Set Up Airgap Server on IPv6 Network

To set the airgap server on an IPv6 network, perform the steps listed in this section after deploying the Photon OVA.

1. Set Up IP Address

A sample for setting up a static IPv6 address:

cd /etc/systemd/network/
vi 10-static-eth0.network

The content of 10-static-eth0.network is:

[Match]
Name=eth0
[Network]
Address=fc00:172:xx:xx::xxx/xx
DHCP=no
IPv6AcceptRA=no
DNS=fc00:172:xx:xx::x
Gateway=fc00:172:xx:xx::x

Save the file and run the following commands:

chmod 644 10-static-eth0.network
systemctl restart systemd-networkd

2. Set Up IP Tables

By default, Photon OS opens only an SSH port for allowing access from a remote location. Other ports such as ICMPv6, HTTPS, and customized Harbor HTTPS must be opened before running the Ansible scripts for setting up the airgap server.

ip6tables -A INPUT -p icmpv6  -j ACCEPT
ip6tables -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
ip6tables -A INPUT -p tcp -m tcp --dport 8043 -j ACCEPT
ip6tables -n -L

3. Continue with General Setup Steps

Continue to set up the airgap server from the section Set up the Airgap Server onwards.