ip6tables
- From: Adam Hardy <adam.ant@xxxxxxxxxxxxxxxxxx>
- Date: Wed, 11 Jun 2008 12:19:40 +0100
Hello,
I have a gateway server running two NIC cards, one for the internet and one for the LAN. I set up normal iptables which I'm happy with, but I installed apache-tomcat on the machine (for use on the LAN, not to serve the internet) and I found it has some sort of requirement for IPv6.
I set up a really primitive ip6tables firewall to allow tomcat to do its stuff (where eth2 is the internet NIC):
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP 0 eth2 * ::/0 ::/0 state NEW
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP 0 eth2 * ::/0 ::/0 state NEW
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Is this going to be OK or does it allow any crackers to try out something nasty?
Thanks
Adam
--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
- Prev by Date: Re: Automatic debiian installation
- Next by Date: Re: pppoeconf does not work
- Previous by thread: swap space on a large system
- Next by thread: OT: Laptop for College Bound Student?
- Index(es):
Relevant Pages
|
|
