FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

 
 
LinkBack Thread Tools
 
Old 06-11-2008, 11:19 AM
Adam Hardy
 
Default ip6tables

Hello,

I have a gateway server running two NIC cards, one for the internet and one for
the LAN. I set up normal iptables which I'm happy with, but I installed
apache-tomcat on the machine (for use on the LAN, not to serve the internet) and
I found it has some sort of requirement for IPv6.


I set up a really primitive ip6tables firewall to allow tomcat to do its stuff
(where eth2 is the internet NIC):


Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP 0 eth2 * ::/0 ::/0 state NEW

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP 0 eth2 * ::/0 ::/0 state NEW

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination


Is this going to be OK or does it allow any crackers to try out something nasty?

Thanks
Adam


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 

Thread Tools




All times are GMT. The time now is 11:19 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org