API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 4th, 2014
233
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.91 KB | None | 0 0
raw download clone embed print report
  1. [root@router yum.repos.d]# iptables -L
  2. Chain INPUT (policy DROP)
  3. target prot opt source destination
  4. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
  5. ACCEPT tcp -- 62.231.2.80 anywhere tcp dpt:ssh state NEW,ESTABLISHED
  6. DROP all -- anywhere anywhere state INVALID
  7. ACCEPT all -- anywhere anywhere state NEW
  8. DROP all -- AA.BB.CC.DD anywhere
  9. DROP all -- 192.168.14.2 anywhere
  10. DROP all -- AA.BB.CC.DD anywhere
  11. DROP all -- 192.168.14.2 anywhere
  12. DROP all -- AA.BB.CC.DD anywhere PHYSDEV match --physdev-in eth3
  13. DROP all -- 192.168.14.2 anywhere PHYSDEV match --physdev-in eth3
  14. ACCEPT all -- AA.BB.CC.DD anywhere state NEW
  15. ACCEPT all -- 192.168.14.2 anywhere state NEW
  16. DROP all -- 221.120.107.203 anywhere
  17. DROP all -- no-data anywhere
  18. Cid4863C9C63672.1 all -- 192.168.14.0/24 anywhere state NEW
  19. Cid4863C9C63672.1 all -- 192.168.1.0/24 anywhere state NEW
  20. ACCEPT all -- 10.0.0.0/24 192.168.14.0/24 state NEW
  21. DROP tcp -- anywhere anywhere tcp multiport dports netbios-ssn,microsoft-ds,commplex-main,park-agent,icslap,epmap,nameserver
  22. DROP udp -- anywhere anywhere udp multiport dports netbios-dgm,netbios-ns,ssdp
  23. ACCEPT tcp -- anywhere anywhere tcp multiport dports ftp,ftp-data,imap,pop3,smtp,https state NEW
  24. Cid489037E13777.0 all -- 192.168.0.0/16 anywhere state NEW
  25. ACCEPT icmp -- anywhere anywhere icmp ttl-zero-during-transit state NEW
  26. ACCEPT icmp -- anywhere anywhere icmp ttl-zero-during-reassembly state NEW
  27. ACCEPT icmp -- anywhere anywhere icmp type 0 code 0 state NEW
  28. ACCEPT icmp -- anywhere anywhere icmp destination-unreachable state NEW
  29. ACCEPT tcp -- anywhere anywhere tcp dpt:pptp state NEW
  30. ACCEPT udp -- anywhere anywhere udp dpt:pptp state NEW
  31. ACCEPT gre -- anywhere anywhere state NEW
  32. ACCEPT tcp -- 192.168.0.0/16 anywhere tcp multiport dports squid,ssh,domain,http,rockwell-csp2 state NEW
  33. ACCEPT udp -- 192.168.0.0/16 anywhere udp multiport dports domain,bootpc,bootps state NEW
  34. ACCEPT tcp -- anywhere anywhere tcp multiport dports http,websm,ms-wbt-server,ncube-lm state NEW
  35. DROP all -- anywhere anywhere
  36.  
  37. Chain FORWARD (policy DROP)
  38. target prot opt source destination
  39. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
  40. DROP all -- anywhere anywhere state INVALID
  41. DROP all -- AA.BB.CC.DD anywhere
  42. DROP all -- 192.168.14.2 anywhere
  43. DROP all -- AA.BB.CC.DD anywhere
  44. DROP all -- 192.168.14.2 anywhere
  45. DROP all -- AA.BB.CC.DD anywhere PHYSDEV match --physdev-in eth3
  46. DROP all -- 192.168.14.2 anywhere PHYSDEV match --physdev-in eth3
  47. DROP all -- 221.120.107.203 anywhere
  48. DROP all -- no-data anywhere
  49. DROP all -- anywhere anywhere STRING match "vkontakte.ru" ALGO name kmp TO 65535
  50. Cid4863C9C63672.2 all -- 192.168.14.0/24 anywhere state NEW
  51. Cid4863C9C63672.2 all -- 192.168.1.0/24 anywhere state NEW
  52. ACCEPT all -- 10.0.0.0/24 192.168.14.0/24 state NEW
  53. DROP tcp -- anywhere anywhere tcp multiport dports netbios-ssn,microsoft-ds,commplex-main,park-agent,icslap,epmap,nameserver
  54. DROP udp -- anywhere anywhere udp multiport dports netbios-dgm,netbios-ns,ssdp
  55. DROP tcp -- anywhere anywhere tcp multiport dports netbios-ssn,microsoft-ds,commplex-main,park-agent,icslap,epmap,nameserver
  56. DROP udp -- anywhere anywhere udp multiport dports netbios-dgm,netbios-ns,ssdp
  57. ACCEPT tcp -- anywhere 192.168.14.3 tcp multiport dports ftp,ftp-data,imap,pop3,smtp,https state NEW
  58. ACCEPT all -- 192.168.0.0/16 anywhere state NEW
  59. ACCEPT tcp -- anywhere oracle.elt-poisk tcp multiport dports http state NEW
  60. ACCEPT tcp -- anywhere testsrv.elt-poisk tcp multiport dports websm,ms-wbt-server,ncube-lm state NEW
  61. DROP all -- anywhere anywhere
  62.  
  63. Chain OUTPUT (policy DROP)
  64. target prot opt source destination
  65. ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
  66. ACCEPT tcp -- anywhere 62.231.2.80 tcp spt:ssh state RELATED,ESTABLISHED
  67. DROP all -- anywhere anywhere state INVALID
  68. ACCEPT all -- anywhere anywhere state NEW
  69. ACCEPT all -- anywhere anywhere state NEW
  70. Cid4863C9C63672.0 all -- 192.168.14.0/24 anywhere state NEW
  71. Cid4863C9C63672.0 all -- 192.168.1.0/24 anywhere state NEW
  72. DROP tcp -- anywhere anywhere tcp multiport dports netbios-ssn,microsoft-ds,commplex-main,park-agent,icslap,epmap,nameserver
  73. DROP udp -- anywhere anywhere udp multiport dports netbios-dgm,netbios-ns,ssdp
  74. ACCEPT tcp -- anywhere 192.168.14.3 tcp multiport dports ftp,ftp-data,imap,pop3,smtp,https state NEW
  75. ACCEPT all -- 192.168.0.0/16 anywhere state NEW
  76. Cid486E22F617714.0 all -- anywhere AA.BB.CC.DD state NEW
  77. Cid486E22F617714.0 all -- anywhere 192.168.14.2 state NEW
  78. Cid3105X2808.0 tcp -- anywhere anywhere tcp multiport dports http,websm,ms-wbt-server,ncube-lm state NEW
  79. DROP all -- anywhere anywhere
  80.  
  81. Chain Cid3105X2808.0 (1 references)
  82. target prot opt source destination
  83. ACCEPT all -- anywhere 192.168.14.2
  84. ACCEPT all -- anywhere AA.BB.CC.DD
  85.  
  86. Chain Cid4863C9C63672.0 (2 references)
  87. target prot opt source destination
  88. ACCEPT all -- anywhere 192.168.1.0/24
  89. ACCEPT all -- anywhere 192.168.14.0/24
  90.  
  91. Chain Cid4863C9C63672.1 (2 references)
  92. target prot opt source destination
  93. ACCEPT all -- anywhere 192.168.1.0/24
  94. ACCEPT all -- anywhere 192.168.14.0/24
  95.  
  96. Chain Cid4863C9C63672.2 (2 references)
  97. target prot opt source destination
  98. ACCEPT all -- anywhere 192.168.1.0/24
  99. ACCEPT all -- anywhere 192.168.14.0/24
  100.  
  101. Chain Cid486E22F617714.0 (2 references)
  102. target prot opt source destination
  103. ACCEPT icmp -- anywhere anywhere icmp ttl-zero-during-transit
  104. ACCEPT icmp -- anywhere anywhere icmp ttl-zero-during-reassembly
  105. ACCEPT icmp -- anywhere anywhere icmp type 0 code 0
  106. ACCEPT icmp -- anywhere anywhere icmp destination-unreachable
  107. ACCEPT tcp -- anywhere anywhere tcp dpt:pptp
  108. ACCEPT udp -- anywhere anywhere udp dpt:pptp
  109. ACCEPT gre -- anywhere anywhere
  110.  
  111. Chain Cid489037E13777.0 (1 references)
  112. target prot opt source destination
  113. RETURN all -- anywhere AA.BB.CC.DD
  114. RETURN all -- anywhere 192.168.14.2
  115. ACCEPT all -- anywhere anywhere
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!