[arch-general] IPv6 firewall, same as IPv4?
clemens fischer
ino-news at spotteswoode.dnsalias.org
Fri Aug 14 14:53:06 EDT 2009
Can I put IPv6 rules into the regular etc/iptables/iptables.rules file
containing only IPv4 rules otherwise?
I noticed that both /usr/sbin/iptables and /usr/sbin/ip6tables depend on
the same .so libs, so me thinks these libs need to have IPv6 support and
all is well.
Also, to make IPv6 work I put a rule to pass IPv6 protocol traffic
outbound on eth+. Inbound packets are propably handled by the customary
"-A INPUT -i eth+ -m state --state ESTABLISHED,RELATED -j ACCEPT", as
they get into the machine somehow. I didn't check packet counters,
though.
clemens
More information about the arch-general
mailing list