| 1 |
On Thu, Jan 19, 2012 at 4:32 PM, Mick <michaelkintzios@×××××.com> wrote: |
| 2 |
> On Thursday 19 Jan 2012 15:48:32 Michael Mol wrote: |
| 3 |
>> On Thu, Jan 19, 2012 at 10:37 AM, Tanstaafl <tanstaafl@×××××××××××.org> wrote: |
| 4 |
>> > I have a reasonable grasp of how to use IP addresses etc with IPv4, but |
| 5 |
>> > every time I start rading about IPv6 I get a headache... |
| 6 |
>> > |
| 7 |
>> > Does anyone know of a decent tutorial written specifically to those who |
| 8 |
>> > have an ok (but not hugely in-depth) understanding of IPv4, and doesn't |
| 9 |
>> > get bogged down in too many technical details, but simply explains what |
| 10 |
>> > you need to know to be able to transition to it and use it effectively |
| 11 |
>> > *and securely* - and/or how *not* to have to expose your entire private |
| 12 |
>> > network to the world (what IPv4 NAT protects you from)? |
| 13 |
>> |
| 14 |
>> I've been doing IPv6 presentations at LUGs and tech cons, and I'm |
| 15 |
>> getting scheduled for a few IPv6 topics at Penguicon...but I'm pretty |
| 16 |
>> sure I'm also not the most knowledgeable on this list wrt IPv6, |
| 17 |
>> either. Still, what would you like to know? (I can use your questions |
| 18 |
>> as fodder and experience for future presentations. ^^) |
| 19 |
> |
| 20 |
> |
| 21 |
> Now that IPv6 is enabled by default on Linux, is one meant to duplicate all |
| 22 |
> the IPv4 iptable rules also for IPv6? |
| 23 |
|
| 24 |
short answer: yes :) ip6tables works exactly like iptables, but with |
| 25 |
IPv6 addresses. |
| 26 |
|
| 27 |
longer answer: probably, but it depends on what kind of rules you have |
| 28 |
and whether all services you offer (or consume, if you block outbound |
| 29 |
traffic) require both IPv4 and IPv6. |
| 30 |
|
| 31 |
On my server, my rules are simple and just consist of opening certain |
| 32 |
ports and dropping everything else. The rules are exactly the same for |
| 33 |
IPv4 and IPv6 in that case. |
Archives