ip6tables

To: List Debian User <debian-user@lists.debian.org>
Subject: ip6tables
From: Adam Hardy <adam.ant@cyberspaceroad.com>
Date: Wed, 11 Jun 2008 12:19:40 +0100
Message-id: <[🔎] 484FB4CC.4090507@cyberspaceroad.com>

Hello,

I have a gateway server running two NIC cards, one for the internet and one forthe LAN. I set up normal iptables which I'm happy with, but I installedapache-tomcat on the machine (for use on the LAN, not to serve the internet) andI found it has some sort of requirement for IPv6.

I set up a really primitive ip6tables firewall to allow tomcat to do its stuff(where eth2 is the internet NIC):


Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source   destination
    0     0 DROP       0        eth2   *       ::/0     ::/0        state NEW

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source   destination
    0     0 DROP       0        eth2   *       ::/0     ::/0        state NEW

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source   destination


Is this going to be OK or does it allow any crackers to try out something nasty?

Thanks
Adam

Reply to:

Prev by Date: Re: Automatic debiian installation
Next by Date: Re: pppoeconf does not work
Previous by thread: Re: swap space on a large system
Next by thread: OT: Laptop for College Bound Student?
Index(es):
- Date
- Thread