This ought to do it right?
~ » sudo ip6tables -L j@criticalmass
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all anywhere anywhere
REJECT all localhost anywhere reject-with icmp6-port-unreachable
ACCEPT ipv6-icmp anywhere anywhere
ACCEPT tcp anywhere anywhere tcp dpt:http state NEW
ACCEPT tcp anywhere anywhere tcp dpt:https state NEW
ACCEPT all anywhere anywhere state RELATED,ESTABLISHED
LOG all anywhere anywhere limit: avg 5/min burst 5 LOG level debug prefix "ip6tables_INPUT_denied: "
REJECT all anywhere anywhere reject-with icmp6-port-unreachable
Chain FORWARD (policy ACCEPT)
target prot opt source destination
LOG all anywhere anywhere limit: avg 5/min burst 5 LOG level debug prefix "ip6tables_FORWARD_denied: "
REJECT all anywhere anywhere reject-with icmp6-port-unreachable
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
will the proxy pass cause issues with nginx?