firewall IPv6 question when using HE
by gildbg from LinuxQuestions.org on (#6P2TK)
Hello,
I have a question about a firewall rule. On my pc I have IPv4 tunneling to HE.net on eth0.
This fire up interface he-ipv6 from which I receive IPv6 packets. So far so good.
I setup my firewall to allow IPv6 packets like:
Code:/usr/sbin/ip6tables -A INPUT -i eth0 -p udp -m udp --dport 53 -m state --state NEW -j ACCEPT
/usr/sbin/ip6tables -A INPUT -i eth0 -p tcp -m tcp --dport 53 -m state --state NEW -j ACCEPT
/usr/sbin/ip6tables -P INPUT DROPwhat should be correct interface to allowing ipv6 packets to DNS eth0 or he-ipv6 ?
Code: 0 0 ACCEPT 17 -- * * ::/0 ::/0 udp dpt:53 state NEW
0 0 ACCEPT 6 -- * * ::/0 ::/0 tcp dpt:53 state NEW
0 0 ACCEPT 17 -- eth0 * ::/0 ::/0 udp dpt:53 state NEW
0 0 ACCEPT 6 -- eth0 * ::/0 ::/0 tcp dpt:53 state NEWThanks.
I have a question about a firewall rule. On my pc I have IPv4 tunneling to HE.net on eth0.
This fire up interface he-ipv6 from which I receive IPv6 packets. So far so good.
I setup my firewall to allow IPv6 packets like:
Code:/usr/sbin/ip6tables -A INPUT -i eth0 -p udp -m udp --dport 53 -m state --state NEW -j ACCEPT
/usr/sbin/ip6tables -A INPUT -i eth0 -p tcp -m tcp --dport 53 -m state --state NEW -j ACCEPT
/usr/sbin/ip6tables -P INPUT DROPwhat should be correct interface to allowing ipv6 packets to DNS eth0 or he-ipv6 ?
Code: 0 0 ACCEPT 17 -- * * ::/0 ::/0 udp dpt:53 state NEW
0 0 ACCEPT 6 -- * * ::/0 ::/0 tcp dpt:53 state NEW
0 0 ACCEPT 17 -- eth0 * ::/0 ::/0 udp dpt:53 state NEW
0 0 ACCEPT 6 -- eth0 * ::/0 ::/0 tcp dpt:53 state NEWThanks.