Hello, The current vserver patch (1.26) doesn't limit the use of ipv6 addresses in vservers. The attached patch should disable ipv6 inside vservers, making it possible to enable ipv6 on the main server, without problems caused by users inside vservers.
Comments? Ideas? Greetings, Ivo De Decker
--- linux-2.4.25.orig/net/socket.c 2004-02-18 14:36:32.000000000 +0100 +++ linux-2.4.25/net/socket.c 2004-03-19 16:07:26.000000000 +0100 @@ -833,6 +833,10 @@ return -EAFNOSUPPORT; if (type < 0 || type >= SOCK_MAX) return -EINVAL; + + // vservers not allowed to use ipv6 + if (family == PF_INET6 && !vx_check(0, VX_ADMIN)) + return -EAFNOSUPPORT; /* Compatibility.