Re: Ipv6 firewall in Sarge - iptable

To: debian-ipv6@lists.debian.org
Subject: Re: Ipv6 firewall in Sarge - iptable
From: Dominic Hargreaves <dom@earth.li>
Date: Mon, 24 Oct 2005 10:43:38 +0100
Message-id: <[🔎] 20051024094338.GK28892@urchin.earth.li>
In-reply-to: <20051024093216.25184.qmail@web33108.mail.mud.yahoo.com>
References: <20051024093216.25184.qmail@web33108.mail.mud.yahoo.com>

On Mon, Oct 24, 2005 at 05:32:15PM +0800, kmlhk79-ipv6@yahoo.com.hk wrote:

> I had running iptable on the tunnel gateway PC  for
> Ipv4. It give protection for Ipv4 network not Ipv6.
> 
> So, I need to set up a Ipv6 firewall in the Tunnel
> Gatway PC.
> 
> Here is my questions :
> 
> 1. Does the Debian Sarge Iptable also work for Ipv6 ?

You need to use the separate ip6tables package.

> 2. If it does, what command line I need to add in to
> the script file for my case ? 

You'll probably need different rules depending on how your iptables is
set up, since ip6tables (at least without patching) does not yet support
stateful filtering. You'll also obviously want to use the IP6 addresses
in your script rather than the IPv4 ones.

> 3. Can I add Ipv6 firewall rules into the same Iptable
> script file which is working for Ipv4 currently ?

If you've just used a hand-built shell script there's no reason this
wouldn't work.

Cheers,

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to:

Prev by Date: Re: qtype ANY + dns
Next by Date: How to use DNSmasq as Ipv6 DNS and DHCP server ?
Previous by thread: Re: qtype ANY + dns
Next by thread: How to use DNSmasq as Ipv6 DNS and DHCP server ?
Index(es):
- Date
- Thread