What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

question about firewall ipv6 icmp

D

DonnyJohnny

Very Senior Member
Hi,

I just want to harden the ipv6 table.
I am reading on
https://github.com/CERTCC-Vulnerability-Analysis/ip6tables-configuration/blob/master/firewall_rules5

I wanted to add the following to iptables
Code: 
# Allow some others ICMPv6 types but only if the hop limit field is 255.
# We're still in the INPUT chain. Types can be listed by name (ip6tables -p ipv6-icmp -h).

ip6tables -A INPUT -p icmpv6 --icmpv6-type router-advertisement -m hl --hl-eq 255 -j ACCEPT
ip6tables -A INPUT -p icmpv6 --icmpv6-type 141 -m hl --hl-eq 255 -j ACCEPT
ip6tables -A INPUT -p icmpv6 --icmpv6-type 142 -m hl --hl-eq 255 -j ACCEPT
ip6tables -A INPUT -p icmpv6 --icmpv6-type 151 -m hl --hl-eq 255 -j ACCEPT

However, i encountered the following error message
" ip6tables: No chain/target/match by that name. "

It seems like the ip6tables unable to use the hop limit. Can someone advise me on how to get this to work.

Thanks
 
Anyone?
 
You must log in or register to reply here.

Similar threads

L
https connection issue on router
Replies
8
Views
556
Lecan
L
adri
Firewall, Port Forwarding, and DoS Question
Replies
8
Views
1K
ColinTaylor
C
NoBenefit
Does my iptables looks normal?
Replies
1
Views
1K
ColinTaylor
C
M
Blocking IPv6 clients to stop VPN circumvention
2
Replies
26
Views
4K
jimbobub
J
Nick B
Allowing Incoming WAN Connections for WireGuard Client Listed in Director
Replies
7
Views
2K
arkywein
A
Similar threads
Thread starter Title Forum Replies Date
adri Firewall, Port Forwarding, and DoS Question Asuswrt-Merlin 8
M DNS masq related question Asuswrt-Merlin 22
M A Question re blocking IPs via iptables and aiprotect Asuswrt-Merlin 6
S GT-AXE16000 Guest Vlan question with ubiquiti Asuswrt-Merlin 1
B 3006 firmware Aimesh question Asuswrt-Merlin 4
bassoonsun Killswitch 3004 Question Asuswrt-Merlin 0
A Question about RT-AX58U firmware and Aimesh Asuswrt-Merlin 6
W3Wilkes RT-AX86U IoT (guest network) Intranet Question Asuswrt-Merlin 15
CaptnDanLKW Not Another One! But yes, AX or BE Question Asuswrt-Merlin 5
P Basic question on usericon files Asuswrt-Merlin 0

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 980 (members: 18, guests: 962)
Back
Top