I got me an ipv6 tunnel and a public ipv6 subnet up and running. Now i need to know what to add to susefirewall2 configuration to make it secure... what i want: machines inside being able to talk ipv6 to the world, but machines from the outside shall be allowed only to certain machines on certain ports (namely, ssh, http and https).
I tried to clone some rules from my regular iptables, but ip6tables doesnt do state...
I'm totally fine with doing it in /etc/sysconfig/scripts/SuSEfirewall2-custom; router/firewall is a 10.0 running SuSEfirewall2-3.4-6
any hints for me?