Skip to content

Instantly share code, notes, and snippets.

View dmgeurts's full-sized avatar

Djerk Geurts dmgeurts

View GitHub Profile
@dmgeurts
dmgeurts / ip6tables_setup.bash
Created April 13, 2021 22:49 — forked from velizarn/ip6tables_setup.bash
Basic setup for ip6tables - drop all traffic except local, ICMP and DHCPv6 traffic.
#!/bin/bash
# http://serverfault.com/questions/410321/debian-ip6tables-rules-setup-for-ipv6/410327#410327
# http://ipset.netfilter.org/iptables.man.html
# https://www.sixxs.net/wiki/IPv6_Firewalling
# https://www.cyberciti.biz/faq/ip6tables-ipv6-firewall-for-linux/
# https://gist.github.com/thomasfr/9712418
# https://gist.github.com/SnakeDrak/f4150f6e517e5a1d525f
# http://www.thegeekstuff.com/2011/06/iptables-rules-examples
# http://www.thegeekstuff.com/scripts/iptables-rules
# Setting up Proxmox with a certificate from FreeIPA.
# This assumes you've already joined the machine with ipa-client-install
# Get a ticket as someone that can issue certificates (if needed. This depends on user permissions
# and I dislike running as root and needing to use non personal admin accounts/privileges.)
#kinit admin
klist -s || kinit
cat <<EOF > /usr/local/sbin/set-ssl-permissions
#!/bin/bash