While working through T271143 , we noticed that there are some inconsistencies between IPv4 and IPv6 on elastic hosts.
For example, we expose the IPv6 cleartext port (9200) in ferm/ip6tables, but there are no listening processes.
Opening this ticket so we can agree on what ports should be listening where, and achieve coherence between our firewall rules and listening ports.