You are not logged in.

#1 2008-02-03 12:09:37

dyscoria
Member
Registered: 2008-01-10
Posts: 1,007

IPtables and IP6tables

Just wondering about the usage of both of these and what I need to do to use ipv6.

I currently have ipv6 disabled, with rules set for iptables and the iptables DAEMON set in "/etc/rc.conf". If I am to enable ipv6, would I then need to set the rules again or does iptables also cover this? Instead of doing for example 'iptables -P OUTPUT ACCEPT' should I replace iptables and type 'ip6tables -P OUTPUT ACCEPT' and repeat for all the rules?

If this is the case, would I then have both iptables and ip6tables running as DAEMONS, or just one of them?

Many thanks.


flack 2.0.6: menu-driven BASH script to easily tag FLAC files (AUR)
knock-once 1.2: BASH script to easily create/send one-time sequences for knockd (forum/AUR)

Offline

#2 2008-02-03 12:32:15

VikM
Member
Registered: 2007-11-10
Posts: 50

Re: IPtables and IP6tables

With ipv6 disabled you don't need any ip6tables rules. Maybe just "ip6tables -A INPUT -j DROP" but I didn't tried this...
Just a suggestion, add these:

alias net-pf-10 off
alias ipv6 off

to /etc/modprobe.conf and the ipv6 module will not load on your next reboot.

Offline

#3 2008-02-03 12:34:16

dyscoria
Member
Registered: 2008-01-10
Posts: 1,007

Re: IPtables and IP6tables

Thanks, but that wasn't my quesion exactly. Maybe I worded it wrongly.

I currently have ipv6 disabled. My question was for what to do in terms of iptables and ip6tables if I were to enable ipv6.


flack 2.0.6: menu-driven BASH script to easily tag FLAC files (AUR)
knock-once 1.2: BASH script to easily create/send one-time sequences for knockd (forum/AUR)

Offline

Board footer

Powered by FluxBB