1 |
On Thu, Jan 19, 2012 at 4:32 PM, Mick <michaelkintzios@×××××.com> wrote: |
2 |
> On Thursday 19 Jan 2012 15:48:32 Michael Mol wrote: |
3 |
>> On Thu, Jan 19, 2012 at 10:37 AM, Tanstaafl <tanstaafl@×××××××××××.org> wrote: |
4 |
>> > I have a reasonable grasp of how to use IP addresses etc with IPv4, but |
5 |
>> > every time I start rading about IPv6 I get a headache... |
6 |
>> > |
7 |
>> > Does anyone know of a decent tutorial written specifically to those who |
8 |
>> > have an ok (but not hugely in-depth) understanding of IPv4, and doesn't |
9 |
>> > get bogged down in too many technical details, but simply explains what |
10 |
>> > you need to know to be able to transition to it and use it effectively |
11 |
>> > *and securely* - and/or how *not* to have to expose your entire private |
12 |
>> > network to the world (what IPv4 NAT protects you from)? |
13 |
>> |
14 |
>> I've been doing IPv6 presentations at LUGs and tech cons, and I'm |
15 |
>> getting scheduled for a few IPv6 topics at Penguicon...but I'm pretty |
16 |
>> sure I'm also not the most knowledgeable on this list wrt IPv6, |
17 |
>> either. Still, what would you like to know? (I can use your questions |
18 |
>> as fodder and experience for future presentations. ^^) |
19 |
> |
20 |
> |
21 |
> Now that IPv6 is enabled by default on Linux, is one meant to duplicate all |
22 |
> the IPv4 iptable rules also for IPv6? |
23 |
|
24 |
short answer: yes :) ip6tables works exactly like iptables, but with |
25 |
IPv6 addresses. |
26 |
|
27 |
longer answer: probably, but it depends on what kind of rules you have |
28 |
and whether all services you offer (or consume, if you block outbound |
29 |
traffic) require both IPv4 and IPv6. |
30 |
|
31 |
On my server, my rules are simple and just consist of opening certain |
32 |
ports and dropping everything else. The rules are exactly the same for |
33 |
IPv4 and IPv6 in that case. |