Bonjour,
merci pour ta réponse rapide.
Voici ma configuration firewall :
--------------------------------------------------------------------------------
IPv6 Firewall "WANv6_IN":
Active on (eth0,IN)
rule action proto packets bytes
---- ------ ----- ------- -----
10 accept all 7310441 4100144499
condition - state RELATED,ESTABLISHED
20 drop all 93 5924
condition - state INVALID
25 accept ipv6-icmp 779 53290
30 accept tcp 19411 1552960
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP SSH-clients-IPv6
tcp dpt:ssh
40 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP Xymon-clients-IPv
6 tcp dpt:1984
42 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP Lognes-IPv6 tcp d
pt:1984
50 accept tcp 2608 214048
condition - daddr 2a01:e0a:348:bda0:1337::2 state NEW,ESTABLISHED dports http
,https
60 accept tcp_udp 128267 11475887
condition - daddr 2a01:e0a:348:bda0:1337::2 state NEW,ESTABLISHED tcp dpt:doma
in
70 reject tcp 15 960
condition - daddr 2a01:e0a:348:bda0:1337::2 dports pop3,imap2,imaps,pop3s rej
ect-with icmp6-port-unreachable
80 accept tcp 21 1428
condition - daddr 2a01:e0a:348:bda0:1337::2 dports smtp,urd,submission
90 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 tcp dpt:32400
10000 drop all 10044 697411
condition - LOG enabled
--------------------------------------------------------------------------------
IPv6 Firewall "wan_local-6":
Active on (eth0,LOCAL) (switch0,OUT)
rule action proto packets bytes
---- ------ ----- ------- -----
10 accept all 7288748 4092909178
condition - state RELATED,ESTABLISHED
15 accept udp 0 0
condition - udp spt:dhcpv6-server dpt:dhcpv6-client
20 drop all 0 0
condition - state INVALID
25 accept ipv6-icmp 46294 3200498
30 accept tcp 19078 1526320
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP SSH-clients-IPv6
tcp dpt:ssh
40 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP Xymon-clients-IPv
6 tcp dpt:1984
42 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 match-SRC--GROUP Lognes-IPv6 tcp d
pt:1984
50 accept tcp 2609 214120
condition - daddr 2a01:e0a:348:bda0:1337::2 state NEW,ESTABLISHED dports http
,https
60 accept tcp_udp 127579 11415805
condition - daddr 2a01:e0a:348:bda0:1337::2 tcp dpt:domain
70 reject tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 dports pop3,imap2,imaps,pop3s rej
ect-with icmp6-port-unreachable
80 accept tcp 21 1428
condition - daddr 2a01:e0a:348:bda0:1337::2 dports smtp,urd,submission
90 accept tcp 0 0
condition - daddr 2a01:e0a:348:bda0:1337::2 tcp dpt:32400
10000 drop all 568 37738
condition - LOG enabled