... darkrealms ...

Message 3679
Paul Hayton to All
UFW and he.net
11 Oct 21 19:53:51
TID: Mystic BBS 1.12 A47
MSGID: 3:770/100 4d0820fb
TZUTC: 1300
Does anyone have experience in combining these two?

I run a he.net tunnel that arrives in my LAN on a dedicated Raspberry Pi that
acts as the end point of the tunnel. On the Pi I then run radvd across my LAN
to assign other devices an IPv6 address.

I have a Debian buster box that I have assigned a static IPv6 address in the
GUI config and from a terminal can ping -6 google.co.nz from the box just fine.

I can also run BinkD and poll out to an IPv6 address fine also.

The problem is getting incoming IPv6 connections to BinkD etc. to work.

I have UFW as the firewall, I have enabled IPv6 in the UFW config settings and
added ports like 24554 which when I check the status I can see the port is
enabled for both IPv4 and IPv6

To                         Action      From
--                         ------      ----
24554/tcp                  ALLOW       Anywhere                  
24555/tcp                  ALLOW       Anywhere                  
24554/tcp (v6)             ALLOW       Anywhere (v6)             
24555/tcp (v6)             ALLOW       Anywhere (v6)             

My router has port forwarding enabled from the WAN to the static IPv4 on the
Debian box and certainly for IPv4 traffic all is good.

I'm stuck as to know why I can't seem to get ports open for my IPv6 address
when I have UFW seemingly enabled.

Now the Pi that acts as the end point of the tunnel has a static IPv4 and IPv6
address perhaps I need to enable something in UFW for that address(ess)?

I'm also wondering if it's something to do with the tunnel stuff.

But it feels like I'm 90%+ sorted as I know the Debian box can happily poll
outbound BinkD traffic without issue.

Any help appreciated.

Best, Paul

--- Mystic BBS v1.12 A47 2021/09/29 (Linux/64)
 * Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)
SEEN-BY: 1/123 90/1 105/81 120/340 123/131 124/5016 153/757 154/10
SEEN-BY: 203/0 218/840 220/70 221/0 226/17 30 227/702 229/424 426
SEEN-BY: 229/428 550 664 700 240/5138 5411 5824 5832 5853 249/206
SEEN-BY: 249/317 400 267/800 280/464 5003 5006 5555 282/1038 292/854
SEEN-BY: 292/8125 301/1 310/31 317/3 320/219 322/757 340/1000 342/200
SEEN-BY: 423/120 460/58 633/280 712/848 770/1 100 340 772/210 220
SEEN-BY: 772/230 2452/250 2454/119 5020/545
PATH: 770/100 1 280/464 240/5832 229/426
[ << oldest | < older | list | newer > | newest >> ]