Project

General

Profile

Actions

Feature #2466

closed

Allow single firewall rules to apply to both IPv4 and IPv6 simultaneously

Added by Seth Mos over 9 years ago. Updated almost 9 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Rules / NAT
Target version:
Start date:
05/31/2012
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

I've added code that allows for setting a firewall rule to IPv4+IPv6

Limitations:
- only allows tcp/udp and icmp
- no icmp types
- no gateways or groups

Considering locking it down further to just rules with aliases.
Current issue is that when one selects WAN address, it just adds the v4 WAN address. Not both. Might need more logic in filter.inc

Actions #1

Updated by Seth Mos over 9 years ago

  • Status changed from New to Feedback

Seems to work so far, filter.inc code needs to duplicate rules by address families to work for addresses, reply-to and gateways.

Actions #2

Updated by Richard Adams almost 9 years ago

I can confirm this is working. Now if only you could mix IPv4 and IPv6 within aliases.

Actions #3

Updated by Chris Buechler almost 9 years ago

  • Status changed from Feedback to Resolved

Thanks. You can mix v4 and v6 within aliases, we do extensively on our production networks. If there's a scenario where you can't, please post to the forum or mailing list so we can review.

Actions

Also available in: Atom PDF