Project

General

Profile

Actions
Copy link

Feature #2466

closed

Allow single firewall rules to apply to both IPv4 and IPv6 simultaneously

Added by Seth Mos almost 12 years ago. Updated about 11 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Seth Mos
Category:
Rules / NAT
Target version:
2.1
Start date:
05/31/2012
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

I've added code that allows for setting a firewall rule to IPv4+IPv6

Limitations:
- only allows tcp/udp and icmp
- no icmp types
- no gateways or groups

Considering locking it down further to just rules with aliases.
Current issue is that when one selects WAN address, it just adds the v4 WAN address. Not both. Might need more logic in filter.inc

Actions
Copy link
 #1

Updated by Seth Mos almost 12 years ago

  • Status changed from New to Feedback

Seems to work so far, filter.inc code needs to duplicate rules by address families to work for addresses, reply-to and gateways.

Actions
Copy link
 #2

Updated by Richard Adams about 11 years ago

I can confirm this is working. Now if only you could mix IPv4 and IPv6 within aliases.

Actions
Copy link
 #3

Updated by Chris Buechler about 11 years ago

  • Status changed from Feedback to Resolved

Thanks. You can mix v4 and v6 within aliases, we do extensively on our production networks. If there's a scenario where you can't, please post to the forum or mailing list so we can review.

Actions
Copy link

Also available in: Atom PDF