API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 22nd, 2012
61
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 8.31 KB | None | 0 0
raw download clone embed print report
  1. Chain INPUT (policy ACCEPT)
  2. target     prot opt source               destination
  3. DROP       all  --  anywhere             anywhere            state INVALID
  4. ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
  5. ACCEPT     all  --  anywhere             anywhere
  6. syn_flood  tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN
  7. input_rule  all  --  anywhere             anywhere
  8. input      all  --  anywhere             anywhere
  9. ACCEPT     icmp --  anywhere             anywhere            limit: avg 1/sec burst 5
  10. DROP       icmp --  anywhere             anywhere
  11. LOG        all  --  anywhere             anywhere            recent: CHECK seconds: 60 name: DEFAULT side: source limit: avg 10/sec burst 5 LOG level warning prefix `BG '
  12. DROP       all  --  anywhere             anywhere            recent: UPDATE seconds: 60 name: DEFAULT side: source
  13. LOG        tcp  --  anywhere             anywhere            tcp dpt:2222 recent: CHECK seconds: 60 hit_count: 3 name: SSH side: source LOG level warning prefix `SH '
  14. DROP       tcp  --  anywhere             anywhere            tcp dpt:2222 recent: UPDATE seconds: 60 hit_count: 3 name: SSH side: source
  15. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:2222 state NEW recent: SET name: SSH side: source
  16. LOG        all  --  anywhere             anywhere            LOG level warning prefix `IN '
  17. REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
  18.  
  19. Chain FORWARD (policy DROP)
  20. target     prot opt source               destination
  21. zone_wan_MSSFIX  all  --  anywhere             anywhere
  22. DROP       all  --  anywhere             anywhere            state INVALID
  23. ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
  24. forwarding_rule  all  --  anywhere             anywhere
  25. forward    all  --  anywhere             anywhere
  26. reject     all  --  anywhere             anywhere
  27. LOG        all  --  anywhere             anywhere            LOG level warning prefix `FW '
  28. REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
  29.  
  30. Chain OUTPUT (policy ACCEPT)
  31. target     prot opt source               destination
  32. DROP       all  --  anywhere             anywhere            state INVALID
  33. ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
  34. ACCEPT     all  --  anywhere             anywhere
  35. output_rule  all  --  anywhere             anywhere
  36. output     all  --  anywhere             anywhere
  37. LOG        all  --  anywhere             anywhere            LOG level warning prefix `OU '
  38. REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
  39.  
  40. Chain forward (1 references)
  41. target     prot opt source               destination
  42. zone_lan_forward  all  --  anywhere             anywhere
  43. zone_wan_forward  all  --  anywhere             anywhere
  44.  
  45. Chain forwarding_lan (1 references)
  46. target     prot opt source               destination
  47.  
  48. Chain forwarding_rule (1 references)
  49. target     prot opt source               destination
  50. nat_reflection_fwd  all  --  anywhere             anywhere
  51.  
  52. Chain forwarding_wan (1 references)
  53. target     prot opt source               destination
  54.  
  55. Chain input (1 references)
  56. target     prot opt source               destination
  57. zone_lan   all  --  anywhere             anywhere
  58. zone_wan   all  --  anywhere             anywhere
  59.  
  60. Chain input_lan (1 references)
  61. target     prot opt source               destination
  62.  
  63. Chain input_rule (1 references)
  64. target     prot opt source               destination
  65.  
  66. Chain input_wan (1 references)
  67. target     prot opt source               destination
  68.  
  69. Chain nat_reflection_fwd (1 references)
  70. target     prot opt source               destination
  71. ACCEPT     tcp  --  192.168.1.0/24       desktop.lan         tcp dpt:www
  72. ACCEPT     udp  --  192.168.1.0/24       desktop.lan         udp dpt:80
  73. ACCEPT     tcp  --  192.168.1.0/24       desktop.lan         tcp dpt:ftp
  74. ACCEPT     udp  --  192.168.1.0/24       desktop.lan         udp dpt:21
  75.  
  76. Chain output (1 references)
  77. target     prot opt source               destination
  78. zone_lan_ACCEPT  all  --  anywhere             anywhere
  79. zone_wan_ACCEPT  all  --  anywhere             anywhere
  80.  
  81. Chain output_rule (1 references)
  82. target     prot opt source               destination
  83.  
  84. Chain reject (5 references)
  85. target     prot opt source               destination
  86. REJECT     tcp  --  anywhere             anywhere            reject-with tcp-reset
  87. REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable
  88.  
  89. Chain syn_flood (1 references)
  90. target     prot opt source               destination
  91. RETURN     tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 25/sec burst 50
  92. DROP       all  --  anywhere             anywhere
  93.  
  94. Chain zone_lan (1 references)
  95. target     prot opt source               destination
  96. input_lan  all  --  anywhere             anywhere
  97. zone_lan_ACCEPT  all  --  anywhere             anywhere
  98.  
  99. Chain zone_lan_ACCEPT (2 references)
  100. target     prot opt source               destination
  101. ACCEPT     all  --  anywhere             anywhere
  102. ACCEPT     all  --  anywhere             anywhere
  103.  
  104. Chain zone_lan_DROP (0 references)
  105. target     prot opt source               destination
  106. DROP       all  --  anywhere             anywhere
  107. DROP       all  --  anywhere             anywhere
  108.  
  109. Chain zone_lan_MSSFIX (0 references)
  110. target     prot opt source               destination
  111. TCPMSS     tcp  --  anywhere             anywhere            tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
  112.  
  113. Chain zone_lan_REJECT (1 references)
  114. target     prot opt source               destination
  115. reject     all  --  anywhere             anywhere
  116. reject     all  --  anywhere             anywhere
  117.  
  118. Chain zone_lan_forward (1 references)
  119. target     prot opt source               destination
  120. zone_wan_ACCEPT  all  --  anywhere             anywhere
  121. forwarding_lan  all  --  anywhere             anywhere
  122. zone_lan_REJECT  all  --  anywhere             anywhere
  123.  
  124. Chain zone_wan (1 references)
  125. target     prot opt source               destination
  126. ACCEPT     udp  --  anywhere             anywhere            udp dpt:bootpc
  127. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:www
  128. ACCEPT     udp  --  anywhere             anywhere            udp dpt:80
  129. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:9091
  130. ACCEPT     udp  --  anywhere             anywhere            udp dpt:9091
  131. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:51413
  132. ACCEPT     udp  --  anywhere             anywhere            udp dpt:51413
  133. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:ftp
  134. ACCEPT     udp  --  anywhere             anywhere            udp dpt:21
  135. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:2222
  136. ACCEPT     udp  --  anywhere             anywhere            udp dpt:2222
  137. ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:https
  138. ACCEPT     udp  --  anywhere             anywhere            udp dpt:https
  139. input_wan  all  --  anywhere             anywhere
  140. zone_wan_REJECT  all  --  anywhere             anywhere
  141.  
  142. Chain zone_wan_ACCEPT (2 references)
  143. target     prot opt source               destination
  144. ACCEPT     all  --  anywhere             anywhere
  145. ACCEPT     all  --  anywhere             anywhere
  146.  
  147. Chain zone_wan_DROP (0 references)
  148. target     prot opt source               destination
  149. DROP       all  --  anywhere             anywhere
  150. DROP       all  --  anywhere             anywhere
  151.  
  152. Chain zone_wan_MSSFIX (1 references)
  153. target     prot opt source               destination
  154. TCPMSS     tcp  --  anywhere             anywhere            tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
  155.  
  156. Chain zone_wan_REJECT (2 references)
  157. target     prot opt source               destination
  158. reject     all  --  anywhere             anywhere
  159. reject     all  --  anywhere             anywhere
  160.  
  161. Chain zone_wan_forward (1 references)
  162. target     prot opt source               destination
  163. ACCEPT     tcp  --  anywhere             desktop.lan         tcp dpt:www
  164. ACCEPT     udp  --  anywhere             desktop.lan         udp dpt:80
  165. ACCEPT     tcp  --  anywhere             desktop.lan         tcp dpt:ftp
  166. ACCEPT     udp  --  anywhere             desktop.lan         udp dpt:21
  167. forwarding_wan  all  --  anywhere             anywhere
  168. zone_wan_REJECT  all  --  anywhere             anywhere
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!