Hello Everyone,
I have a mystery question.
I have no IPv6 enabled in our network, nor our servers. However, I saw there is a few IPv6 address inside Apache logs.
I simply announce IPv6 prefix in BGP router only (i.e. simply keep IPv6), however, they are already drop in edge firewalls.
I am 99.99% confident that we do not enabled IPv6 in edge firewalls, no IPv6 in DirectAdmin hosting servers (disabled IPv6 in NetworkManager, simply use IPv4).
However, at my glance, there is an IPv6 address (2a06:98c0:3600::103 <-- CloudFlare) inside Apache domain logs.
(Same IP access multiple domains too)
Inside DirectAdmin server, even I tried to use tcpdump to capture traffic from that IPv6 for 3 hours. No packet captured found.
(do not know what is "by filter")
Do you have any hints that why IPv6 address is logged inside Apache access logs (even no IPv6 enabled) ?
Thank you very much for your information / advise.
---
The grep result (grep 2a06 inside Apache domain log folder):
----
tcpdump:
I have a mystery question.
I have no IPv6 enabled in our network, nor our servers. However, I saw there is a few IPv6 address inside Apache logs.
I simply announce IPv6 prefix in BGP router only (i.e. simply keep IPv6), however, they are already drop in edge firewalls.
I am 99.99% confident that we do not enabled IPv6 in edge firewalls, no IPv6 in DirectAdmin hosting servers (disabled IPv6 in NetworkManager, simply use IPv4).
However, at my glance, there is an IPv6 address (2a06:98c0:3600::103 <-- CloudFlare) inside Apache domain logs.
(Same IP access multiple domains too)
Code:
cd /var/log/httpd/domains/
cut -d ' ' -f1 * | grep '\:' | moreInside DirectAdmin server, even I tried to use tcpdump to capture traffic from that IPv6 for 3 hours. No packet captured found.
(do not know what is "by filter")
Do you have any hints that why IPv6 address is logged inside Apache access logs (even no IPv6 enabled) ?
Thank you very much for your information / advise.
---
The grep result (grep 2a06 inside Apache domain log folder):
----
tcpdump: