File tree Expand file tree Collapse file tree 1 file changed +24
-0
lines changed
Expand file tree Collapse file tree 1 file changed +24
-0
lines changed Original file line number Diff line number Diff line change 1+ # Configure IPv6 Firewall
2+ Unfortunately there is no option to configure IPv6 Firewall via the GUI
3+
4+ ## Basic Firewall Options
5+ This basic firewall allows users to ping a IPv6 device from the internet. All other traffic to the device is blocked (default-action drop).
6+
7+ ```
8+ set firewall ipv6-name ipv6-fw default-action drop
9+ set firewall ipv6-name ipv6-fw description 'IPv6 firewall'
10+ set firewall ipv6-name ipv6-fw rule 1 action accept
11+ set firewall ipv6-name ipv6-fw rule 1 log disable
12+ set firewall ipv6-name ipv6-fw rule 1 protocol icmpv6
13+ set firewall ipv6-name ipv6-fw rule 1 description 'allow ICMPv6 traffic'
14+ set firewall ipv6-name ipv6-fw rule 10 action accept
15+ set firewall ipv6-name ipv6-fw rule 10 state established enable
16+ set firewall ipv6-name ipv6-fw rule 10 state related enable
17+ ```
18+
19+ ## Allow one host to be publicly accessible
20+ ```
21+ set firewall ipv6-name ipv6-fw rule 4 action accept
22+ set firewall ipv6-name ipv6-fw rule 4 description 'allow access to host x'
23+ set firewall ipv6-name ipv6-fw rule 4 destination address '2001:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx'
24+ ```
You can’t perform that action at this time.
0 commit comments