UFW blocks 6to4 tunnel traffic

Kernels & Hardware, configuring network, installing services

UFW blocks 6to4 tunnel traffic

Postby MadEgg » 2017-08-01 07:20

I have a server running Debian 9 / Stretch and it is using UFW 0.35-4.

The server is configured to use 6to4 tunneling as native IPv6 is not offered yet. UFW seems to start blocking IPv6 traffic after a while.

At that point, I can do 'ufw disable' followed by 'ufw enable', which will make it work again for a while, but after a couple of hours the syslog will start showing messages like:

[290282.074350] [UFW BLOCK] IN=eth0 OUT= MAC=xxxxxxxxxxxxx SRC=my.server.ipv4.address DST=my.otherserver.ipv4.address LEN=124 TOS=0x00 PREC=0x00 TTL=64 ID=51484 DF PROTO=41

I don't really mind allowing all protocol 41 traffic, as long as the UFW filtering is applied to the actual IPv6 traffic embedded within those packets.

Any clues on how to fix this problem?

Note: crosspost with https://answers.launchpad.net/ubuntu/+s ... ion/654431
MadEgg
 
Posts: 1
Joined: 2017-08-01 07:18

Return to System configuration

Who is online

Users browsing this forum: No registered users and 6 guests

fashionable