kaboomserver/framework
1
0
Fork 0
mirror of https://github.com/kaboomserver/framework.git synced 2025-07-31 01:43:26 +00:00
Code Issues Projects Releases Wiki Activity

iptables: Use actual private IPv6 range

Browse source 
We don't want these addresses to be routable, which the previous
documentation range is.
This commit is contained in:
Kaboom 2025-07-18 13:33:12 +03:00
parent eddd4504bf
commit 981b01c145
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
config/iptables
View file

@ -5,7 +5,7 @@ iptables -A INPUT -p tcp --syn --dport 25565 -m connlimit --connlimit-above 5 --
iptables-save > /etc/iptables/rules.v4
# IPv6
ip6tables -t nat -A INPUT -p tcp --dport 25565 -j SNAT --to-source 2001:db8::1-2001:db8::6464
ip6tables -t nat -A INPUT -p udp --dport 19132 -j SNAT --to-source 2001:db8::1-2001:db8::6464
ip6tables -t nat -A INPUT -p tcp --dport 25565 -j SNAT --to-source fd00:dead:beef::1-fd00:dead:beef::6464
ip6tables -t nat -A INPUT -p udp --dport 19132 -j SNAT --to-source fd00:dead:beef::1-fd00:dead:beef::6464
ip6tables -A INPUT -p tcp --syn --dport 25565 -m connlimit --connlimit-above 5 --connlimit-mask 64 -j REJECT --reject-with tcp-reset
ip6tables-save > /etc/iptables/rules.v6