privazio/ansible-collection-vdc
2
0
Fork 0
Code Issues 63 Pull requests Projects Releases Packages Wiki Activity Actions

FERM IPV6 default policy #131

New issue
Open
opened 2022-06-30 15:58:39 +00:00 by rafael · 1 comment
rafael commented 2022-06-30 15:58:39 +00:00 (Migrated from gitlab.privaz.io)
Copy link

FERM is not dealing with IPV6 at all
default IPV-6 policies are accept.

default policy should be drop

FERM is not dealing with IPV6 at all default IPV-6 policies are accept. default policy should be drop
rafael commented 2022-06-30 16:07:17 +00:00 (Migrated from gitlab.privaz.io)
Copy link

this can easily achived with

# IPv6 rules
domain ip6 table filter {
    chain INPUT {
        policy DROP;
    }
    chain OUTPUT {
        policy DROP;
    }
    chain FORWARD {
        policy DROP;
    }
}

file as ferm/conf.d/noipv6.conf

this can easily achived with ``` # IPv6 rules domain ip6 table filter { chain INPUT { policy DROP; } chain OUTPUT { policy DROP; } chain FORWARD { policy DROP; } } ``` file as ferm/conf.d/noipv6.conf
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
edge-v2
stable-v2
master
feature-edge-acs-1.15.1
fix-edge-88
edge-v1
feature-edge-77b
fix-edge-79
fix-ubuntu-edge-79
fix-ubuntu-edge-73
stable-v1
feature-acs-ubuntu-edge
fix-issue-48
v2.2.10
v2.2.9
v2.2.8
v2.2.7
v2.2.6
v2.2.5
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.1.5
v2.1.4
v2.1.3
v2.1.2
v2.1.1
v2.0.28
v2.0.27
v2.0.26
v2.0.25
v2.0.24
v2.0.23
v2.0.22
v2.0.21
v2.0.20
v2.0.19
v2.0.18
v2.0.17
v2.0.16
v2.0.15
v2.0.14
v2.0.13
v2.0.12
v2.0.11
v2.0.10
v2.0.9
v2.0.8
v2.0.7
v2.0.6
v2.0.5
v2.0.4
v2.0.3
v2.0.2
v1.0.56
v2.0.1
v1.0.55
v1.0.54
v1.0.53
v1.0.52
v1.0.51
v1.0.50
v1.0.49
v1.0.48
v1.0.47
v1.0.46
v1.0.45
v1.0.44
v1.0.43
v1.0.42
v1.0.41
v1.0.40
v1.0.39
v1.0.38
v1.0.37
v1.0.36
v1.0.35
v1.0.34
v1.0.33
v1.0.32
v1.0.31
v1.0.30
v1.0.29
v1.0.28
v1.0.27
v1.0.26
v1.0.25
v1.0.24
v1.0.23
v1.0.22
v1.0.21
v1.0.20
v1.0.19
v1.0.18
v1.0.17
v1.0.16
v1.0.15
v1.0.14
v1.0.13
v1.0.12
v1.0.11
v1.0.10
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
Labels
Clear labels   
ACS 4.15

   
Doing

   
Regression

   
To Do

   
critical

This issue implies blocking progress

  
enhancement

New feature

  
major

This issue implies a major release

  
minor

This issue implies a minor release

  
operations

   
patch

this issue implies a patch release

No labels
ACS 4.15
Doing
Regression
To Do
critical
enhancement
major
minor
operations
patch
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
privazio/ansible-collection-vdc#131
No description provided.