Author Topic: IPv6 DUID-EN Support (Read 13554 times)

lrosenman · « **Reply #15 on:** April 23, 2019, 03:29:47 am »

OPNSense should get it's own. It's free and takes a couple of days.

(I just got one for my DBA).

They are FREE.

marjohn56 · « **Reply #16 on:** April 26, 2019, 12:43:33 pm »

Quote from: bimmerdriver on April 23, 2019, 03:25:50 am

This enterprise number is administered by Poul-Henning Kamp. Maybe he would explain how (or if) it's intended to be used for generating DUIDs.

It's used when generating EN type DUIDs, it's stated quite clearly in the RFC docs. The question is rather should we allow the use of other PENs or only the FreeBSD one or only the one that would be allocated to Opnsense. The latter would be my preference but in the meantime I've used the FreeBSD one.

hiren2827 · « **Reply #17 on:** April 27, 2019, 12:31:55 pm »

1. First of all, we have to define that this is a type 2 DUID (EN) by prepending two octets: "00:02"
2. Then, we have to convert the decimal to hex and format it as four octets, so "3562" becomes "DEA". Append it to the type indicator.

marjohn56 · « **Reply #18 on:** April 27, 2019, 12:37:39 pm »

That is all done and it's in the PR.

gstuartj · « **Reply #19 on:** April 28, 2019, 12:02:05 am »

Quote from: marjohn56 on April 27, 2019, 12:37:39 pm

That is all done and it's in the PR.

Yeah, that dude just copied two lines from a previous post of mine in this thread without context. Can't tell if they're trying to make a point or if it's some kind of spam test, honestly.

Maurice · « **Reply #20 on:** April 29, 2019, 08:41:41 pm »

Quote from: marjohn56 on April 26, 2019, 12:43:33 pm

The question is rather should we allow the use of other PENs or only the FreeBSD one or only the one that would be allocated to Opnsense. The latter would be my preference but in the meantime I've used the FreeBSD one.

I think it's a good idea to only use the FreeBSD PEN (or a yet to register OPNsense one) for the auto generation ('Insert a new EN DUID' link). Users can always enter a DUID-EN with custom PEN by calculating and entering it manually, right? Or did you mean whether to actively block that by asking "should we allow the use of other PENs"?

(Oh, and I think you forgot the hex conversion in your PR. Should be: "\x00\x02\x00\x00\x08\xBE")

Cheers

Maurice

AdSchellevis · « **Reply #21 on:** April 30, 2019, 04:52:19 pm »

We've just applied for a PEN, if it gets assigned I will make sure to post it here.

AdSchellevis · « **Reply #22 on:** May 01, 2019, 08:39:17 pm »

ok, we've received feedback from iana:

Quote

Your Private Enterprise Number is: 53869

Below is a copy of your PEN record. This record will be visible in the PEN registry within an hour.

The PEN registry is available at the following address:

http://www.iana.org/assignments/enterprise-numbers

Author Topic: IPv6 DUID-EN Support (Read 13554 times)

lrosenman

Re: IPv6 DUID-EN Support

marjohn56

Re: IPv6 DUID-EN Support

hiren2827

Re: IPv6 DUID-EN Support

marjohn56

Re: IPv6 DUID-EN Support

gstuartj

Re: IPv6 DUID-EN Support

Maurice

Re: IPv6 DUID-EN Support

AdSchellevis

Re: IPv6 DUID-EN Support

AdSchellevis

Re: IPv6 DUID-EN Support