Hello,
I noticed that this documentation seems to completely outline all of the... sort of ridiculous steps that you have to take to restrict access to NXAPI via IPv4.
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/programmability/guide/b_Cisco_Nexus_9000_Series_NX-OS_Programmability_Guide_7x/NX_API.html#id_92103
Has anyone seen a similar guide for IPv6 anywhere?
I am assuming that this works but with Cisco having documentation is better.
ip netns exec management ip6tables -A INPUT -p tcp --dport 443 -j DROP
Do you just follow the same instructions and just change everything where it says iptables to ip6tables?
Thanks in advance for your consideration.
-Drew
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
I noticed that this documentation seems to completely outline all of the... sort of ridiculous steps that you have to take to restrict access to NXAPI via IPv4.
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/programmability/guide/b_Cisco_Nexus_9000_Series_NX-OS_Programmability_Guide_7x/NX_API.html#id_92103
Has anyone seen a similar guide for IPv6 anywhere?
I am assuming that this works but with Cisco having documentation is better.
ip netns exec management ip6tables -A INPUT -p tcp --dport 443 -j DROP
Do you just follow the same instructions and just change everything where it says iptables to ip6tables?
Thanks in advance for your consideration.
-Drew
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/