[CentOS] Learning some sad things about the state of IPv6

Fri May 30 03:57:32 UTC 2008
Rob Townley <rob.townley at gmail.com>

On Thu, May 29, 2008 at 10:53 PM, Matt Shields <mattboston at gmail.com> wrote:

> On Thu, May 29, 2008 at 11:43 PM, Christopher Chan
> <christopher at ias.com.hk> wrote:
> > Robert Moskowitz wrote:
> >>
> >> We have kernel support for IPv6 in Centos, but not stateful firewall
> >> support.
> >>
> >> That requires at least the 2.6.20 kernel, which means Fedora Core 6 or
> >> some other Linux distro.
> >>
> >> None of the various free Linux firewalls have IPv6 support.  Supposedly
> >> FWBuilder can manage Netfilters for a Linux Kernel, but that seems to be
> the
> >> extent of it.
> >>
> >> More sad facts as I uncover them.....
> >
> > Just use openbsd. We cannot expect Linux to rule everything. Use what
> best
> > fits the job.
>
> Not sure about FC6, but in both CentOS 4 & 5 there is an ip6tables.  I
> haven't used it, but I'm assuming that you can build rules just like
> you do with iptables.
>
> --
> -matt
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

My dd-wrt web page has a IPv6 checkbox, but don't know what it does.  i am
shunning IPv6 bc securing the private side of a NAT is hard enough.
Securing IPv6 seems much much much tougher.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20080529/c2b6ef9d/attachment-0005.html>