[CentOS] ip6tables on C7

Fri Oct 26 16:38:26 UTC 2018
Gordon Messmer <gordon.messmer at gmail.com>

On 10/26/18, Andrew Pearce <andrew at andew.org.uk> wrote:
> On 2018-10-26 16:25, mark wrote:
> I believe this should remove any ipv6 rules (rules and chains)
> ip6tables -F
> ip6tables -X

You might want to clear the other tables, too:

for x in filter nat mangle raw security ""
  ip6tables ${x:+-t $x} -F
  ip6tables ${x:+-t $x} -X

> You may need to set the default policies as well, as they I belive are
> to deny all incoming and unrestricted outgoing
> ip6tables -P INPUT DROP
> ip6tables -P FORWARD DROP
> ip6tables -P OUTPUT ACCEPT

firewalld appears to leave the policies as ACCEPT, which is their default.