ip6tables rules

Discussion in 'Installation/Configuration' started by CSsab, Nov 26, 2011.

  1. CSsab

    CSsab New Member

    Hi,
    I need a bit of help with ip6tables on a testing master server.

    Heres what I have got:

    iptables -L

    Code:
    Chain INPUT (policy ACCEPT)
    target     prot opt source               destination
    fail2ban-pureftpd  tcp  --  anywhere             anywhere             multiport dports ftp
    fail2ban-sasl  tcp  --  anywhere             anywhere             multiport dports smtp
    fail2ban-ssh  tcp  --  anywhere             anywhere             multiport dports ssh
    
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination
    
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination
    
    Chain fail2ban-pureftpd (1 references)
    target     prot opt source               destination
    RETURN     all  --  anywhere             anywhere
    
    Chain fail2ban-sasl (1 references)
    target     prot opt source               destination
    RETURN     all  --  anywhere             anywhere
    
    Chain fail2ban-ssh (1 references)
    target     prot opt source               destination
    RETURN     all  --  anywhere             anywhere
    
    ip6tables -L

    Code:
    ip6tables v1.4.12: can't initialize ip6tables table `filter': Table does not exist (do you need to insmod?)
    Perhaps ip6tables or your kernel needs to be upgraded.
    I can't insmod on this virtual machine.

    Can I try to manually input the bastille rules?
    If so what are the recommended rules?
    Thank you for any ideas.
     
  2. till

    till Super Moderator

    The iptables rules you posted above are from fail2ban, not from bastille. So currently you dont run bastille on that server for ipv4.

    Bastille does not support ipv6. A new ipv6 capable firewall will be part of ispconfig 3.0.5.
     
  3. mccharlet

    mccharlet HowtoForge Supporter

    Hi,

    I have installed the version 3.0.5 RC2 and i not find how to configure ipv6 firewall

    Thanks
     
  4. till

    till Super Moderator

    You have to install the ufw firewall package of the linux distribution., then ensure that you dont have a firewaal enabled yet in ispconfig before you switch to ufw in server settings.
     
  5. mccharlet

    mccharlet HowtoForge Supporter

    Hi,

    Are you a documentation for debian to move bastille-firewall to ufw ?

    Best regards
     
  6. till

    till Super Moderator

    No, there is no documentation available yet on that topic.
     
  7. mccharlet

    mccharlet HowtoForge Supporter

    Hi,

    I have apply this

    update-rc.d -f bastille-firewall remove
    aptitude install ufw
    Define ufw in ispconfig configuration
    ufw enable

    I have rebooted, but the rules define in ispconfig are not define in the firewall.
    All ports are close.

    How to push the rules to the firewall ?

    Best regards
     

Share This Page