Chain INPUT (policy ACCEPT 0 packets, 0 bytes)num pkts bytes target prot

1. Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
2. num pkts bytes target prot opt in out source destination
3. 1 575 39602 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
4. 2 11 718 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
5. 3 1712 88288 syn_flood tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02
6. 4 4712 357K input_rule all -- * * 0.0.0.0/0 0.0.0.0/0
7. 5 4708 357K input all -- * * 0.0.0.0/0 0.0.0.0/0
8.  
9. Chain FORWARD (policy DROP 0 packets, 0 bytes)
10. num pkts bytes target prot opt in out source destination
11. 1 216 54494 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
12. 2 64 3268 forwarding_rule all -- * * 0.0.0.0/0 0.0.0.0/0
13. 3 64 3268 forward all -- * * 0.0.0.0/0 0.0.0.0/0
14. 4 0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
15.  
16. Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
17. num pkts bytes target prot opt in out source destination
18. 1 1305 247K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
19. 2 11 718 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
20. 3 184 17368 output_rule all -- * * 0.0.0.0/0 0.0.0.0/0
21. 4 184 17368 output all -- * * 0.0.0.0/0 0.0.0.0/0
22.  
23. Chain forward (1 references)
24. num pkts bytes target prot opt in out source destination
25. 1 64 3268 zone_lan_forward all -- br-lan * 0.0.0.0/0 0.0.0.0/0
26. 2 0 0 zone_wan_forward all -- eth0.2 * 0.0.0.0/0 0.0.0.0/0
27.  
28. Chain forwarding_lan (1 references)
29. num pkts bytes target prot opt in out source destination
30.  
31. Chain forwarding_rule (1 references)
32. num pkts bytes target prot opt in out source destination
33.  
34. Chain forwarding_wan (1 references)
35. num pkts bytes target prot opt in out source destination
36.  
37. Chain input (1 references)
38. num pkts bytes target prot opt in out source destination
39. 1 200 24708 zone_lan all -- br-lan * 0.0.0.0/0 0.0.0.0/0
40. 2 4422 327K zone_wan all -- eth0.2 * 0.0.0.0/0 0.0.0.0/0
41.  
42. Chain input_lan (1 references)
43. num pkts bytes target prot opt in out source destination
44.  
45. Chain input_rule (1 references)
46. num pkts bytes target prot opt in out source destination
47.  
48. Chain input_wan (1 references)
49. num pkts bytes target prot opt in out source destination
50.  
51. Chain output (1 references)
52. num pkts bytes target prot opt in out source destination
53. 1 184 17368 zone_lan_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
54. 2 119 8488 zone_wan_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
55.  
56. Chain output_rule (1 references)
57. num pkts bytes target prot opt in out source destination
58.  
59. Chain reject (5 references)
60. num pkts bytes target prot opt in out source destination
61. 1 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset
62. 2 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
63.  
64. Chain syn_flood (1 references)
65. num pkts bytes target prot opt in out source destination
66. 1 1712 88288 RETURN tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 25/sec burst 50
67. 2 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
68.  
69. Chain zone_lan (1 references)
70. num pkts bytes target prot opt in out source destination
71. 1 200 24708 input_lan all -- * * 0.0.0.0/0 0.0.0.0/0
72. 2 200 24708 zone_lan_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
73.  
74. Chain zone_lan_ACCEPT (2 references)
75. num pkts bytes target prot opt in out source destination
76. 1 65 8880 ACCEPT all -- * br-lan 0.0.0.0/0 0.0.0.0/0
77. 2 200 24708 ACCEPT all -- br-lan * 0.0.0.0/0 0.0.0.0/0
78.  
79. Chain zone_lan_DROP (0 references)
80. num pkts bytes target prot opt in out source destination
81. 1 0 0 DROP all -- * br-lan 0.0.0.0/0 0.0.0.0/0
82. 2 0 0 DROP all -- br-lan * 0.0.0.0/0 0.0.0.0/0
83.  
84. Chain zone_lan_REJECT (1 references)
85. num pkts bytes target prot opt in out source destination
86. 1 0 0 reject all -- * br-lan 0.0.0.0/0 0.0.0.0/0
87. 2 0 0 reject all -- br-lan * 0.0.0.0/0 0.0.0.0/0
88.  
89. Chain zone_lan_forward (1 references)
90. num pkts bytes target prot opt in out source destination
91. 1 64 3268 zone_wan_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
92. 2 0 0 forwarding_lan all -- * * 0.0.0.0/0 0.0.0.0/0
93. 3 0 0 zone_lan_REJECT all -- * * 0.0.0.0/0 0.0.0.0/0
94.  
95. Chain zone_wan (1 references)
96. num pkts bytes target prot opt in out source destination
97. 1 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68
98. 2 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 8
99. 3 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9091
100. 4 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.1 tcp dpt:22
101. 5 0 0 ACCEPT tcp -- * * 0.0.0.0/0 192.168.1.1 tcp dpt:21
102. 6 382 19404 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21234
103. 7 335 17141 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:21234
104. 8 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
105. 9 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
106. 10 3705 291K input_wan all -- * * 0.0.0.0/0 0.0.0.0/0
107. 11 3705 291K zone_wan_DROP all -- * * 0.0.0.0/0 0.0.0.0/0
108.  
109. Chain zone_wan_ACCEPT (2 references)
110. num pkts bytes target prot opt in out source destination
111. 1 182 11716 ACCEPT all -- * eth0.2 0.0.0.0/0 0.0.0.0/0
112. 2 0 0 ACCEPT all -- eth0.2 * 0.0.0.0/0 0.0.0.0/0
113.  
114. Chain zone_wan_DROP (1 references)
115. num pkts bytes target prot opt in out source destination
116. 1 0 0 DROP all -- * eth0.2 0.0.0.0/0 0.0.0.0/0
117. 2 3705 291K DROP all -- eth0.2 * 0.0.0.0/0 0.0.0.0/0
118.  
119. Chain zone_wan_REJECT (1 references)
120. num pkts bytes target prot opt in out source destination
121. 1 0 0 reject all -- * eth0.2 0.0.0.0/0 0.0.0.0/0
122. 2 0 0 reject all -- eth0.2 * 0.0.0.0/0 0.0.0.0/0
123.  
124. Chain zone_wan_forward (1 references)
125. num pkts bytes target prot opt in out source destination
126. 1 0 0 forwarding_wan all -- * * 0.0.0.0/0 0.0.0.0/0
127. 2 0 0 zone_wan_REJECT all -- * * 0.0.0.0/0 0.0.0.0/0