Fix some bugsfeature/bind_ipv6

author: Quentin Dufour <quentin@deuxfleurs.fr> 2020-10-22 18:29:37 +0200
committer: Quentin Dufour <quentin@deuxfleurs.fr> 2020-10-22 18:29:37 +0200
commit: b53b71f750008267351d84938b4701413f045628 (patch)
tree: cc2c8aea67333e2df7320c9a225cd585c78421ee /os/config/roles/network/templates/rules.v6
parent: 6858f17766fcd6fd0f05c43393188b79d29be5e5 (diff)
download: infrastructure-b53b71f750008267351d84938b4701413f045628.tar.gz
infrastructure-b53b71f750008267351d84938b4701413f045628.zip
1 files changed, 4 insertions, 2 deletions
diff --git a/os/config/roles/network/templates/rules.v6 b/os/config/roles/network/templates/rules.v6
index 7365b8a..50737a0 100644
--- a/os/config/roles/network/templates/rules.v6
+++ b/os/config/roles/network/templates/rules.v6
@@ -3,8 +3,10 @@
 :FORWARD DROP [0:0]
 :OUTPUT ACCEPT [0:0]
 
-# Debug
+# Internet Control Message Protocol
+# (required)
 -A INPUT -p icmp -j ACCEPT
+-A INPUT -p ipv6-icmp -j ACCEPT
 
 # Administration
 -A INPUT -p tcp --dport 22 -j ACCEPT
@@ -17,7 +19,7 @@
 # Local
 -A INPUT -i docker0 -j ACCEPT
 -A INPUT -s ::1/128 -j ACCEPT
--A INPUT -m conntrack --cstate ESTABLISHED,RELATED -j ACCEPT
+-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
 
 COMMIT
author	Quentin Dufour <quentin@deuxfleurs.fr>	2020-10-22 18:29:37 +0200
committer	Quentin Dufour <quentin@deuxfleurs.fr>	2020-10-22 18:29:37 +0200
commit	b53b71f750008267351d84938b4701413f045628 (patch)
tree	cc2c8aea67333e2df7320c9a225cd585c78421ee /os/config/roles/network/templates/rules.v6
parent	6858f17766fcd6fd0f05c43393188b79d29be5e5 (diff)
download	infrastructure-b53b71f750008267351d84938b4701413f045628.tar.gz infrastructure-b53b71f750008267351d84938b4701413f045628.zip