Working on a script, and to test, I need to shut down ip6tables
temporarily. firewalld is running; is there any way to shut down *just*
ip6tables?
I tried installinf iptables-services, and did a systemctl stop ip6tables,
and no joy.
mark
On 2018-10-26 16:25, mark wrote:> Working on a script, and to test, I need to shut down ip6tables > temporarily. firewalld is running; is there any way to shut down *just* > ip6tables? > > I tried installinf iptables-services, and did a systemctl stop > ip6tables, > and no joy. > > mark > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > https://lists.centos.org/mailman/listinfo/centosHi I believe this should remove any ipv6 rules (rules and chains) ip6tables -F ip6tables -X You may need to set the default policies as well, as they I belive are to deny all incoming and unrestricted outgoing ip6tables -P INPUT DROP ip6tables -P FORWARD DROP ip6tables -P OUTPUT ACCEPT Regards Andrew -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
On 10/26/18, Andrew Pearce <andrew at andew.org.uk> wrote:> On 2018-10-26 16:25, mark wrote: > I believe this should remove any ipv6 rules (rules and chains) > > ip6tables -F > ip6tables -XYou might want to clear the other tables, too: for x in filter nat mangle raw security "" do ip6tables ${x:+-t $x} -F ip6tables ${x:+-t $x} -X done> You may need to set the default policies as well, as they I belive are > to deny all incoming and unrestricted outgoing > > ip6tables -P INPUT DROP > ip6tables -P FORWARD DROP > ip6tables -P OUTPUT ACCEPTfirewalld appears to leave the policies as ACCEPT, which is their default.