Re: Trivial IPv6-for-Fedora HOWTO

From: Bernd Eckenfels
Date: Mon Aug 23 2004 - 04:10:18 EST

Next message: Stephane Eranian: "Re: [PATCH] OProfile ia64 performance counter support"
Previous message: David Mosberger: "Re: 2.6.8.1-mm3"
In reply to: Kalin KOZHUHAROV: "Re: Trivial IPv6-for-Fedora HOWTO"
Next in thread: Frank Matthieß: "Re: Trivial IPv6-for-Fedora HOWTO"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In article <cgbv4e$pd6$1@xxxxxxxxxxxxx> you wrote:
> And what exactly does this mean?
>
> "terminate the tunnel on your firewall" ???

it means that you should not forward the tunnel packets to internal hosts
but to configure the tunnel endpoint interface on (or before) the firewall.

> Would you enlighten me (and the list) how do you do that with ip{,6}tables?

Then you can run normal rules on the decapsulated packets.

Gruss
Bernd
--
eckes privat - http://www.eckes.org/
Project Freefire - http://www.freefire.org/
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephane Eranian: "Re: [PATCH] OProfile ia64 performance counter support"
Previous message: David Mosberger: "Re: 2.6.8.1-mm3"
In reply to: Kalin KOZHUHAROV: "Re: Trivial IPv6-for-Fedora HOWTO"
Next in thread: Frank Matthieß: "Re: Trivial IPv6-for-Fedora HOWTO"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]