Current-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

netbsd-7 ipfilter failure?


I am trying to configure an ipv6 only host. To block the ipv4 traffic I added the following filter to /etc/ipf.conf:

block in on ixg0

The filter works, but also blocks ipv6 traffic. So I tried to enable ipv6 in /etc/ipf6.conf with

pass in on ixg0

This enables all traffic, ipv4 and ipv6.

Is this an intentional behavior? In my opinion it is a security risk if ipv6 firewall rules can break ipv4 rules.


Home | Main Index | Thread Index | Old Index