Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- *nat
- :PREROUTING ACCEPT [3:164]
- :POSTROUTING ACCEPT [0:0]
- :OUTPUT ACCEPT [4:245]
- -A POSTROUTING -s 10.8.0.0/24 -o venet0 -j SNAT --to-source 192.210.146.151 #Postrouting of openvpn
- COMMIT
- # Completed on Tue May 21 16:49:14 2013
- # Generated by iptables-save v1.4.8 on Tue May 21 16:49:14 2013
- *mangle
- :PREROUTING ACCEPT [247:24946]
- :INPUT ACCEPT [247:24946]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [167:27681]
- :POSTROUTING ACCEPT [167:27681]
- COMMIT
- # Completed on Tue May 21 16:49:14 2013
- # Generated by iptables-save v1.4.8 on Tue May 21 16:49:14 2013
- *filter
- :INPUT ACCEPT [0:0]
- :FORWARD ACCEPT [0:0]
- :OUTPUT ACCEPT [167:27681]
- -A INPUT -i lo -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
- -A INPUT -p udp -m udp --dport 9987 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 10011 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 30033 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 8000 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 8082 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 10001 -j ACCEPT
- -A INPUT -p tcp -m tcp --dport 12001 -j ACCEPT
- -A INPUT -p udp -m udp --dport 1194 -j ACCEPT #<--- Openvpn port
- -A INPUT -p tcp --dport 81 -j ACCEPT
- -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
- -A INPUT -j REJECT
- -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT #Forwarding of traffic
- -A FORWARD -s 10.8.0.0/24 -j ACCEPT #
- -A FORWARD -j REJECT --reject-with icmp-port-unreachable #
- COMMIT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
