $ip6tables -A INPUT -i lo -j ACCEPT $ip6tables -A OUTPUT -o lo -j ACCEPT That way it will stay until ISPs start giving us working 6 addresses. I think hell will freeze over before that happens.