Discussion:
Win11 permanently disable TEMPORARY ipv6 addresses and ipv6 privacy extensions
(too old to reply)
Roland Schweiger
2024-08-02 01:12:08 UTC
Permalink
My setup: typical Windows11 PC, all updates.
Connected with Ethernet Adapter to FritzBox Router
The router gives me a true ipv4 address + an ipv6 subnet
As i want to be reachable from outside on ONE SINGLE IPV6 address (which
i also configure for a dyndns service) i do not want privacy extensions
and temporary ipv6 addresses which also seem to "change" the mac address
of my network adapter.

So my typical adapter looks like this

Ethernet-Adapter Ethernet:

Verbindungsspezifisches DNS-Suffix: fritz.box
IPv6-Adresse. . . . . . . . . . . :
2001:871:25e:e7d2:e567:d425:c123:b638
Temporäre IPv6-Adresse. . . . . . :
2001:871:25e:e7d2:102c:1aea:4b4c:b244
Verbindungslokale IPv6-Adresse . : fe80::73a6:732d:be52:e5e4%17
IPv4-Adresse . . . . . . . . . . : 192.168.180.20
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Standardgateway . . . . . . . . . : fe80::d624:ddff:fe29:18b3%17
192.168.180.1

Sorry it's in German but you can see what i mean.
TRIED EVERYTHING i found on the onternet.
all the netsh commands
netsh interface ipv6 set global randomizeidentifiers=disabled store=active

netsh interface ipv6 set global randomizeidentifiers=disabled
store=persistent

netsh interface ipv6 set privacy state=disabled store=active

netsh interface ipv6 set privacy state=disabled store=persistent

and the power shell commands
Set-NetIPv6Protocol -RandomizeIdentifiers Disabled

Set-NetIPv6Protocol -UseTemporaryAddresses Disabled

and resetting
netsh winsock reset
netsh int ip reset
ipconfig /release


it used to work for a while and i only got one ipv6 address with always
the same prefix and suffix.
At some windows update or something this must have changed.

Once i had installed Wireguard for a vpn, then uninstalled it again and
i am wondering if this might have also caused the problem.

sometimes a vEthernet switch keeps appearing too, but i have no Hyper-V
installed.

Please does someone know how to for ever get rid of the ipv6 privacy
extensions + temporary addresses?
also tried disabling router discovery with

netsh interface ipv6 set interface "Ethernet" routerdiscovery=disabled

but then the DNS won't work either...

have pulled all my hair out in the meantime i really am at the end of
any knowledge.

nice greetings from Vienna

Roland Schweiger
Roland Schweiger
2024-08-02 20:32:46 UTC
Permalink
What i found out - after rebooting the pc, looking into powershell, the
RandomizeIdentifiers is set to ENABLED
When i disable it, it is enabled again after every reboot. Why is this?
Post by Roland Schweiger
My setup: typical Windows11 PC, all updates.
Connected with Ethernet Adapter to FritzBox Router
The router gives me a true ipv4 address + an ipv6 subnet
As i want to be reachable from outside on ONE SINGLE IPV6 address (which
i also configure for a dyndns service) i do not want privacy extensions
and temporary ipv6 addresses which also seem to "change" the mac address
of my network adapter.
So my typical adapter looks like this
   Verbindungsspezifisches DNS-Suffix: fritz.box
2001:871:25e:e7d2:e567:d425:c123:b638
2001:871:25e:e7d2:102c:1aea:4b4c:b244
   Verbindungslokale IPv6-Adresse  . : fe80::73a6:732d:be52:e5e4%17
   IPv4-Adresse  . . . . . . . . . . : 192.168.180.20
   Subnetzmaske  . . . . . . . . . . : 255.255.255.0
   Standardgateway . . . . . . . . . : fe80::d624:ddff:fe29:18b3%17
                                       192.168.180.1
Sorry it's in German but you can see what i mean.
TRIED EVERYTHING i found on the onternet.
all the netsh commands
netsh interface ipv6 set global randomizeidentifiers=disabled store=active
netsh interface ipv6 set global randomizeidentifiers=disabled
store=persistent
netsh interface ipv6 set privacy state=disabled store=active
netsh interface ipv6 set privacy state=disabled store=persistent
and the power shell commands
Set-NetIPv6Protocol -RandomizeIdentifiers Disabled
Set-NetIPv6Protocol -UseTemporaryAddresses Disabled
and resetting
netsh winsock reset
netsh int ip reset
ipconfig /release
it used to work for a while and i only got one ipv6 address with always
the same prefix and suffix.
At some windows update or something this must have changed.
Once i  had installed Wireguard for a vpn, then uninstalled it again and
i am wondering if this might have also caused the problem.
sometimes a vEthernet switch keeps appearing too, but i have no Hyper-V
installed.
Please does someone know how to for ever get rid of the ipv6 privacy
extensions + temporary addresses?
also tried disabling router discovery with
netsh interface ipv6 set interface "Ethernet" routerdiscovery=disabled
but then the DNS won't work either...
have pulled all my hair out in the meantime i really am at the end of
any knowledge.
nice greetings from Vienna
Roland Schweiger
Loading...