ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
http://www.forum.configserver.com/

CSF Blocking all outbound IPv6 traffic

http://www.forum.configserver.com/viewtopic.php?t=6995

Page 1 of 1

CSF Blocking all outbound IPv6 traffic

Posted: 14 Sep 2013, 21:38
by Wader
Ive just setup a new server and configured a HE IPv6 tunnel, and all outbound traffic is being blocked by CSF, even though I have all ports allowed on outbound.

Code: Select all

# Allow outgoing TCP ports
TCP6_OUT = "0:65535"

# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP6_OUT = "0:65535"
I've added the tunnel server ipv4 address to csf.allow and can ping other ipv6 hosts. However all connections are being blocked and logged in the syslog.

Have I missed something in regards to the tunnel? I have other servers with native ipv6 with the same configs and they are working fine.

Re: CSF Blocking all outbound IPv6 traffic

Posted: 21 Oct 2013, 08:52
by WSWD
I'm having the exact same problem with the HE tunnel on a few of our servers. Disabling CSF does the trick and everything works fine. Turning it on, opening all the ports, etc., does nothing.

Any means of fixing this?

Re: CSF Blocking all outbound IPv6 traffic

Posted: 06 Jan 2014, 16:12
by Nick57
Any luck on this?

Re: CSF Blocking all outbound IPv6 traffic

Posted: 20 Jun 2014, 23:54
by yakatz
I also have this issue. I also tried whitelisting the tunnel endpoint in case proto41 is being blocked, but that does not seem to have any effect.

Re: CSF Blocking all outbound IPv6 traffic

Posted: 10 Jan 2017, 15:43
by adamreece-webbox
I concur, all outgoing traffic appears to be denied in version 9.28 (cPanel) on CentOS 6.

This can be resolved by setting IPV6_SPI to zero, however that may in fact disable a large portion of your intended IPv6 firewall rules.
All times are UTC+01:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited