Re: [SLUG] ip6tables config tutorial ... ?
Alex Samad wrote: remember there is not nat table in ipv6 Ahh!! Thanks for the heads up Alex. Kind Regards Kyle -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ip6tables config tutorial ... ?
On Wed, Jul 30, 2008 at 12:31:34PM +1000, Kyle wrote: > Thanks Daniel, > > doing a CentOS 5.2 install, so I expect that to have been taken care of. > > Kind Regards > > Kyle > > >> Correct -- assuming you are running a sufficiently recent kernel that >> the "IPv4 and IPv6 merge" happened in the iptables subsystem; if not I >> strongly advise you to upgrade before you do more firewall work. >> >> Regards, >> Daniel remember there is not nat table in ipv6 >> > -- > SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ > Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html > -- "I hope you leave here and walk out and say, 'What did he say?'" - George W. Bush 08/13/2004 Beaverton, OR signature.asc Description: Digital signature -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ip6tables config tutorial ... ?
Thanks Daniel, doing a CentOS 5.2 install, so I expect that to have been taken care of. Kind Regards Kyle Correct -- assuming you are running a sufficiently recent kernel that the "IPv4 and IPv6 merge" happened in the iptables subsystem; if not I strongly advise you to upgrade before you do more firewall work. Regards, Daniel -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] ip6tables config tutorial ... ?
Kyle <[EMAIL PROTECTED]> writes: > Can I ask has anyone come across a concise, clear ip6tables tutorial > pls? And if so, can you point me to it? There is no fundamental difference between firewalling IPv6 and IPv4 other than the small number of reserved/local address ranges, etc. Any tutorial covering IPv4 and iptables can be trivially extended to IPv6 by substituting the equivalent ip6tables command in most cases. > Or is it simply a case of std. iptables rules (with the exception of a > few - ipv6 specific - 'match' parameters) AND modules (namely > ip_conntrack, ip_nat, etc.) just work with ip6tables so long as you > obviously substitute any IP's you might have in your script with ipv6 > format addresses? Correct -- assuming you are running a sufficiently recent kernel that the "IPv4 and IPv6 merge" happened in the iptables subsystem; if not I strongly advise you to upgrade before you do more firewall work. Regards, Daniel -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
[SLUG] ip6tables config tutorial ... ?
Can I ask has anyone come across a concise, clear ip6tables tutorial pls? And if so, can you point me to it? Or is it simply a case of std. iptables rules (with the exception of a few - ipv6 specific - 'match' parameters) AND modules (namely ip_conntrack, ip_nat, etc.) just work with ip6tables so long as you obviously substitute any IP's you might have in your script with ipv6 format addresses? -- Kind Regards Kyle -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html