From 1e1d9d761daa5e2d3f634be6eeb0b08fbbc648f8 Mon Sep 17 00:00:00 2001
From: Pavel Shirshov <pavelsh@microsoft.com>
Date: Wed, 10 May 2017 14:48:19 -0700
Subject: [PATCH 1/2] Disable ipv6 on mgmt interface

---
 build_debian.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/build_debian.sh b/build_debian.sh
index 7d763a46f2e5..eca37f30eb42 100755
--- a/build_debian.sh
+++ b/build_debian.sh
@@ -237,6 +237,8 @@ set /files/etc/sysctl.conf/net.ipv6.conf.eth0.forwarding 0
 
 set /files/etc/sysctl.conf/net.ipv6.conf.default.accept_dad 0
 set /files/etc/sysctl.conf/net.ipv6.conf.all.accept_dad 0
+
+set /files/etc/sysctl.conf/net.ipv6.conf.eth0.disable_ipv6 1
 " -r $FILESYSTEM_ROOT
 
 ## docker-py is needed by Ansible docker module

From e00cc52a6602945d0a5cbe26bb8327820372a5df Mon Sep 17 00:00:00 2001
From: Pavel Shirshov <pavelsh@microsoft.com>
Date: Wed, 10 May 2017 15:04:28 -0700
Subject: [PATCH 2/2] Use net.ipv6.conf.eth0.accept_ra_defrtr. it will remain
 ipv6 working on mgmt interface, but it will disable receiving default routes

---
 build_debian.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build_debian.sh b/build_debian.sh
index eca37f30eb42..009cf3bf4b88 100755
--- a/build_debian.sh
+++ b/build_debian.sh
@@ -238,7 +238,7 @@ set /files/etc/sysctl.conf/net.ipv6.conf.eth0.forwarding 0
 set /files/etc/sysctl.conf/net.ipv6.conf.default.accept_dad 0
 set /files/etc/sysctl.conf/net.ipv6.conf.all.accept_dad 0
 
-set /files/etc/sysctl.conf/net.ipv6.conf.eth0.disable_ipv6 1
+set /files/etc/sysctl.conf/net.ipv6.conf.eth0.accept_ra_defrtr 0
 " -r $FILESYSTEM_ROOT
 
 ## docker-py is needed by Ansible docker module