IPv6 firewall rules to open port for a local GUA webserver

Installing and Using OpenWrt Network and Wireless Configuration

arga April 10, 2021, 5:50pm 1

Hi,

to set a LAN web server to be accessible from the outside, i follow this examples https://openwrt.org/docs/guide-user/firewall/fw3_configurations/fw3_ipv6_examples.

I add in /etc/firewall.user :
config rule
option src 'wan'
option proto 'tcp udp'
option dest 'lan'
option dest_ip '2a01:xxx:yyy:zzz::10'
option dest_port '80'
option family 'ipv6'
option target 'ACCEPT'

config rule
option src 'wan'
option proto 'tcp udp'
option dest 'lan'
option dest_ip '2a01:xxx:yyy:zzz::10'
option dest_port '443'
option family 'ipv6'
option target 'ACCEPT'

I also run /etc/init.d/firewall reload

I don't see the new rules in Status -> Firewall -> IPv6 Firewall
Is it the right way to do it ?

do you have any advice ?

regards

trendy April 10, 2021, 6:32pm 2

First of all http and https listen to tcp only.
Second these configuration snippets go to /etc/config/firewall

1 Like

arga April 10, 2021, 8:44pm 3

thank's a lot. it's definitely the right place. I am not sure to understand what to set inside /etc/firewall.user ?

trendy April 10, 2021, 9:28pm 4

Custom raw iptables rules, e.g iptables -t filter -A INPUT ....

1 Like

system Closed April 20, 2021, 9:29pm 5

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.