| View previous topic :: View next topic |
| Author |
Message |
taerix
n00b
Joined: 15 Oct 2007
Posts: 6
|
 Posted: Mon Oct 15, 2007 2:32 am Post subject: Internet2 (or IPv6) and iptables |
 |
|
Is there a way to deny connections from hosts not on internet2? Or if that isn't a possibility, can I limit traffic to only IPv6?
I think iptables would be the way to go for this, not entirely sure though. Any method to accomplish this would be awesome. I heard some things about Hippie. http://hippie.oofle.com/tiki-index.php?page=Features. Dunno if that could help. |
|
| Back to top |
|
 |
blu3bird
Retired Dev
Joined: 04 Oct 2003
Posts: 614
Location: Munich, Germany
|
| Posted: Mon Oct 15, 2007 5:08 am Post subject: |
|
|
Iptables will do. Just make sure you don't use anything relying on ipv4...
| Code: | # clear chains
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
ip6tables -F INPUT
ip6tables -F OUTPUT
ip6tables -F FORWARD
# set policies
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
ip6tables -P INPUT ACCEPT
ip6tables -P OUTPUT ACCEPT
ip6tables -P FORWARD ACCEPT |
ps: you could also try unsetting CONFIG_INET but that would definitly break everything, at least x.org.
_________________
Black Holes are created when God divides by zero! |
|
| Back to top |
|
|
taerix
n00b
Joined: 15 Oct 2007
Posts: 6
|
| Posted: Mon Oct 15, 2007 5:35 am Post subject: |
|
|
| Thanks a ton! I'll try that. |
|
| Back to top |
|
|
|
Networking & Security
