From ce1d628516cd063af8e2001b8a681ead337d52cc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Beno=C3=AEt=20S=C3=89RIE?= <bserie@evolix.fr>
Date: Fri, 13 Dec 2013 11:22:27 +0100
Subject: [PATCH] Adding rules for DHCPv6.

---
 firewall.rc | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/firewall.rc b/firewall.rc
index 96c42c1..a983e61 100644
--- a/firewall.rc
+++ b/firewall.rc
@@ -87,6 +87,10 @@ NTPOK='0.0.0.0/0'
 /sbin/ip6tables -A OUTPUT -o $INT -p udp --dport 123 --match state --state NEW -j ACCEPT
 /sbin/ip6tables -A OUTPUT -o $INT -p udp --dport 33434:33523 --match state --state NEW -j ACCEPT
 
+# Allow DHCPv6
+/sbin/ip6tables -t filter -A INPUT -i $INT -p udp --dport 546 -d fe80::/64 -j ACCEPT
+/sbin/ip6tables -t filter -A OUTPUT -o $INT -p udp --dport 547 -j ACCEPT
+
 ################### IPv4 Specific rules
 # /sbin/iptables ...