On Thu, May 29, 2008 at 10:53 PM, Matt Shields <<a href="mailto:mattboston@gmail.com">mattboston@gmail.com</a>> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="Ih2E3d">On Thu, May 29, 2008 at 11:43 PM, Christopher Chan<br>
<<a href="mailto:christopher@ias.com.hk">christopher@ias.com.hk</a>> wrote:<br>
> Robert Moskowitz wrote:<br>
>><br>
>> We have kernel support for IPv6 in Centos, but not stateful firewall<br>
>> support.<br>
>><br>
>> That requires at least the 2.6.20 kernel, which means Fedora Core 6 or<br>
>> some other Linux distro.<br>
>><br>
>> None of the various free Linux firewalls have IPv6 support. Supposedly<br>
>> FWBuilder can manage Netfilters for a Linux Kernel, but that seems to be the<br>
>> extent of it.<br>
>><br>
>> More sad facts as I uncover them.....<br>
><br>
> Just use openbsd. We cannot expect Linux to rule everything. Use what best<br>
> fits the job.<br>
<br>
</div>Not sure about FC6, but in both CentOS 4 & 5 there is an ip6tables. I<br>
haven't used it, but I'm assuming that you can build rules just like<br>
you do with iptables.<br>
<br>
--<br>
<font color="#888888">-matt<br>
</font><div><div></div><div class="Wj3C7c">_______________________________________________<br>
CentOS mailing list<br>
<a href="mailto:CentOS@centos.org">CentOS@centos.org</a><br>
<a href="http://lists.centos.org/mailman/listinfo/centos" target="_blank">http://lists.centos.org/mailman/listinfo/centos</a><br>
</div></div></blockquote></div><br>My dd-wrt web page has a IPv6 checkbox, but don't know what it does. i am shunning IPv6 bc securing the private side of a NAT is hard enough. Securing IPv6 seems much much much tougher.<br>