IPv6 gateway, was: Re: IPv6 foot-dragging
Jeroen van Aart
jeroen at mompl.net
Fri May 13 21:32:48 UTC 2011
Jeroen van Aart wrote:
> -I FORWARD -i eth0 -s 2001:db8::/64 -j ACCEPT
> -I FORWARD -i eth1 -d 2001:db8::/64 -j ACCEPT
Just in case if anyone'd be using it as an example. It's a good idea to
make your rules more restrictive.
Something like:
-I FORWARD -j DROP
-I FORWARD -s 2001:db8::/64 -j ACCEPT
-I FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
--
http://goldmark.org/jeff/stupid-disclaimers/
http://linuxmafia.com/~rick/faq/plural-of-virus.html
More information about the NANOG
mailing list