For those with an internal network using IPv6, wherein both a global and ula address are assigned, and a (annoyingly) dynamic prefix assigned by the ISP, it would be useful to be able to either prevent clients registering global addresses, and therefore only allowing ULA addresses, or preventing the internal DNS server and BIND module from returning global addresses in AAAA requests from Active Directory zones. Since the prefix assigned by the ISP can change at any time, addresses will become invalid. Clients don't seem to reliably trigger a DNS update request when their IPv6 address changes, which can lead to clients connecting to incorrect IPs. However, even when a client's global address changes, their ULA address remains the same. Therefore it would be useful to exclude global addresses from being returned in AAAA responses, to encourage clients to select ULA addresses as the destination address for a connection.
https://gitlab.com/samba-team/samba/merge_requests/971 includes a fix.
you can use "interfaces" and "bind interfaces only" to limit the IPs that Samba should use, this will also limit the IPs that are registered in DNS