Kyle <[EMAIL PROTECTED]> writes:
> Can I ask has anyone come across a concise, clear ip6tables tutorial
> pls? And if so, can you point me to it?
There is no fundamental difference between firewalling IPv6 and IPv4
other than the small number of reserved/local address ranges, etc.
Any tutorial covering IPv4 and iptables can be trivially extended to
IPv6 by substituting the equivalent ip6tables command in most cases.
> Or is it simply a case of std. iptables rules (with the exception of a
> few - ipv6 specific - 'match' parameters) AND modules (namely
> ip_conntrack, ip_nat, etc.) just work with ip6tables so long as you
> obviously substitute any IP's you might have in your script with ipv6
> format addresses?
Correct -- assuming you are running a sufficiently recent kernel that
the "IPv4 and IPv6 merge" happened in the iptables subsystem; if not I
strongly advise you to upgrade before you do more firewall work.
Regards,
Daniel
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
