[Gllug] IPv6 and firewalls
Bruce Richardson
itsbruce at workshy.org
Tue Aug 11 11:18:42 UTC 2009
On Tue, Aug 11, 2009 at 10:01:45AM +0000, Chris wrote:
> On Tue 11 Aug, Alain Williams wrote:
> >
> > On Tue, Aug 11, 2009 at 09:45:35AM +0000, Chris Bell wrote:
>
> > > Am I correct?
> >
> > I didn't look, rolling your own is not that hard.
> >
> > Here is the (simple) IP6 firewall that I have on my bytemark box, enjoy.
> > Note that rate limiting has not (yet) been ported to IP6.
> >
>
> I was also considering bridge control, where a box silently passes
> selected packets between connections without itself being generally
> accessible or even visible except via specified route(s).
This is my preferred approach to firewalling. It used to require a lot
of patching and building of custom utilities but everything you need is
in the default kernels for most distributions these days.
--
Bruce
I unfortunately do not know how to turn cheese into gold.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 204 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20090811/0315836e/attachment.pgp>
-------------- next part --------------
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list