API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 8th, 2011
18
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.98 KB | None | 0 0
raw download clone embed print report
  1. :INPUT ACCEPT [5998:3010003]
  2. :FORWARD ACCEPT [0:0]
  3. :OUTPUT ACCEPT [7292:2859420]
  4. :nova-compute-FORWARD - [0:0]
  5. :nova-compute-INPUT - [0:0]
  6. :nova-compute-OUTPUT - [0:0]
  7. :nova-compute-inst-71 - [0:0]
  8. :nova-compute-local - [0:0]
  9. :nova-compute-provider - [0:0]
  10. :nova-compute-sg-fallback - [0:0]
  11. :nova-filter-top - [0:0]
  12. :nova-network-FORWARD - [0:0]
  13. :nova-network-INPUT - [0:0]
  14. :nova-network-OUTPUT - [0:0]
  15. :nova-network-local - [0:0]
  16. -A INPUT -j nova-compute-INPUT
  17. -A INPUT -j nova-network-INPUT
  18. -A INPUT -i virbr0 -p udp -m udp --dport 53 -j ACCEPT
  19. -A INPUT -i virbr0 -p tcp -m tcp --dport 53 -j ACCEPT
  20. -A INPUT -i virbr0 -p udp -m udp --dport 67 -j ACCEPT
  21. -A INPUT -i virbr0 -p tcp -m tcp --dport 67 -j ACCEPT
  22. -A FORWARD -j nova-filter-top
  23. -A FORWARD -j nova-compute-FORWARD
  24. -A FORWARD -j nova-network-FORWARD
  25. -A FORWARD -d 192.168.122.0/24 -o virbr0 -m state --state RELATED,ESTABLISHED -j ACCEPT
  26. -A FORWARD -s 192.168.122.0/24 -i virbr0 -j ACCEPT
  27. -A FORWARD -i virbr0 -o virbr0 -j ACCEPT
  28. -A FORWARD -o virbr0 -j REJECT --reject-with icmp-port-unreachable
  29. -A FORWARD -i virbr0 -j REJECT --reject-with icmp-port-unreachable
  30. -A OUTPUT -j nova-filter-top
  31. -A OUTPUT -j nova-compute-OUTPUT
  32. -A OUTPUT -j nova-network-OUTPUT
  33. -A nova-compute-inst-71 -m state --state INVALID -j DROP
  34. -A nova-compute-inst-71 -m state --state RELATED,ESTABLISHED -j ACCEPT
  35. -A nova-compute-inst-71 -j nova-compute-provider
  36. -A nova-compute-inst-71 -s 10.0.0.21/32 -p udp -m udp --sport 67 --dport 68 -j ACCEPT
  37. -A nova-compute-inst-71 -s 10.0.0.0/24 -j ACCEPT
  38. -A nova-compute-inst-71 -p icmp -j ACCEPT
  39. -A nova-compute-inst-71 -p tcp -m tcp --dport 22 -j ACCEPT
  40. -A nova-compute-inst-71 -j nova-compute-sg-fallback
  41. -A nova-compute-local -d 10.0.0.48/32 -j nova-compute-inst-71
  42. -A nova-compute-sg-fallback -j DROP
  43. -A nova-filter-top -j nova-compute-local
  44. -A nova-filter-top -j nova-network-local
  45. -A nova-network-FORWARD -i br100 -j ACCEPT
  46. -A nova-network-FORWARD -o br100 -j ACCEPT
  47.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!